Microsoft Windows Backup Manager Insecure Library Loading (MS11-001; CVE-2010-3145)

The Windows Backup Manager sdclt.exe allows users to restore a computer's system files to an earlier point in time. A remote attacker could convince a user to open a legitimate Windows Backup Catalog file .wbcat that is located in the same network directory as a specially crafted DLL file. Then,...

Ubuntu 10.10 : CUPS update (USN-1036-1)

Under certain circumstances, CUPS could start before its AppArmor profile was loaded and therefore run unconfined. This update ensures the AppArmor profile is loaded before CUPS starts. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu...

Quick Notes Plus 5.0 47 - Multiple DLL Loading Arbitrary Code Executions

Quick Notes Plus 5.0 47 - Multiple DLL Loading Arbitrary Code Executions // source: https://www.securityfocus.com/bid/45689/info Quick Notes Plus is prone to an arbitrary-code-execution vulnerability. Attackers can exploit this vulnerability to execute arbitrary code in the context of the user...

Quick Notes Plus 5.0 47 - Multiple DLL Loading Arbitrary Code Executions

// source: https://www.securityfocus.com/bid/45689/info Quick Notes Plus is prone to an arbitrary-code-execution vulnerability. Attackers can exploit this vulnerability to execute arbitrary code in the context of the user running the vulnerable application. Quick Notes Plus 5.0.0.47 is vulnerable...

Ace Video Workshop 1.2.0.0 - ir50_lcs.dll DLL Loading Arbitrary Code Execution

Ace Video Workshop 1.2.0.0 - ir50lcs.dll DLL Loading Arbitrary Code Execution // source: https://www.securityfocus.com/bid/45675/info Ace Video Workshop is prone to an arbitrary-code-execution vulnerability. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable...

Ace Video Workshop 1.2.0.0 - 'ir50_lcs.dll' DLL Loading Arbitrary Code Execution

// source: https://www.securityfocus.com/bid/45675/info Ace Video Workshop is prone to an arbitrary-code-execution vulnerability. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a special...

ImgBurn 2.4 - 'dwmapi.dll' DLL Loading Arbitrary Code Execution

// source: https://www.securityfocus.com/bid/45657/info ImgBurn is prone to an arbitrary-code-execution vulnerability. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted...

ImgBurn 2.4 - dwmapi.dll DLL Loading Arbitrary Code Execution

ImgBurn 2.4 - dwmapi.dll DLL Loading Arbitrary Code Execution // source: https://www.securityfocus.com/bid/45657/info ImgBurn is prone to an arbitrary-code-execution vulnerability. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file fr...

Adobe Photoshop CS5 Insecure Library Loading Code Execution (APSB10-30; CVE-2010-3127)

Adobe Photoshop CS5 is a graphics editing program that features a 3D engine. A library-loading vulnerability has been identified in Adobe Photoshop CS5. This vulnerability is due to the application insecurely loading certain librairies from the current working directory, which could allow attacke...

AttacheCase may insecurely load executable files

Overview AttacheCase may use unsafe methods for determining how to load executables .exe. AttacheCase is a file encryption/decryption software. AttacheCase loads certain executables .exe when decrypting files, if certain settings are applied. AttacheCase contains an issue with the file search pat...

CVE-2010-3965

Untrusted search path vulnerability in Windows Media Encoder 9 on Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, and Windows Server 2008 Gold and SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrat...

Design/Logic Flaw

Untrusted search path vulnerability in Microsoft Windows Movie Maker WMM 2.6 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a Movie Maker MSWMM file, aka "Insecure Library Loading Vulnerability."...

Design/Logic Flaw

Untrusted search path vulnerability in Windows Media Encoder 9 on Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, and Windows Server 2008 Gold and SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrat...

Design/Logic Flaw

Untrusted search path vulnerability in Microsoft Windows Server 2008 R2 and Windows 7, when BranchCache is supported, allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains an EML file, an RSS file, or a WPOST...

CVE-2010-3965

The CVE-2010-3965 issue is an Insecure Library Loading (untrusted search path) vulnerability in Windows Media Encoder 9. Affected products include Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP1/SP2, and Windows Server 2008 Gold/SP2. The root cause is that Windows Media Encoder loa...

CVE-2010-3965

Untrusted search path vulnerability in Windows Media Encoder 9 on Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, and Windows Server 2008 Gold and SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrat...

CVE-2010-3967

CVE-2010-3967 describes an Untrusted Search Path/Insecure Library Loading vulnerability in Microsoft Windows Movie Maker 2.6. A Trojan DLL placed in the current working directory (e.g., a directory containing an MSWMM file) can be loaded by WMM, allowing local users to gain privileges. The issue ...

MS10-097: Insecure Library Loading in Internet Connection Signup Wizard Could Allow Remote Code Execution (2443105)

The remote Windows host contains a version of the Internet Connection Signup Wizard that incorrectly restricts the path used for loading external libraries. If an attacker can trick a user on the affected system into opening a specially crafted .ins or .isp file located in the same network...

Adobe Photoshop CS5 < 12.0.2 (APSB10-30)

The installed version of Adobe Photoshop is older than 12.0.2, and hence affected by the following issues : - Insecure library loading, which could result in arbitrary code execution. CVE-2010-3127 - Multiple unspecified vulnerabilities. C Tenable Network Security, Inc. include"compat.inc"; if...

Microsoft Windows multiple security vulnerabilities

OpenType Font parsing memory corruption, task scheduler privilege escalation, usafe DLL loading, multiple kernel vulnerabilities, Consent User Interface privilege escalation, Netlogon DoS...