CVE-2007-1083

Buffer overflow in the Configuration Checker ConfigChk ActiveX control in VSCnfChk.dll 2.0.0.2 for Verisign Managed PKI Service, Secure Messaging for Microsoft Exchange, and Go Secure! allows remote attackers to execute arbitrary code via long arguments to the VerCompare method...

Buffer overflow

Buffer overflow in the Configuration Checker ConfigChk ActiveX control in VSCnfChk.dll 2.0.0.2 for Verisign Managed PKI Service, Secure Messaging for Microsoft Exchange, and Go Secure! allows remote attackers to execute arbitrary code via long arguments to the VerCompare method...

CVE-2007-1083

The CVE-2007-1083 issue affects the VeriSign Configuration Checker ActiveX control (VSCnfChk.dll, version 2.0.0.2) used in VeriSign PKI products. The Nessus entry confirms a stack/buffer overflow in VerCompare() that can allow remote code execution when a user is tricked into loading a crafted we...

CVE-2006-1344

Cross-site scripting XSS vulnerability in VeriSign haydn.exe, as used in Managed PKI MPKI 6.0, allows remote attackers to inject arbitrary web script or HTML via a javascript URI in the VHTMLFILE parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in VeriSign haydn.exe, as used in Managed PKI MPKI 6.0, allows remote attackers to inject arbitrary web script or HTML via a javascript URI in the VHTMLFILE parameter...

CVE-2006-1344

CVE-2006-1344 describes a cross-site scripting (XSS) flaw in VeriSign’s haydn.exe CGI used by MPKI 6.0. The vulnerability stems from lack of input validation in the VHTML_FILE parameter, allowing an attacker to inject arbitrary HTML/JavaScript that is returned to the user’s browser. CORE Security...

CVE-2006-1344

Cross-site scripting XSS vulnerability in VeriSign haydn.exe, as used in Managed PKI MPKI 6.0, allows remote attackers to inject arbitrary web script or HTML via a javascript URI in the VHTMLFILE parameter...