SAP GUI 7.1 WebViewer3D ActiveX — Insecure Methods

Application: EnjoySAP, SAP GUI for Windows 6.4 and 7.1 Versions Affected: Tested on 7100.2.7.1038 PL 7 Vendor URL: Bugs: Insecure method, File owervriting Exploits: YES Reported: 02.07.2009 Vendor response: 02.07.2009 Date of Public Advisory: 28.09.2009 Author: Alexandr Polyakov Description SAP G...

Symantec AppStream Client LaunchObj ActiveX Control Multiple Unsafe Methods (SYM09-001)

The version of the LaunchObj ActiveX control, a component included with Symantec AppStream Client / Altiris Streaming Agent and installed on the remote Windows host, reportedly contains a number of unsafe methods, such as 'installAppMgr', that can be used to download and execute arbitrary code. I...

Office Viewer ActiveX Control 3.0.1 Remote File Execution Exploit

No description provided by source. =======================================================================================br Author: Houssamix br =======================================================================================br Office Viewer ActiveX Control v 3.0.1 Remote File execution...

Office Viewer ActiveX Control 3.0.1 - Remote Command Execution

Office Viewer ActiveX Control 3.0.1 - Remote Command Execution ======================================================================================= Author: Houssamix ======================================================================================= Office Viewer ActiveX Control v 3.0.1...

Office Viewer ActiveX Control 3.0.1 Remote File Execution Exploit

Exploit for unknown platform in category remote exploits ================================================================= Office Viewer ActiveX Control 3.0.1 Remote File Execution Exploit =================================================================...

PDFBuilderX ActiveX unauthorized filesystem access

Unsafe methods are available...

Google Chrome Insecure Methods

Google Chrome Inesecure Methods&XSS By: e.wiZz! [email protected] najjaci.net Thanks: shinnaifor being so cool and lot of other friends In the wild... Chrome suffers from insecure methods thru "view-source" URI schemeit is just scheme,not protocol. file disclosure chrome-resource://thumb/C:/ XSS:...

Some of the blast path tips-vulnerability warning-the black bar safety net

Webmasters network dedecms proof method directory http://chinaz.com/include/htmledit/index.php?modetype=basic&height=airpig Fatal error: Unsupported operand types in E:\2008.chinaz\include\htmledit\index.php on line 7 These are the use of a cms vulnerability Then say under Phpmyadmin This more...

Code injection

Unspecified vulnerability in MyServer 0.8.11 allows remote attackers to cause a denial of service daemon crash via multiple invalid requests with the HTTP GET, DELETE, OPTIONS, and possibly other methods, related to a "204 No Content error."...

CVE-2008-5160

Unspecified vulnerability in MyServer 0.8.11 allows remote attackers to cause a denial of service daemon crash via multiple invalid requests with the HTTP GET, DELETE, OPTIONS, and possibly other methods, related to a "204 No Content error."...

CVE-2008-5160

CVE-2008-5160 targets MyServer 0.8.11, described as an unspecified remote DoS that crashes the daemon via multiple invalid HTTP requests (GET/DELETE/OPTIONS and possibly others) related to a “204 No Content error.” OpenVAS entries corroborate a MyServer remote DoS vulnerability, with references t...

Osmotic pre-Flash to get shell shortcut/Ewebeditor/ASP/ASPX/PHP the version of vulnerability-vulnerability warning-the black bar safety net

Recent thinking from the new writing blog, I always take someone else's stuff posted Today in the blog on yourself to write something, nothing technical content, even if a summary. Hope the newbies some help, the cattle people to the table to laugh at me, huh? ewebeditor, believe play the Black...

Autodesk LiveUpdate ActiveX Control Code Execution (CVE-2008-4471; CVE-2008-4472)

Autodesk provides several software products for professional designing of buildings and other infrastructure. A code execution vulnerability has been reported in Autodesk LiveUpdate ActiveX control within multiple products. The vulnerability is due to an error in the Autodesk LiveUpdate ActiveX...

CVE-2008-4924

Multiple insecure method vulnerabilities in MW6 Technologies 1D Barcode ActiveX control BARCODELib.MW6Barcode, Barcode.dll 3.0.0.1 allow remote attackers to overwrite arbitrary files via a full pathname argument to the 1 SaveAsBMP and 2 SaveAsWMF methods...

CVE-2008-4924

Multiple insecure method vulnerabilities in MW6 Technologies 1D Barcode ActiveX control BARCODELib.MW6Barcode, Barcode.dll 3.0.0.1 allow remote attackers to overwrite arbitrary files via a full pathname argument to the 1 SaveAsBMP and 2 SaveAsWMF methods...

MW6 Barcode ActiveX (Barcode.dll) Insecure Method Exploit

No description provided by source. !-- By Dr.Pantagon DeltaSecurityCenter www.DeltaSecurity.ir Description : 1D Barcode ActiveX ver : 3.0.0.1 CopyRight : MW6 Technologies, Inc. Download Link : http://www.mw6tech.com/barcode/try/MW6Barcode.zip This was written for educational purpose. Use it at...

mw6aztec-insecure.txt

Test Exploit page targetFile = "C:\WINDOWS\system32\Aztec.dll" prototype = "Sub SaveAsBMP ByVal FileName As String " memberName = "SaveAsBMP" progid = "AZTECLib.MW6Aztec" argCount = 1 arg1="c:\windows\system.ini" target.SaveAsBMP arg1 'target.SaveAsWMF arg1...

Microsoft Internet Explorer address bar spoofing

There are few methods of address bar spoofing...

ruby: multiple insufficient safe mode restrictions

Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not properly restrict access to critical variables and methods at various safe levels, which allows context-dependent attackers to bypass intended access restrictions via 1 untracevar, 2...

ruby: multiple insufficient safe mode restrictions

Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not properly restrict access to critical variables and methods at various safe levels, which allows context-dependent attackers to bypass intended access restrictions via 1 untracevar, 2...