COMMAX UMS Client ActiveX Control 缓冲区错误漏洞

COMMAX UMS Client ActiveX Control is a browser plug-in from the Korean company COMMAX. A buffer error vulnerability exists in COMMAX UMS Client ActiveX Control version 1.7.0.2, which stems from a heap buffer overflow issue in CNCCtrl.dll that could lead to the execution of arbitrary code...

EUVD-2002-0030

Malware in sbrugna...

EUVD-2019-15067

Malware in sbrugna...

EUVD-2009-1108

Malware in sbrugna...

EUVD-2005-4837

Malware in sbrugna...

EUVD-2009-1107

Malware in sbrugna...

EUVD-2012-2861

Malware in sbrugna...

EUVD-2022-4875

Malicious code in bioql PyPI...

CVE-2022-22650

This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.5, macOS Monterey 12.3, Security Update 2022-003 Catalina. A plug-in may be able to inherit the application's permissions and access user data...

Samsung Mobile Galaxy Watch PlugIn 日志信息泄露漏洞

The Samsung Galaxy Watch3 is the 3rd generation smartwatch in the Samsung Galaxy Watch series. The Samsung Galaxy Watch3 plug-in has a security vulnerability that allows an attacker with logging privileges to exploit the vulnerability to disclose the Wi-Fi password connected to the user's...

IrfanView FPX plugin buffer overflow vulnerability (CNVD-2017-15691)

IrfanView is an image viewer developed by Irfan Skiljan, a software developer from Bosnia and Herzegovina, which supports image browsing, image editing, image format conversion, etc. FPX Plugin is one of the programmable interface extensions. A buffer overflow vulnerability exists in IrfanView...

Memory corruption

Unspecified vulnerability in the browser engine in Mozilla Firefox before 20.0 on Android allows remote attackers to cause a denial of service stack memory corruption and application crash or possibly execute arbitrary code via unknown vectors involving a plug-in...

CVE-2007-6520

Opera before 9.25 contains multiple vulnerabilities (CVE-2007-6520, CVE-2007-6521, CVE-2007-6522, CVE-2007-6524) that enable cross-domain scripting via plug-ins, TLS certificate handling that could allow arbitrary code execution, and memory disclosure through BMP/file handling. The issues affect ...

Microsoft Security Bulletin MS06-006 Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution (911564)

Microsoft Security Bulletin MS06-006 Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution 911564 Published: February 14, 2006 Version: 1.0 Summary Who should read this document: Customers who use a Microsoft Windows Media Player...

CVE-2003-1516

The org.apache.xalan.processor.XSLProcessorVersion class in Java Plug-in 1.4.201 allows signed and unsigned applets to share variables, which violates the Java security model and could allow remote attackers to read or write data belonging to a signed applet...