AOL Instant Messenger Insecure Library Loading Vulnerability

A vulnerability has been discovered in AOL Instant Messenger, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: • dwmapi.dll This can be exploit...

Google Desktop Insecure Library Loading Vulnerability

A vulnerability has been discovered in Google Desktop, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: • schannel.dll This can be exploited to...

CVE-2010-3829

WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LINK element with a DNS prefetching property, as demonstrated by an HTML e-mail message that uses a LINK element for X-Confirm-Reading-To functionality, a related issue to...

UBUNTU-CVE-2010-3829

WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LINK element with a DNS prefetching property, as demonstrated by an HTML e-mail message that uses a LINK element for X-Confirm-Reading-To functionality, a related issue to...

CVE-2010-3829

WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LINK element with a DNS prefetching property, as demonstrated by an HTML e-mail message that uses a LINK element for X-Confirm-Reading-To functionality, a related issue to...

CVE-2010-3829

WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LINK element with a DNS prefetching property, as demonstrated by an HTML e-mail message that uses a LINK element for X-Confirm-Reading-To functionality, a related issue to...

Native Instruments Kontakt 4 Player 4.1.3 Insecure Library Loading

/ Native Instruments Kontakt 4 Player v4.1.3 Insecure Library Loading Vulnerability Vendor: Native Instruments GmbH Product web page: http://www.native-instruments.com Affected version: 4.1.3.4125 Standalone Summary: KONTAKT 4 PLAYER is the free sample player based on award-winning KONTAKT...

Native Instruments Guitar Rig 4 Player v4.1.1 Insecure Library Loading Vulnerability

Summary GUITAR RIG 4 PLAYER is the free, modular and expandable effects processor from Native Instruments, combining creative effects routing possibilities with ease-of-use and pristine sound quality. The included FACTORY SELECTION library provides one stunning Amp emulation with Matched Cabinet,...

Native Instruments Guitar Rig 4 Player 4.1.1 Insecure Library Loading

/ Native Instruments Guitar Rig 4 Player v4.1.1 Insecure Library Loading Vulnerability Vendor: Native Instruments GmbH Product web page: http://www.native-instruments.com Affected version: 4.1.1.1845 Standalone Summary: GUITAR RIG 4 PLAYER is the free, modular and expandable effects processor fro...

Native Instruments Reaktor 5 Player v5.5.1 Insecure Library Loading Vulnerability

Summary REAKTOR 5 PLAYER is your free entry point to the award-winning and avant-garde audio world of REAKTOR 5 - the super-powerful modular sound studio that made Native Instruments famous. Description Reaktor 5 Player suffers from a DLL hijacking vulnerability, which could be exploited by remot...

Native Instruments Reaktor 5 Player 5.5.1 Insecure Library Loading

/ Native Instruments Reaktor 5 Player v5.5.1 Insecure Library Loading Vulnerability Vendor: Native Instruments GmbH Product web page: http://www.native-instruments.com Affected version: 5.5.1 R10584 or 5.5.1.10584 Standalone Summary: REAKTOR 5 PLAYER is your free entry point to the award-winning...

Native Instruments Service Center 2.2.5 Insecure Library Loading Vulnerability

Summary The NI Service Center is a service used for Product Activation. Description The Service Center suffers from a DLL hijacking vulnerability, which could be exploited by remote attackers to compromise a vulnerable system. This issue is caused due to the application insecurely loading certain...

Native Instruments Service Center 2.2.5 Insecure Library Loading

/ Native Instruments Service Center 2.2.5 Insecure Library Loading Vulnerability Vendor: Native Instruments GmbH Product web page: http://www.native-instruments.com Affected version: 2.2.5 R596 Summary: The NI Service Center is a service used for Product Activation. Desc: The Service Center suffe...

Native Instruments (Multiple Products) - DLL Loading Arbitrary Code Execution

Native Instruments Multiple Products - DLL Loading Arbitrary Code Execution // source: https://www.securityfocus.com/bid/44989/info Multiple products from Native Instruments are prone to multiple vulnerabilities that let attackers execute arbitrary code. An attacker can exploit these issues by...

Mozilla unsafe library loading flaw

A certain application-launch script in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 on Linux places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan hor...

Adobe Acrobat 9.x < 9.4.1 Multiple Vulnerabilities (APSB10-28)

The version of Adobe Acrobat 9.x installed on the remote host is earlier than 9.4.1. Such versions are reportedly affected by multiple vulnerabilities : - A memory corruption vulnerability exists that could lead to code execution. Note that this issue does not affect Adobe Acrobat 8.x...

Adobe Reader < 9.4.1 Multiple Vulnerabilities (APSB10-28)

The version of Adobe Reader installed on the remote host is earlier than 9.4.1. Such versions are reportedly affected by multiple vulnerabilities : - A memory corruption vulnerability exists that could lead to code execution. Note that this issue does not affect Adobe Reader 8.x. CVE-2010-3654 - ...

Design/Logic Flaw

Untrusted search path vulnerability in Microsoft Office 2007 SP2 and 2010 allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka "Insecure Library Loading Vulnerability." NOTE: this might overlap CVE-2010-3141 and CVE-2010-3142...

Nevercenter Silo 2.1.1 DLL Hijacking

/ Nevercenter Silo 2.1.1 Insecure Library Loading Vulnerability Vendor: Nevercenter Ltd. Co. Product web page: http://www.nevercenter.com Affected version: 2.1.1 Summary: Silo 2 is a focused 3D modeling application with the ability to effortlessly switch between organically sculpting high-polygon...

Silo 2.1.1 - wintab32.dll DLL Loading Arbitrary Code Execution

Silo 2.1.1 - wintab32.dll DLL Loading Arbitrary Code Execution // source: https://www.securityfocus.com/bid/44726/info Silo is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to...