Microsoft Windows XP/ME - Help and Support Center Buffer Overflow

// source: https://www.securityfocus.com/bid/6966/info The Microsoft Windows ME Help and Support Center is prone to a buffer overflow. This is due to insufficient bounds checking on input supplied through the HCP URI parameter. An attacker can exploit this vulnerability by making a HCP request wi...

OpenTopic 2.3.1 - Private Message HTML Injection

source: https://www.securityfocus.com/bid/6523/info A HTML injection vulnerability has been reported for OpenTopic. The vulnerability exists because OpenTopic does not sufficiently sanitize HTML code from private message posts. When a victim user views any private messages, any malicious HTML cod...

SSGBook 1.0 - Image Tag HTML Injection

SSGBook 1.0 - Image Tag HTML Injection source: https://www.securityfocus.com/bid/5915/info SSGbook includes codes for allowing users to specify HTML formatting and layout inside of guestbook entries. For example, a user can include an image by including it inside of image or img tags. However,...

GV 2.x/3.x - '.PDF'/'.PS' File Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/5808/info gv is a freely available, open source Portable Document Format PDF and PostScript PS viewing utility. It is available for Unix and Linux operating systems. It has been reported that an insecure sscanf function exists in gv. Due to this...

Drupal 4.0 - News Message HTML Injection

Drupal 4.0 - News Message HTML Injection source: https://www.securityfocus.com/bid/5801/info Problems with Drupal could allow an attacker to execute arbitrary script code in a vulnerable client. Drupal fails to sufficiently filter potentially malicious HTML code from news posts. As a result, when...

NPDS 4.8 - News Message HTML Injection

NPDS 4.8 - News Message HTML Injection source: https://www.securityfocus.com/bid/5797/info Problems with NPDS could make it possible to execute arbitrary script code in a vulnerable client. NPDS does not sufficiently filter potentially malicious HTML code from news posts. As a result, when a user...

LEVERAGING CROSS-PROTOCOL SCRIPTING IN MSIE

The following was researched and written before I installed IE SP1. read to the bottom to see whats changed LEVERAGING CROSS-PROTOCOL SCRIPTING IN MSIE ---------------------------------------------------------------------------- -------------------------- Introduction...

Magic Enterprise contains multiple shell scripts that allow arbitrary file overwriting via symlink redirection of temporary file

Overview Some versions of Magic eDeveloper Enterprise Edition contain a symbolic-link vulnerability that allows attackers to overwrite data or execute arbitrary commands. Description Magic eDeveloper is a development environment for large-scale and distributed applications.Magic eDeveloper...

Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in IIS Help Files search facility

Overview Visitors to web sites that use Microsoft IIS 5.0 and 5.1 are vulnerable to cross-site scripting attacks through the IIS help facility. Description Cross-site scripting is a form of attack in which an intruder leverages the trust between a victim and a web-site the victim trusts. Quoting...

ADVISORY: Windows Shell Overflow

Windows Shell Overflow Release Date: March 8, 2002 Severity: Medium Systems Affected: Microsoft Windows 98 Microsoft Windows 98 Second Edition Microsoft Windows NT 4.0 Microsoft Windows NT 4.0 Terminal Server Edition Microsoft Windows 2000 Description: There exists a buffer overflow vulnerability...

Various problems in Baltimore's WEBSweeper Script filtering

Sunday 12 August 2001 eDvice Security Services Advisory Various problems in Baltimore's WEBSweeper Script filtering =========================================================== Product Background ------------------- WEBsweeper is Baltimore Technologies' Web Content Security solution. It enables...

Unauthentic "Microsoft Corporation" certificates issued by Verisign to an unidentifed person

Overview On January 29 and 30, 2001, VeriSign, Inc. issued two certificates to an individual fraudulently claiming to be an employee of Microsoft Corporation. Any code signed by these certificates will appear to be legitimately signed by Microsoft when, in fact, it is not. Although users who try ...

KLA10124 ACE vulnerability in Compaq

A buffer overflow was found in Compaq products. By exploiting this vulnerability malicious users can execute arbitrary programs. This vulnerability can be exploited from the network at a point related to web login via a specially designed user name. Original advisories Compaq bulletin Related...

BSD-derived ftpd replydirname() in ftpd.c contains one-byte overflow

Overview There is a off-by-one vulnerability in several BSD-derived ftpd servers. Description The ftp server in several BSD distributions contains a defect which allows one byte of the program memory allocated within a stack frame to be overwritten with a NUL byte '\0'. The byte in question is...

ISSalert: Internet Security Systems Security Advisory: Vulnerability in Quake3Arena Auto-Download Feature

TO UNSUBSCRIBE: email "unsubscribe alert" in the body of your message to [email protected] Contact [email protected] for help with any problems! --------------------------------------------------------------------------- -----BEGIN PGP SIGNED MESSAGE----- Internet Security Systems Security...

Security Update for Visio 2002 (KB920816)

Microsoft has released a security update for Microsoft Visio 2002. This update addresses a vulnerability that could enable malicious code execution. Additionally, other fixes may be included in the update...

Security Update for Project 2002 (KB920816)

Microsoft has released a security update for Microsoft Project 2002. This update addresses a vulnerability that could enable malicious code execution. Additionally, other fixes may be included in the update...

Security Update for Visio 2002 (KB873354)

A security vulnerability exists in Microsoft Visio 2002 that could allow malicious code execution when Visio documents are stored and opened from a web site. This update resolves this vulnerability...

Security Update for Project 2002 (KB873355)

A security vulnerability exists in Microsoft Project 2002 that could allow malicious code execution when Project documents are stored and opened from a web site. This update resolves this vulnerability...