SciTools Understand 2.6 DLL Loading Code Execution

/ SciTools Understand 2.6 wintab32.dll DLL Loading Arbitrary Code Execution Vendor: Scientific Toolworks, Inc. Product web page: http://www.scitools.com Affected version: 2.6 build 598 Summary: Understand is a static analysis tool for maintaining, measuring, and analyzing critical or large code...

Mindjet MindManager 2012 10.0.493 Buffer Overflow / Denial Of Service

Mindjet MindManager 2012 v10.0.493 Multiple Remote Vulnerabilities Vendor: Mindjet Product web page: http://www.mindjet.com Affected version: 10.0.493 Windows Summary: An intuitive visual framework that fosters clarity, innovative thinking & communication to improve business results. Desc:...

Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability

This host is installed with Interactive Graphical SCADA System and is prone to code execution vulnerability. OpenVAS Vulnerability Test $Id: gbigssdllcodeexecutionvuln.nasl 5940 2017-04-12 09:02:05Z teissa $ Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability...

Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability

Interactive Graphical SCADA System is prone to a code execution vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

FreeBSD : torcs -- untrusted local library loading (e7fd27b2-3ae9-11e1-8b5c-00262d5ed8ee)

TORCS News reports : An insecure change to LDLIBRARYPATH allows loading of libraries in directories other than the standard paths. This can be a problem when downloading and installing untrusted content from the Internet. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...

Microsoft Internet Explorer multiple security vulnerabilities

Information leakage, insecure library loading...

RSA SecurID Software Token < 4.1.1 Insecure Library Loading

The remote Windows host contains a version of RSA SecurID Software Token 3.0, 4.0, or 4.1 earlier than 4.1.1. As such, it is reportedly affected by an insecure library loading vulnerability. If an attacker can trick a user on the affected system into opening a specially crafted Software Token fil...

ESA-2011-039: RSA&#40;r&#41;, The Security Division of EMC, announces security fixes and improvements for RSASecurID&#40;r&#41; Software Token 4.1 for Microsoft&#40;r&#41;Windows&#40;r&#41;

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2011-039: RSA®, The Security Division of EMC, announces security fixes and improvements for RSASecurID® Software Token 4.1 for Microsoft®Windows® Advisories Updated December 12, 2011 Summary: RSA, The Security Division of EMC, announces security...

Microsoft Windows multiple applications DLL hijacking

If application is launched via file type association, current path is set to the path file is located, making it's possible to place DLLs application tries to load dynamically into same directory...

Microsoft Office multiple security vulnerabilities

Privilege escalation, use-after-free, insecure DLL loading, memory corruption...

FFFTP < 1.98d Untrusted Search Path Vulnerability (Dec 2011) - Windows

FFFTP is prone to untrusted search path vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Design/Logic Flaw

Untrusted search path vulnerability in Microsoft PowerPoint 2007 SP2 and 2010 allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka "PowerPoint Insecure Library Loading Vulnerability."...

Design/Logic Flaw

Untrusted search path vulnerability in Microsoft Internet Explorer 9 on Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains an HTML file, aka...

Microsoft Office PowerPoint Remote Code Execution Vulnerabilities (2639142)

This host is missing an important security update according to Microsoft Bulletin MS11-094. OpenVAS Vulnerability Test $Id: secpodms11-094.nasl 6523 2017-07-04 15:46:12Z cfischer $ Microsoft Office PowerPoint Remote Code Execution Vulnerabilities 2639142 Authors: Antu Sanadi Copyright: Copyright ...

Microsoft Internet Explorer Multiple Vulnerabilities (2618444)

This host is missing an important security update according to Microsoft Bulletin MS11-099. OpenVAS Vulnerability Test $Id: secpodms11-099.nasl 6526 2017-07-05 05:43:52Z cfischer $ Microsoft Internet Explorer Multiple Vulnerabilities 2618444 Authors: Rachana Shetty Copyright: Copyright c 2011...

Microsoft PowerPoint Insecure Library Loading (MS11-094; CVE-2011-3396)

A remote code execution vulnerability has been reported in Microsoft PowerPoint. The vulnerability is due to an error in the way Microsoft PowerPoint restricts the path used for loading external libraries. A remote attacker could exploit this vulnerability by enticing a user to open a legitimate...

Microsoft PowerPoint CVE-2011-3396 DLL Loading Arbitrary Code Execution Vulnerability

Description Microsoft PowerPoint is prone to vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location which contains a specially crafted Dynamic Link...

Internet Explorer Insecure Library Loading Code Execution (MS11-089; CVE-2011-2019)

A remote code execution vulnerability has been reported in Internet Explorer IE. The vulnerability is due to an error in the way IE restricts the path used for loading external libraries. A remote attacker could exploit this vulnerability by enticing a user to open a legitimate HTML file that is...

Microsoft Internet Explorer CVE-2011-2019 DLL Loading Arbitrary Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted Dynamic...

Apple Safari WebKit Information Disclosure Vulnerability (Mac OS X)

The host is installed with Apple Safari web browser and is prone to information disclosure vulnerability. OpenVAS Vulnerability Test $Id: gbapplesafariwebkitinfodiscvulnmacosx.nasl 7024 2017-08-30 11:51:43Z teissa $ Apple Safari WebKit Information Disclosure Vulnerability Mac OS X Authors: Sooraj...