MS00-006: Microsoft IIS IDA/IDQ Multiple Vulnerabilities (uncredentialed check)

The remote version of IIS is affected by two vulnerabilities : - An information disclosure issue allows a remote attacker to obtain the real pathname of the document root by requesting nonexistent files with .ida or .idq extensions. - An argument validation issue in the WebHits component lets a...

"Absent Directory Browser Argument" DoS

"Absent Directory Browser Argument" DoS Advisory Code: VIGILANTE-2000003 Release Date: July 15, 2000 Systems Affected: Internet Information Server 4.0 for NT upgraded from IIS 3.0 Internet Information Server 5.0 for NT upgraded from IIS 3.0 THE PROBLEM A system with Internet Information Server 4....

VIGILANTE-2000003.txt

"Absent Directory Browser Argument" DoS Advisory Code: VIGILANTE-2000003 Release Date: July 15, 2000 Systems Affected: Internet Information Server 4.0 for NT upgraded from IIS 3.0 Internet Information Server 5.0 for NT upgraded from IIS 3.0 THE PROBLEM A system with Internet Information Server 4....

Security Bulletin (MS00-042)

The following is a Security Bulletin from the Microsoft Product Security Notification Service. Please do not reply to this message, as it was sent from an unattended mailbox. -----BEGIN PGP SIGNED MESSAGE----- Patch Available for "Active Setup Download" Vulnerability Originally Posted: June 29,...

Microsoft Windows Media Services 4.04.1 - Denial of Service (MS00-038)

Microsoft Windows Media Services 4.04.1 - Denial of Service MS00-038 // source: https://www.securityfocus.com/bid/1282/info Windows Media Encoder is part of Windows Media Services. It's purpose is to convert content into a suitable format for video or audio streaming through the Media Services. I...

Microsoft Windows Media Services 4.0/4.1 - Denial of Service (MS00-038)

// source: https://www.securityfocus.com/bid/1282/info Windows Media Encoder is part of Windows Media Services. It's purpose is to convert content into a suitable format for video or audio streaming through the Media Services. If a specially malformed request is sent to the Windows Media Encoder ...

Microsoft Internet Explorer 4.05.05.5 preview5.0.1 - DocumentComplete() Cross Frame Access

Microsoft Internet Explorer 4.05.05.5 preview5.0.1 - DocumentComplete Cross Frame Access source: https://www.securityfocus.com/bid/1224/info The DocumentComplete function in IE does not properly validate origin domains. Therefore it is possible for a remote webserver to gain read access to local...

Microsoft Internet Explorer 4.0/5.0/5.5 preview/5.0.1 - DocumentComplete() Cross Frame Access

source: https://www.securityfocus.com/bid/1224/info The DocumentComplete function in IE does not properly validate origin domains. Therefore it is possible for a remote webserver to gain read access to local files on the machine of any website visitor or email recipient by accessing the browser...

Security Bulletin (MS00-031)

The following is a Security Bulletin from the Microsoft Product Security Notification Service. Please do not reply to this message, as it was sent from an unattended mailbox. -----BEGIN PGP SIGNED MESSAGE----- Microsoft Security Bulletin MS00-031 - -------------------------------------- Patch...

Microsoft Windows 9598Enterprise Server 4NT Server 4Terminal Server 4Workstation 4 - Riched Buffer Overflow

Microsoft Windows 9598Enterprise Server 4NT Server 4Terminal Server 4Workstation 4 - Riched Buffer Overflow Windows 95/98,Windows NT Enterprise Server 4.0 SP1/SP2/SP3/SP4/SP5/SP6,Windows NT Server 4.0 SP1/SP2/SP3/SP4/SP5/SP6/SP6a,Windows NT Terminal Server 4.0 SP1/SP2/SP3/SP4/SP5/SP6,Windows NT...

ActiveX_bof.txt

ActiveX Buffer Overruns Advisory Disclaimer: I'm not responsible for anything, unless it's good. This advisory outlines several buffer overruns in several controls, and the vulnerability of ActiveX controls to buffer overrun attacks in general. It appears that the ActiveX/OLE/COM technology in...

msie4-5.java.DoS.txt

Date: Mon, 9 Nov 1998 10:57:55 -0600 From: Aleph One To: [email protected] Subject: Major Explorer 4 java security hole! ---------- Forwarded message ---------- Date: Sun, 08 Nov 1998 05:04:27 +0100 From: Fabio Ciucci To: [email protected] Subject: NTSEC Major Explorer 4 java security hole!...

iis4.0.smtp.DoS.txt

Date: Tue, 16 Feb 1999 14:03:43 -0600 From: Bug Traqqer To: [email protected] Subject: Re: IIS 4.0 SMTPSVC vs. QMAIL To all- if you find this problem happening to you there are fixes on both product sides. Qmail has provided a patch for stray line feeds. It is available through the...

Update for Windows 7 (KB2719857)

Update for Windows 7 KB2719857...

Update for Microsoft Publisher 2016 (KB4484334) 64-Bit Edition

Update for Microsoft Publisher 2016 KB4484334 64-Bit Edition...

Security Update for Windows Server 2003 for Itanium-based Systems (KB928255)

A security issue has been identified that could allow an attacker to compromise your Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer...

Security Update for Windows 7 (KB2758857)

A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...

Cumulative Security Update for ActiveX Killbits for Windows Server 2003 x64 Edition (KB2900986)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

Security Update for Windows Server 2008 R2 x64 Edition (KB2585542)

A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain access to information. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...

Security Update for Windows Server 2003 64-bit Itanium Edition (KB905495)

A security issue has been identified that could allow an attacker to tamper with the file transfer location on your computer when using the Microsoft Windows FTP File Transfer Protocol client. You can help protect your computer by installing this update from Microsoft. After you install this item...