58 matches found
Command Execution Vulnerability in Tencent QQ pc Client Software
QQ, short for Tencent QQ, is an Internet-based instant messaging IM software developed by Tencent. A command execution vulnerability exists in the Tencent QQ pc client software, where the software PC client can allow an attacker to inject executable DLL files into the client process to perform...
WeChat pc client software suffers from arbitrary code execution vulnerability
WeChat is a free application launched by Tencent to provide instant messaging services for smart terminals. The WeChat pc client software suffers from an arbitrary code execution vulnerability, which can be exploited by an attacker with the help of malware to execute arbitrary code DLL files on t...
Youku client update process suffers from arbitrary file download vulnerability
Youku PC client is a video player that supports both online and local use. An arbitrary file download vulnerability exists in the Youku PC client update process. The vulnerability is caused by the client update process using an insecure HTTP communication protocol to interact with the server, and...
Memory corruption vulnerability exists in Sohu Video 5 (CNVD-2017-35531)
Sohu Video 5 is a video player from Sohu. A memory corruption vulnerability exists in the Sohu Video 5 PC client when opening certain mov files, which can be exploited by attackers to cause a denial of service or code execution...
Memory Corruption Vulnerability in Storm Video 5 PC Client
Storm Video 5 is a video player from Beijing Storm Technology Co. Storm Video 5 PC client when opening specific 3gp files = A memory corruption vulnerability exists, which can be exploited by attackers to cause a denial of service...
CVE-2016-8274
CVE-2016-8274 refers to a DLL hijacking vulnerability in Huawei HiSuite PC client software, specifically version 4.0.5.300_OVE. The root cause is insufficient verification of loaded system DLL files, which can allow an attacker to cause the system to load a malicious DLL and execute arbitrary cod...
Security Advisory - Multiple Security Vulnerabilities in Huawei HiSuite
Huawei HiSuite PC client software has an information leak vulnerability. The software provides the function for configuring the proxy server. The password textbox on the proxy configuration UI do not disable the password copy function. An attacker who can log in to the system can copy out the...
CVE-2008-3157
CVE-2008-3157 affects Nortel SIP Multimedia PC Client 4.x MCS5100 and MCS5200. The vulnerability stems from not limiting concurrent sessions, enabling denial of service via a large number of sessions. The NVD lists a CVSS v2 base score of 5.0 (Medium) with network access, low attack complexity, a...
Nortel SIP多媒体PC客户端会话处理拒绝服务漏洞
Nortel Networks公司推出的SIP多媒体PC客户端是一个功能全面的多媒体即时通讯工具。 SIP多媒体PC客户端没有限制可生成的连接或活动窗口的数量,未经认证的远程攻击者可以创建大量会话,直到系统无法处理,导致耗尽客户端系统上的可用资源。 Nortel Networks 多媒体PC客户端SIP电话 4.x Novell ------ 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://support.novell.com/security-alerts...
Nortel SIP多媒体PC客户端远程报文洪水拒绝服务漏洞
BUGTRAQ ID: 28994 Nortel SIP多媒体PC客户端是基于PC的应用程序,可提供强大的多媒体通讯功能。 Nortel SIP处理大量报文时存在漏洞,远程攻击者可能利用此漏洞导致程序崩溃不可用。 如果使用Nessus扫描工具向Nortel SIP多媒体PC客户端发送了大量报文的话,就可能触发缓冲区溢出,导致客户端出现错误消息并终止。 Nortel Networks 多媒体PC客户端SIP电话 4.0 Nortel Networks 多媒体PC客户端SIP电话 3.5 Nortel Networks ---------------...
Buffer overflow
Buffer overflow in the SIP header parsing module in the Nortel PC Client SIP Soft Phone 4.1 3.5.20820051015 allows remote attackers to execute arbitrary code via a malformed message, a different vulnerability than CVE-2007-3361...
CVE-2007-3438
Buffer overflow in the SIP header parsing module in the Nortel PC Client SIP Soft Phone 4.1 3.5.20820051015 allows remote attackers to execute arbitrary code via a malformed message, a different vulnerability than CVE-2007-3361...
CVE-2007-3438
CVE-2007-3438 : Buffer overflow in the SIP header parsing module of the Nortel PC Client SIP Soft Phone 4.1 3.5.208[20051015]. This vulnerability allows remote attackers to execute arbitrary code via a malformed SIP message. It is described as a separate issue from CVE-2007-3361. No remediation d...
CVE-2007-3438
Buffer overflow in the SIP header parsing module in the Nortel PC Client SIP Soft Phone 4.1 3.5.20820051015 allows remote attackers to execute arbitrary code via a malformed message, a different vulnerability than CVE-2007-3361...
CVE-2007-3361
The Nortel PC Client SIP Soft Phone 4.1 3.5.20820051015 allows remote attackers to cause a denial of service device crash via a SIP message with a malformed header...
CVE-2007-3361
CVE-2007-3361 affects the Nortel PC Client SIP Soft Phone (version 4.1, 3.5.208[20051015]). The vulnerability allows remote attackers to cause a denial of service (device crash) by sending a SIP message with a malformed header. The provided documents do not include exploit code or a specific patc...
CVE-2007-3361
The Nortel PC Client SIP Soft Phone 4.1 3.5.20820051015 allows remote attackers to cause a denial of service device crash via a SIP message with a malformed header...
2020-12 .NET 5.0.1 Update for x86 Client
2020-12 .NET 5.0.1 Update for x86 Client...