384 matches found
Mandriva Linux Security Advisory : kernel (MDVSA-2008:234)
Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : Buffer overflow in the hfsplusfindcat function in fs/hfsplus/catalog.c in the Linux kernel before 2.6.28-rc1 allows attackers to cause a denial of service memory corruption or system crash via an hfsplus filesystem image...
Mandriva Update for kernel MDVSA-2008:234 (kernel)
Check for the Version of kernel OpenVAS Vulnerability Test Mandriva Update for kernel MDVSA-2008:234 kernel Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
[ MDVSA-2008:234 ] kernel
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2008:234 http://www.mandriva.com/security/ Package : kernel Date : November 21, 2008 Affected: 2009.0 Problem Description: Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel: Buffer overfl...
BackWeb LiteInstActivator.dll ActiveX控件栈溢出漏洞
BUGTRAQ ID: 29558 CVECAN ID: CVE-2008-0956 BackWeb Lite Install Runner(LiteInstActivator.dll)是用于在Windows系统上安装软件的ActiveX控件。 LiteInstActivator.dll控件捆绑于Logitech鼠标软件中的Logitech Desktop Messenger,该控件没有正确地验证某处参数的输入,如果用户受骗访问了恶意网页并传送了超长参数的话,就可能触发栈溢出,导致执行任意指令。 BackWeb BackWeb 8.1.1.86 Logitech Desktop...
CVE-2008-0956
Multiple stack-based buffer overflows in the BackWeb Lite Install Runner ActiveX control in the BackWeb Web Package ActiveX object in LiteInstActivator.dll in BackWeb before 8.1.1.87, as used in Logitech Desktop Manager LDM before 2.56, allow remote attackers to execute arbitrary code via...
PT-2008-2565 · Backweb +1 · Backweb +1
Name of the Vulnerable Software and Affected Versions: BackWeb versions prior to 8.1.1.87 Logitech Desktop Manager versions prior to 2.56 Description: The issue is related to multiple stack-based buffer overflows in the BackWeb Lite Install Runner ActiveX control. This allows remote attackers to...
KLA10245 ACE vulnerability in Logitech Desktop Manager
Buffer overflow was found in the Logitech Desktop Manager. By exploiting this vulnerability malicious users can execute arbitrary code at unspecified vectors. Original advisories - Related products Logitech-Desktop-Messenger CVE list CVE-2008-0956 critical Solution Update to latest version Impact...
BackWeb Lite Install Runner ActiveX stack buffer overflows
Overview The BackWeb Lite Install Runner ActiveX control contains multiple stack buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description BackWeb Lite Install Runner is an ActiveX control that is used to install software on...
Logitech VideoCall ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in the Logitech VideoCall ActiveX Control wcamxmp.dll 2.0.3470.448. By sending an overly long string to the "Start" method, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current...
Logitech VideoCall多个ActiveX控件缓冲区溢出漏洞
Logitech VideoCall是一款视频会议软件。 Logitech VideoCall多个ActiveX控件处理参数输入缺少正确边界检查,远程攻击者可以利用漏洞对应用程序进行缓冲区溢出攻击,可能以进程权限执行任意指令。 问题存在于多个包含的控件由于不正确处理用户提交的参数,构建恶意WEB页,诱使用户访问,可导致应用程序崩溃。这些控件包括: VibeC vibecontrol.dll CallManager StarClient.dll ViewerClient StarClient.dll ComLink uicomlink.dll WebCamXMP wcamxmp.dll...
CVE-2007-2918
Multiple stack-based buffer overflows in ActiveX controls 1 VibeC in a vibecontrol.dll, 2 CallManager and 3 ViewerClient in b StarClient.dll, 4 ComLink in c uicomlink.dll, and 5 WebCamXMP in d wcamxmp.dll in Logitech VideoCall allow remote attackers to cause a denial of service browser crash and...
Stack overflow
Multiple stack-based buffer overflows in ActiveX controls 1 VibeC in a vibecontrol.dll, 2 CallManager and 3 ViewerClient in b StarClient.dll, 4 ComLink in c uicomlink.dll, and 5 WebCamXMP in d wcamxmp.dll in Logitech VideoCall allow remote attackers to cause a denial of service browser crash and...
CVE-2007-2918
CVE-2007-2918 involves multiple stack-based buffer overflows in Logitech VideoCall ActiveX controls (vibecontrol.dll, StarClient.dll, uicomlink.dll, wcamxmp.dll). The flaws enable a remote attacker to cause a browser crash (DoS) and potentially execute arbitrary code via unspecified vectors. Affe...
CVE-2007-2918
Multiple stack-based buffer overflows in ActiveX controls 1 VibeC in a vibecontrol.dll, 2 CallManager and 3 ViewerClient in b StarClient.dll, 4 ComLink in c uicomlink.dll, and 5 WebCamXMP in d wcamxmp.dll in Logitech VideoCall allow remote attackers to cause a denial of service browser crash and...
Logitech VideoCall multiple ActiveX controls contain stack buffer overflows
Overview Logitech VideoCall ActiveX controls contain multiple stack buffer overflows, which could allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Logitech VideoCall is video conferencing software for Windows. Logitech VideoCall includes...
QuickCam Linux设备驱动QCAMVC_Video_Init函数缓冲区溢出漏洞
QuickCam是Logitech罗技公司的摄像头产品。 QuickCam的Linux驱动的初始化函数qcamvcvideoinit中存在缓冲区溢出漏洞,本地攻击者可能利用此漏洞造成拒绝服务或控制系统。 qcamvcvideoinit函数的原型如下: static void qcamvcvideoinitstruct qcamvc qcamvc 如果用户使用了特制的QuickCam对象的话,就会触发这个溢出,导致执行任意指令。 De Marchi Daniele QuickCam VC linux driver = 1.0.9...
CVE-2002-1722
Logitech iTouch keyboards allows attackers with physical access to the system to bypass the screen locking function and execute user-defined commands that have been assigned to a button...
CVE-2002-1722
Logitech iTouch keyboards are affected by CVE-2002-1722. The vulnerability, as described, allows attackers with physical access to bypass the screen locking function and execute user-defined commands assigned to a button. The provided documents do not specify affected models or versions, underlyi...
CVE-2002-1722
Logitech iTouch keyboards allows attackers with physical access to the system to bypass the screen locking function and execute user-defined commands that have been assigned to a button...
Logitech Keyboard Insecurity
Risk: Rather Low Logitech has a piece of software available with their iTouch line of keyboards cordless ones included that allows you to press one button and run a program, control volume, jump to a URL, or shut down the PC. When you lock a computer, with NT/2000/XP/etc. however, these buttons...