Code injection

CA Spectrum 9.2.x and 9.3.x before 9.3 H02 does not properly validate serialized Java objects, which allows remote authenticated users to obtain administrative privileges via crafted object data...

Python-Pickle-Class-Constructor

Python is an open source, object oriented programming language. The Python Pickle module is provided to convert object variables into a serialized form "pickling", and later recover the data back into an object hierarchy "unpickling". A vulnerability has been reported in the Pickle implementation...

Python 1.5/1.6/2.0/2.1.x Pickle Class Constructor Arbitrary Code Execution

No description provided by source. source: http://www.securityfocus.com/bid/5257/info Python is an open source, object oriented programming language. The Python Pickle module is provided to convert object variables into a serialized form pickling, and later recover the data back into an object...

CentOS Update for java CESA-2012:0135 centos6

Check for the Version of java OpenVAS Vulnerability Test CentOS Update for java CESA-2012:0135 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Microsoft Windows Fax Services Cover Page Editor Heap Buffer Overflow (CVE-2010-3974; CVE-2010-4701)

A heap buffer overflow vulnerability has been discovered in Microsoft Windows Fax Services. The Windows Fax Service is a component that allows a Windows system to act as a Fax server. One of the tools within this fax suite is the Fax Console, which allows a user to monitor the sending and receivi...

Cross site scripting

Cross-domain vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, and 7 allows remote attackers to access restricted information from other domains via JavaScript that uses the Object data type for the value of a 1 location or 2 location.href property, related to incorrect determination of t...

CVE-2008-2947

Cross-domain vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, and 7 allows remote attackers to access restricted information from other domains via JavaScript that uses the Object data type for the value of a 1 location or 2 location.href property, related to incorrect determination of t...

CVE-2008-2948

CVE-2008-2948 is documented as a cross-domain vulnerability in Internet Explorer, described as a duplicate/related attack to CVE-2008-2947. The connected sources indicate it affects IE, involves window location cross-domain handling via the Object data type, and is tied to the same family of vuln...

BitDefender AntiVirus 2008 - 'bdelev.dll' ActiveX Control Double-Free

source: https://www.securityfocus.com/bid/26824/info A BitDefender Antivirus 2008 ActiveX control is prone a double-free vulnerability because of a flaw in the way that the 'bdelev.dll' library handles certain object data prior to returning it. Successfully exploiting this issue allows remote...

AIX Object Data Manager DoS

No description provided...

[SA13370] AIX Unspecified System Startup Scripts Vulnerability

TITLE: AIX Unspecified System Startup Scripts Vulnerability SECUNIA ADVISORY ID: SA13370 VERIFY ADVISORY: http://secunia.com/advisories/13370/ CRITICAL: Less critical IMPACT: Manipulation of data, DoS WHERE: Local system OPERATING SYSTEM: AIX 5.x http://secunia.com/product/213/ DESCRIPTION: A...

CVE-2003-0935

Net-SNMP before 5.0.9 allows a user or community to access data in MIB objects, even if that data is not allowed to be viewed...

Re: [Full-Disclosure] BAD NEWS: Microsoft Security Bulletin MS03-032

----- Original Message ----- From: "[email protected]" [email protected] To: [email protected] Sent: Sunday, September 07, 2003 6:17 AM Subject: Full-Disclosure BAD NEWS: Microsoft Security Bulletin MS03-032 Since the cat somehow got out of the bag, and more importantly, this is so...

Microsoft Internet Explorer - Object Data Remote (MS03-032)

by malware M03-032 Exploit self.MoveTo 5000,5000 dim v24 cut="" v0="4D,5A,44,01,05,y,02,y,20,y,21,y,z2,75,y2,02,y2,99,y3,3E,y3,01,y,FB,30,6A,72,y1C,79,y3,9E, y1CD,66,33,C0,33,z,8C,D3,83,C3,20,B9,70,3F,8E,C3,F3,66,AB,8C,C0,8E,D8,B8,y,A0,8E,C0,C3,66"...

Microsoft Internet Explorer - Object Data Remote (MS03-032)

Microsoft Internet Explorer - Object Data Remote MS03-032 by malware M03-032 Exploit self.MoveTo 5000,5000 dim v24 cut="" v0="4D,5A,44,01,05,y,02,y,20,y,21,y,z2,75,y2,02,y2,99,y3,3E,y3,01,y,FB,30,6A,72,y1C,79,y3,9E,...

MS Internet Explorer Object Data Remote Exploit (M03-032)

Exploit for unknown platform in category remote exploits ========================================================= MS Internet Explorer Object Data Remote Exploit M03-032 ========================================================= by malware M03-032 Exploit self.MoveTo 5000,5000 dim v24 cut=""...