IBM WebSphere Application Server 6.1 < Fix Pack 19 Unspecified Vulnerability

Binary data 4685.prm...

IBM WebSphere Application Server 6.1 < Fix Pack 19 Multiple Flaws

IBM WebSphere Application Server 6.1 before Fix Pack 19 appears to be running on the remote host. As such, it is reportedly affected by multiple flaws : - An as-yet unspecified security exposure vulnerability exists when the 'FileServing' feature in the Servlet Engine / Web Container component is...

IBM DB2 8 < Fix Pack 17 Multiple Vulnerabilities

According to its version, the installation of IBM DB2 8 running on the remote host is affected by multiple issues : - By sending malicious DB2 UDB v7 client CONNECT/DETACH requests it may be possible to crash the remote DB2 server. IZ08134 - Failure to switch the owner of the 'DB2FMP' process may...

Immunity Canvas: MS08_053

Name| ms08053 ---|--- CVE| CVE-2008-3008 Exploit Pack| CANVAS Description| Internet Explorer GetDetailString Overflow MS08053 Notes| CVE Name: CVE-2008-3008 VENDOR: Microsoft MSADV: MS08-053 Repeatability: One Shot Note: After the exploit works, Internet Explorer might crash. The callback...

Security Update for the 2007 Microsoft Office System (KB951944)

A security vulnerability exists in the 2007 Microsoft Office System and the Compatibility Pack for the 2007 Office System that could allow remote code execution. This update resolves that vulnerability...

Design/Logic Flaw

Secu Star DriveCrypt Plus Pack 3.9 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer...

CVE-2008-3898

CVE-2008-3898 affects Secu Star DriveCrypt Plus Pack 3.9. Local attackers can read pre-boot authentication passwords stored in the BIOS keyboard buffer because the buffer is not cleared before/after use, enabling partial disclosure of sensitive data via memory locations associated with that buffe...

PT-2008-5228 · Microsoft · Windows Vista

Name of the Vulnerable Software and Affected Versions: Windows Vista versions prior to SP1 Description: The issue allows local users to obtain sensitive information by reading physical memory locations associated with the BIOS Keyboard buffer, which stores pre-boot authentication passwords. This...

Novell eDirectory Multiple Vulnerabilities (Linux)

This host is running Novell eDirectory, which is prone to XSS, Denial of Service, and Remote Code Execution Vulnerabilities. OpenVAS Vulnerability Test $Id: secpodnovelledirmultvulnlinux900210.nasl 7823 2017-11-20 08:54:04Z cfischer $ Description: Novell eDirectory Multiple Vulnerabilities Linux...

Novell eDirectory Multiple Vulnerabilities - Windows

Novell eDirectory is prone to cross-site scripting XSS, denial of service DoS and remote code execution RCE vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

IBM DB2 9.5 < 9.5 Fix Pack 2 Multiple Vulnerabilities

Binary data 4638.prm...

IBM DB2 9.5 < Fix Pack 2 Multiple Vulnerabilities

The installation of IBM DB2 9.5 running on the remote host does not have Fix Pack 2 applied. It is, therefore, affected by the following issues : - DB2 does not mark inoperative or drop views and triggers if the definer cannot maintain the objects IZ22307. - Password-related connection string...

SMB Registry : Windows Build Number and Service Pack Version

Detection of the installed Windows build number and Service Pack version. The script logs in via SMB, reads various registry keys to retrieve the Windows build number and Service Pack version. SPDX-FileCopyrightText: 2008 Renaud Deraison Some text descriptions might be excerpted from a referenced...

PT-2008-5134 · Newsoft · Folder Lock

Name of the Vulnerable Software and Affected Versions: Folder Lock versions 5.9.5 and earlier Description: The issue concerns the use of weak encryption, specifically ROT-25, for password protection. This weakness allows local administrators to access sensitive information by reading and decrypti...

McAfee Encrypted USB Manager Remote Security Bypass Vulnerability

The host is running McAfee Encrypted USB Manager, which is prone to sensitive information disclosure vulnerability. OpenVAS Vulnerability Test $Id: secpodmcafeeencryptusbmngrsecbypassvuln900026.nasl 5370 2017-02-20 15:24:26Z cfi $ Description: McAfee Encrypted USB Manager Remote Security Bypass...

Immunity Canvas: MS08_049

Name| ms08049 ---|--- CVE| CVE-2008-1457 Exploit Pack| CANVAS Description| EventSystem Service Overflow Notes| CVE Name: CVE-2008-1457 VENDOR: Microsoft Notes: Due to the fact that the svchost.exe instance where the EventSystem service is running is DEP protected, and that all loaded DLLs have GS...

CVE-2008-3020

Microsoft Office 2000 SP3 and XP SP3; Office Converter Pack; and Works 8 do not properly parse the length of a BMP file, which allows remote attackers to execute arbitrary code via a crafted BMP file, aka the "Malformed BMP Filter Vulnerability."...

Design/Logic Flaw

Microsoft Office 2000 SP3, XP SP3, and 2003 SP2; Office Converter Pack; and Works 8 do not properly parse the length of a PICT file, which allows remote attackers to execute arbitrary code via a crafted PICT file with an invalid bitsperpixel field, aka the "PICT Filter Parsing Vulnerability," a...

CVE-2008-3020

CVE-2008-3020 is a remote code execution vulnerability in Microsoft Office filters, specifically in the BMPIMP32.FLT module used by Office BMP import handling. A crafted BMP image with a malformed header (e.g., an excessive number of colors) causes a heap buffer overflow/memory corruption in BMP ...

CVE-2008-3019

CVE-2008-3019 describes a remote code execution vulnerability in Microsoft Office filters related to malformed Encapsulated PostScript (EPS) handling. A crafted EPS file could allow code execution when opened with affected Office products: Office 2000 SP3, XP SP3, and 2003 SP2, plus the Office Co...