Memory corruption

Microsoft Internet Explorer 5.01 through 7 allows remote attackers to execute arbitrary code via a crafted website using Javascript that creates, modifies, deletes, and accesses document objects using the tags property, which triggers heap corruption, related to uninitialized or deleted objects, ...

Memory corruption

Microsoft Internet Explorer 6 and 7 allows remote attackers to execute arbitrary code via uninitialized or deleted objects used in repeated calls to the 1 cloneNode or 2 nodeValue JavaScript function, a different issue than CVE-2007-3902 and CVE-2007-5344, a variant of "Uninitialized Memory...

ZDI-07-075: Microsoft Internet Explorer Element Tags Vulnerability

ZDI-07-075: Microsoft Internet Explorer Element Tags Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-075.html December 11, 2007 -- CVE ID: CVE-2007-5344 -- Affected Vendor: Microsoft -- Affected Products: Internet Explorer 6 Internet Explorer 7 -- TippingPointTM IPS Customer...

Microsoft Internet Explorer Element Tags Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the handling of document objects...

DEBIAN-CVE-2007-6239

The "cache update reply processing" functionality in Squid 2.x before 2.6.STABLE17 and Squid 3.0 allows remote attackers to cause a denial of service crash via unknown vectors related to HTTP headers and an Array memory leak during requests for cached objects...

PYSEC-2007-4

Plone 2.5 through 2.5.4 and 3.0 through 3.0.2 allows remote attackers to execute arbitrary Python code via network data containing pickled objects for the 1 statusmessages or 2 linkintegrity module, which the module unpickles and executes...

Code injection

Plone 2.5 through 2.5.4 and 3.0 through 3.0.2 allows remote attackers to execute arbitrary Python code via network data containing pickled objects for the 1 statusmessages or 2 linkintegrity module, which the module unpickles and executes...

CVE-2007-5741

Plone 2.5 through 2.5.4 and 3.0 through 3.0.2 allows remote attackers to execute arbitrary Python code via network data containing pickled objects for the 1 statusmessages or 2 linkintegrity module, which the module unpickles and executes...

CVE-2007-5741

Plone 2.5 through 2.5.4 and 3.0 through 3.0.2 allows remote attackers to execute arbitrary Python code via network data containing pickled objects for the 1 statusmessages or 2 linkintegrity module, which the module unpickles and executes...

Sun Java Web Start dnsResolve ActiveX Buffer Overflow (CVE-2007-5019)

Microsoft SQL Server is a Relational Database Management System RDBMS that can be managed through Distributed Management Objects DMO. A remote attacker can exploit this issue to execute arbitrary code on vulnerable server...

CVE-2003-1477

CVE-2003-1477 affects MAILsweeper for SMTP versions 4.3.6 and 4.3.7. A remote attacker can trigger a DoS by sending a PowerPoint attachment that is corrupt or contains embedded objects, causing CPU exhaustion and making the server unresponsive. Documents confirm the vulnerable product and the DoS...

security flaw

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed...

EasyMail SMTP Object ActiveX Control Multiple Buffer Overflows

EasyMail Objects, a set of COM objects for supporting email protocols, is installed on the remote Windows host. It may have been bundled with a third-party application, such as Oracle Document Capture, Earthlink internet access software, Borland Caliber RM Client, and FrontRange Heat. The SMTP...

Buffer overflow

Multiple buffer overflows in unspecified ActiveX controls in COM objects in Avaya IP Softphone R5.2 before SP3, and R6.0, allow remote attackers to execute arbitrary code via unspecified vectors...

Microsoft SQL Server Distributed Management Objects BoF Exploit

No description provided by source. !-- + title: Microsoft SQL Server Distributed Management Objects Buffer Overflow + Critical: Critical remote + Impact: MS Internet Explorer 6 - Code Execute + Tested Operating System: Windows XP SP2 KR, Windows 2000 Pro SP4 KR + Tested Software: MSDE 2000...

Microsoft SQL Server - Distributed Management Objects Buffer Overflow

Microsoft SQL Server - Distributed Management Objects Buffer Overflow Code Execute + Tested Operating System: Windows XP SP2 KR, Windows 2000 Pro SP4 KR + Tested Software: MSDE 2000 SQLDMO.dll version 2000.80.760.0 + Reference & Thanks : code by rgod http://www.milw0rm.com/exploits/4379 code by...

Microsoft SQL Server - Distributed Management Objects Buffer Overflow

Code Execute + Tested Operating System: Windows XP SP2 KR, Windows 2000 Pro SP4 KR + Tested Software: MSDE 2000 SQLDMO.dll version 2000.80.760.0 + Reference & Thanks : code by rgod http://www.milw0rm.com/exploits/4379 code by Trirat Puttaraksa http://www.milw0rm.com/exploits/2426 + Author: 96sysi...

CVE-2007-4814

Buffer overflow in the SQLServer ActiveX control in the Distributed Management Objects OLE DLL sqldmo.dll 2000.085.2004.00 in Microsoft SQL Server Enterprise Manager 8.05.2004 allows remote attackers to execute arbitrary code via a long second argument to the Start method...

Microsoft SQL Server Distributed Management Objects (sqldmo.dll) BoF

No description provided by source. !-- 18.48 01/09/2007 Microsoft SQL Server Distributed Management Objects OLE DLL for SQL Enterprise Manager sqldmo.dll remote buffer overflow poc file version: 2000.085.2004.00 product version: 8.05.2004 passing some fuzzy chars to Start method: EAX 00000000 ECX...

Microsoft SQL Server Distributed Management Objects ActoveX buffer overflow

Buffer overflow in SQLDMO.SQLServer Start method...