Mozilla Thunderbird 3.0.x < 3.0.9 Multiple Vulnerabilities

Binary data 5683.prm...

Mozilla Firefox 3.6.x < 3.6.11 Multiple Vulnerabilities

Binary data 5682.prm...

Mozilla Thunderbird 3.1.x < 3.1.5 Multiple Vulnerabilities

Binary data 5684.prm...

Mozilla unsafe library loading flaw

A certain application-launch script in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 on Linux places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan hor...

Holoo Insecure Library Loading Vulnerability

A vulnerability has been discovered in Holoo, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: • idapi32.dll • idr20009.dll • odbc32.dll This c...

Unsafe library loading vulnerabilities — Mozilla

Mozilla developer Ehsan Akhgari reported that a function used to load external libraries on Windows platforms was using a relative path to a DLL-loading application and was thus vulnerable to binary planting if an attacker was able to place an executable of the same name in the current working...

Phoenix Project Manager 2.1.0.8 - DLL Loading Arbitrary Code Execution

Phoenix Project Manager 2.1.0.8 - DLL Loading Arbitrary Code Execution // source: https://www.securityfocus.com/bid/44198/info Phoenix Project Manager is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use th...

Cool iPhone Ringtone Maker 2.2.3 - dwmapi.dll DLL Loading Arbitrary Code Execution

Cool iPhone Ringtone Maker 2.2.3 - dwmapi.dll DLL Loading Arbitrary Code Execution // source: https://www.securityfocus.com/bid/44205/info Cool iPhone Ringtone Maker is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate...

Sahar Money Manager Insecure Library Loading Vulnerability

A vulnerability has been discovered in Sahar Money Manager, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: unicows.dll This can be exploited ...

Rafe 7 Insecure Library Loading Vulnerability

A vulnerability has been discovered in Rafe 7, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: • idapi32.dll • idbat32.dll • idr20009.dll •...

PowerDVD 5.0.1107 - trigger.dll DLL Loading Arbitrary Code Execution

PowerDVD 5.0.1107 - trigger.dll DLL Loading Arbitrary Code Execution // source: https://www.securityfocus.com/bid/44193/info PowerDVD is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable...

Xilisoft Video Converter Ultimate Insecure Library Loading Vulnerability

A vulnerability has been discovered in Xilisoft Video Converter Ultimate , which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: • quserex.dll •...

Brilliant Accounting System &#40;59&#41; Insecure Library Loading Vulnerability

A vulnerability has been discovered in Brilliant Accounting System 59, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: • idapi32.dll •...

Accounting Pro 2003 Insecure Library Loading Vulnerability

A vulnerability has been discovered in Accounting Pro 2003, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list loaded is as follows: • idapi32.dll • idr20009.dll •...

Cool iPhone Ringtone Maker 2.2.3 - &#039;dwmapi.dll&#039; DLL Loading Arbitrary Code Execution

// source: https://www.securityfocus.com/bid/44205/info Cool iPhone Ringtone Maker is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share locatio...

Phoenix Project Manager 2.1.0.8 - DLL Loading Arbitrary Code Execution

// source: https://www.securityfocus.com/bid/44198/info Phoenix Project Manager is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location...

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2010-64 Miscellaneous memory safety hazards rv:1.9.2.11/ 1.9.1.14 MFSA 2010-65 Buffer overflow and memory corruption using document.write MFSA 2010-66 Use-after-free error in nsBarProp MFSA 2010-67 Dangling pointer vulnerability in LookupGetterOrSetter MFSA 2010-...

Lhasa may insecurely load executable files

Overview Lhasa may use unsafe methods for determining how to load executables .exe. Lhasa is a file extraction software that supports LZH and ZIP formats. Lhasa loads certain executables .exe when extracting files. Lhasa contains an issue with the file search path, which may insecurely load...

Lhaplus may insecurely load dynamic libraries

Overview Lhaplus may use unsafe methods for determining how to load DLLs. Lhaplus is a file compression/extraction software supporting multiple file formats. Lhaplus loads certain DLL's when files are extracted. Lhaplus contains an issue with the DLL search path, which may lead to insecurely...

1CLICK DVD Converter 2.1.7.1 - Multiple DLL Loading Arbitrary Code Execution Vulnerabilities

1CLICK DVD Converter 2.1.7.1 - Multiple DLL Loading Arbitrary Code Execution Vulnerabilities // source: https://www.securityfocus.com/bid/44163/info // 1CLICK DVD Converter is prone to multiple vulnerabilities that let attackers execute arbitrary code. // An attacker can exploit these issues by...