20 matches found
Microsoft Visual Studio PDWizard.ocx ActiveX vulnerability
Added: 09/30/2007 CVE: CVE-2007-4891 BID: 25638 OSVDB: 37106 Background Microsoft Visual Studio is a product for facilitating software development on Windows operating systems. Problem ActiveX controls contained in the PDWizard.ocx file in Microsoft Visual Studio 6.0 expose the StartProcess metho...
Microsoft Visual Studio PDWizard.ocx ActiveX vulnerability
Added: 09/30/2007 CVE: CVE-2007-4891 BID: 25638 OSVDB: 37106 Background Microsoft Visual Studio is a product for facilitating software development on Windows operating systems. Problem ActiveX controls contained in the PDWizard.ocx file in Microsoft Visual Studio 6.0 expose the StartProcess metho...
Microsoft Visual Studio PDWizard.ocx ActiveX vulnerability
Added: 09/30/2007 CVE: CVE-2007-4891 BID: 25638 OSVDB: 37106 Background Microsoft Visual Studio is a product for facilitating software development on Windows operating systems. Problem ActiveX controls contained in the PDWizard.ocx file in Microsoft Visual Studio 6.0 expose the StartProcess metho...
Microsoft Visual Studio PDWizard.ocx ActiveX vulnerability
Added: 09/30/2007 CVE: CVE-2007-4891 BID: 25638 OSVDB: 37106 Background Microsoft Visual Studio is a product for facilitating software development on Windows operating systems. Problem ActiveX controls contained in the PDWizard.ocx file in Microsoft Visual Studio 6.0 expose the StartProcess metho...
Microsoft Visual Studio 6.0 (PDWizard.ocx) Remote Command Execution
No description provided by source. pre codespan style="font: 10pt Courier New;"span class="general1-symbol"body bgcolor="E0E0E0"------------------------------------------------------------------------------------------------------ bMicrosoft Visual Studio 6.0 PDWizard PDWizard.ocx = 6.0.0.9782...
CVE-2007-4891
A certain ActiveX control in PDWizard.ocx 6.0.0.9782 and earlier in Microsoft Visual Studio 6.0 exposes dangerous 1 StartProcess, 2 SyncShell, 3 SaveAs, 4 CABDefaultURL, 5 CABFileName, and 6 CABRunFile methods, which allows remote attackers to execute arbitrary programs and have other impacts, as...
Code injection
A certain ActiveX control in PDWizard.ocx 6.0.0.9782 and earlier in Microsoft Visual Studio 6.0 exposes dangerous 1 StartProcess, 2 SyncShell, 3 SaveAs, 4 CABDefaultURL, 5 CABFileName, and 6 CABRunFile methods, which allows remote attackers to execute arbitrary programs and have other impacts, as...
CVE-2007-4891
CVE-2007-4891 concerns the PDWizard.ocx ActiveX control in Microsoft Visual Studio 6.0. Affected component: PDWizard.ocx (Visual Studio 6.0) with versions 6.0.0.9782 and earlier. Root cause: the PDWizard.ocx ActiveX control exposes dangerous methods (StartProcess, SyncShell, SaveAs, CABDefaultURL...
CVE-2007-4891
A certain ActiveX control in PDWizard.ocx 6.0.0.9782 and earlier in Microsoft Visual Studio 6.0 exposes dangerous 1 StartProcess, 2 SyncShell, 3 SaveAs, 4 CABDefaultURL, 5 CABFileName, and 6 CABRunFile methods, which allows remote attackers to execute arbitrary programs and have other impacts, as...
Microsoft Visual Studio 6.0 (PDWizard.ocx) Remote Command Execution
No description provided by source. pre codespan style="font: 10pt Courier New;"span class="general1-symbol"body bgcolor="E0E0E0"------------------------------------------------------------------------------------------------------ bMicrosoft Visual Studio 6.0 PDWizard PDWizard.ocx = 6.0.0.9782...
Microsoft Visual Studio PDWizard.ocx ActiveX控件多个不安全方式漏洞
BUGTRAQ ID: 25638 Microsoft Visual Studio是微软公司的开发工具套件系列产品,是一个基本完整的开发工具集,包括了软件整个生命周期中所需要的大部分工具。 Visual Studio所安装的PDWizard.ocx ActiveX控件没有正确的验证对StartProcess、SyncShell、SaveAs、CABDefaultURL、 CABFileName、CABRunFile等方式的输入参数,如果用户受骗访问了恶意网页并向这些方式传送了超长参数的话,就可能导致执行任意代码。 Microsoft Visual Studio 6.0...
Microsoft Visual Studio 6.0 (PDWizard.ocx) Remote Command Execution
Exploit for unknown platform in category remote exploits =================================================================== Microsoft Visual Studio 6.0 PDWizard.ocx Remote Command Execution ===================================================================...
msvs-pdwiz.txt
------------------------------------------------------------------------------------------------------ Microsoft Visual Studio 6.0 PDWizard PDWizard.ocx url: http://www.microsoft.com author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educationa...
Microsoft Visual Studio 6.0 - PDWizard.ocx Remote Command Execution
Microsoft Visual Studio 6.0 - PDWizard.ocx Remote Command Execution ------------------------------------------------------------------------------------------------------ Microsoft Visual Studio 6.0 PDWizard PDWizard.ocx url: http://www.microsoft.com author: shinnai mail: shinnaiatautisticidotorg...
Microsoft Visual Studio 6.0 - 'PDWizard.ocx' Remote Command Execution
------------------------------------------------------------------------------------------------------ Microsoft Visual Studio 6.0 PDWizard PDWizard.ocx url: http://www.microsoft.com author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educationa...
Internet Explorer Pdwizard.ocx ActiveX Object Memory Corruption (MS07-045; CVE-2007-3041)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer IE ActiveX control pdwizard.ocx. ActiveX controls are reusable software components based on Microsoft Component Object Model COM. To trigger the vulnerability, an attacker can create a malicious web page that...
Microsoft IE pdwizard.ocx ActiveX控件远程代码执行漏洞(MS07-045)
BUGTRAQ ID: 25295 CVECAN ID: CVE-2007-3041 Internet Explorer是微软发布的非常流行的WEB浏览器。 IE的pdwizard.ocx控件实现上存在漏洞,远程攻击者可能利用此漏洞控制用户系统。 pdwizard.ocx控件中存在内存破坏漏洞,如果用户受骗使用IE访问了恶意站点的话就可能导致执行任意代码。成功利用此漏洞的攻击者可以获得与本地用户相同的用户权限,那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。 Microsoft Internet Explorer 7.0 Microsoft Intern...
CVE-2007-3041
Unspecified vulnerability in the pdwizard.ocx ActiveX object for Internet Explorer 5.01, 6 SP1, and 7 allows remote attackers to execute arbitrary code via unknown vectors related to Microsoft Visual Basic 6 objects and memory corruption, aka "ActiveX Object Memory Corruption Vulnerability."...
CVE-2007-3041
CVE-2007-3041 describes a remote code execution vulnerability in the Internet Explorer ActiveX object pdwizard.ocx (used by IE 5.01, 6 SP1, and 7). The flaw is an unspecified memory corruption issue in the ActiveX control that could be triggered by a specially crafted web page, allowing an attack...
CVE-2007-3041
Unspecified vulnerability in the pdwizard.ocx ActiveX object for Internet Explorer 5.01, 6 SP1, and 7 allows remote attackers to execute arbitrary code via unknown vectors related to Microsoft Visual Basic 6 objects and memory corruption, aka "ActiveX Object Memory Corruption Vulnerability."...