IBM Db2 'DT_RPATH' Insecure Library Loading Code Execution Vulnerabilities

IBM Db2 is prone to insecure library loading vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2";...

IBM DB2 'DT_RPATH' Insecure Library Loading Code Execution Vulnerabilities

The host is running IBM DB2 and is prone to insecure library loading vulnerabilities. OpenVAS Vulnerability Test $Id: secpodibmdb2dtrpathinsecurelibloadvuln.nasl 7024 2017-08-30 11:51:43Z teissa $ IBM DB2 'DTRPATH' Insecure Library Loading Code Execution Vulnerabilities Authors: Antu Sanadi...

Microsoft Windows Mail Insecure Library Loading Code Execution (MS11-085; CVE-2011-2016)

A remote code execution vulnerability has been reported in Microsoft Windows Mail and Windows Meeting Space. The vulnerability is due to an error in the way the application improperly restricts the path loading of dynamic link library DLL files. A remote attacker may exploit this vulnerability by...

FFFTP < 1.98b Untrusted Search Path Vulnerability - Windows

FFFTP is prone to untrusted search path vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

JVN#62336482: FFFTP may insecurely load executable files

FFFTP loads certain executables when using certain functions. FFFTP contains an issue with the file search path, which may insecurely load executables. Impact An attacker may execute arbitrary code with the privilege of the running application. Solution Update the software Update to the latest...

FreeBSD : OpenTTD -- Buffer overflows in savegame loading (78c25ed7-f3f9-11e0-8b5c-b482fe3f522d)

The OpenTTD Team reports : Multiple buffer overflows in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via vectors related to 1 NAME, 2 PLYR, 3 CHTS, or 4 AIPL aka AI config chunk loading from a savegame. %NASLMINLEVEL 7030...

Design/Logic Flaw

Untrusted search path vulnerability in Windows Media Center in Microsoft Windows Vista SP2 and Windows 7 Gold and SP1, and Windows Media Center TV Pack for Windows Vista, allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka "Media Center Insecure...

Design/Logic Flaw

Untrusted search path vulnerability in the Microsoft Active Accessibility component in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a Trojan horse DLL in...

CVE-2011-2009

CVE-2011-2009 describes an Untrusted search path vulnerability in Windows Media Center that allows local users to gain privileges via a Trojan horse DLL loaded from the current working directory. Affected products: Windows Vista SP2, Windows 7 (Gold and SP1), and Windows Media Center TV Pack for ...

Microsoft Windows multiple security vulnerabilities

Active Accessibility and Media Center insecure DLL loading...

Microsoft Active Accessibility DLL Loading Remote Code Execution (MS11-075; CVE-2011-1247)

A remote code execution vulnerability has been reported in Microsoft Windows Active Accessibility component. The vulnerability is due to an error in the way certain applications using OleAut32.dll handle the loading of DLL files. A remote attacker may exploit this vulnerability by enticing a user...

Security fix for the ALT Linux 5 package tuxguitar version 1.2-alt2

Oct. 11, 2011 Vitaly Lipatov 1.2-alt2 - fix CVE-2010-3385: insecure library loading ALT bug 24333...

PT-2011-3547 · Microsoft · Windows Vista +3

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Vista SP2 Microsoft Windows 7 Gold and SP1 Windows Media Center TV Pack for Windows Vista Description: A remote code execution issue exists in the way Windows Media Center handles the loading of DLL files, allowing an attack...

Security fix for the ALT Linux 6 package tuxguitar version 1.2-alt2

Oct. 11, 2011 Vitaly Lipatov 1.2-alt2 - fix CVE-2010-3385: insecure library loading ALT bug 24333...

CVE-2011-1768

The tunnels implementation in the Linux kernel before 2.6.34, when tunnel functionality is configured as a module, allows remote attackers to cause a denial of service OOPS by sending a packet during module loading...

Wireshark multiple security vulnerabilities

DoS on different protocols dissectors, unsafe dynamic library loading...

Mozilla Firefox and Thunderbird sensor.dll Insecure Library Loading (CVE-2011-2980)

A remote code execution vulnerability has been reported in Mozilla Firefox and Thunderbird. The vulnerability is due to insecure library loading while opening specially crafted HTML files. A remote attacker may trigger this vulnerability by enticing a target user to open a malicious HTML file fro...

CentOS 5 : systemtap (CESA-2011:1089)

Updated systemtap packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Microsoft Office multiple security vulnerabilities

Multiple Excel memory corruptions, Word uninitialized pointer dereference, unsafe DLL loading...

CVE-2011-2838

Google Chrome before 14.0.835.163 does not properly consider the MIME type during the loading of a plug-in, which has unspecified impact and remote attack vectors...