Microsoft Virtual Machine 2000310032003300 Series - com.ms.activeX.ActiveXComponent Arbitrary Program Execution

Microsoft Virtual Machine 2000310032003300 Series - com.ms.activeX.ActiveXComponent Arbitrary Program Execution source: https://www.securityfocus.com/bid/1754/info If a malicious website operator were to embed a specially crafted java object into a HTML document, it would be possible to execute...

Microsoft Virtual Machine 2000/3100/3200/3300 Series - 'com.ms.activeX.ActiveXComponent' Arbitrary Program Execution

source: https://www.securityfocus.com/bid/1754/info If a malicious website operator were to embed a specially crafted java object into a HTML document, it would be possible to execute arbitrary programs on a target host viewing the webpage through either Microsoft Internet Explorer or Outlook. Th...

Notes default ECL allows execution of unsigned code

Overview Lotus Notes prior to version 5.02, had permissive ECLs that allow for the execution of malicious mail messages. Description A Notes ECL is a list consisting of a Notes Username and a set of permissions from the following list for Notes 4.6.x: Access to file system Access to current...

Double clicking on MS Office documents from Windows Explorer may execute arbitrary programs in some cases

Georgi Guninski security advisory 21, 2000 Double clicking on MS Office dpocuments from Windows Explorer may execute arbitrary programs in some cases Systems affected: MS Office 2000, Win98/Win2000 probably other applications Risk: Medium Date: 18 September 2000 Legal Notice: This Advisory is...

MS Word and MS Access vulnerability - executing arbitrary programs, may be exploited by IE/Outlook

Georgi Guninski security advisory 17, 2000 MS Word and MS Access vulnerability - executing arbitrary programs, may be exploited by IE/Outlook Systems affected: MS Word and MS Access 2000 with or without Service Release 1a IE and Outlook may be also used, but are not needed / Windows 98 - almost...

ie5-access2000.txt

Georgi Guninski security advisory 14, 2000 IE 5 and Access 2000 vulnerability - executing programs Systems affected: IE 5.01, Access 2000, Win98 - probably other versions, have not tested Risk: High Disclaimer: The opinions expressed in this advisory and program are my own and not of any company...

IE 5 and Excel 2000, PowerPoint 2000 vulnerability - executing programs

Georgi Guninski security advisory 13, 2000 IE 5 and Excel 2000, PowerPoint 2000 vulnerability - executing programs Systems affected: IE 5.01, Excel 2000, PowerPoint 2000, Win98 - probably other versions, have not tested Risk: High Disclaimer: The opinions expressed in this advisory and program ar...

IE 5 and Access 2000 vulnerability - executing programs

Georgi Guninski security advisory 14, 2000 IE 5 and Access 2000 vulnerability - executing programs Systems affected: IE 5.01, Access 2000, Win98 - probably other versions, have not tested Risk: High Disclaimer: The opinions expressed in this advisory and program are my own and not of any company...

IE 5 and Excel 2000, PowerPoint 2000 vulnerability - executing programs

Georgi Guninski security advisory 14, 2000 IE 5 and Access 2000 vulnerability - executing programs Systems affected: IE 5.01, Access 2000, Win98 - probably other versions, have not tested Risk: High Disclaimer: The opinions expressed in this advisory and program are my own and not of any company...

Corel Linux OS 1.0 - get_it PATH

Corel Linux OS 1.0 - getit PATH source: https://www.securityfocus.com/bid/928/info A component of the "Corel Update" utility distributed with Corel's Linux OS is vulnerable to a local PATH vulnerability. The binary "getit", which is stored in /usr/X11R6/bin, is setuid root installed by default on...

CVE-1999-0051

CVE-1999-0051 affects IRIX FLEXlm LicenseManager versions 4.0–5.0. The issue allows arbitrary file creation and program execution via the LicenseManager component. No explicit patch/version remediation is provided in the documents; one source (PT-1997-1030) recommends disabling FLEXlm on affected...

SGI IRIX 6.4 - 'ioconfig' Local Privilege Escalation

source: https://www.securityfocus.com/bid/213/info A vulnerability exists in the ioconfig program, as shipping with IRIX 6.4 S2MP from Silicon Graphics, Inc. This program is only available on Irix 6.4 for the Origin/Onyx2. Other machines running IRIX are not vulnerable. This vulnerability will...

CVE-1999-1301

A design flaw in the Z-Modem protocol allows the remote sender of a file to execute arbitrary programs on the client, as implemented in rz in the rzsz module of FreeBSD before 2.1.5, and possibly other programs...

Security Update For Exchange Server 2013 SP1 (KB4036108)

A security issue has been identified that could allow an attacker to run programs and access data on a computer running Microsoft Exchange Server 2013. You can help protect your computer by installing this update from Microsoft...

Security Update For Exchange Server 2013 CU17 (KB4036108)

A security issue has been identified that could allow an attacker to run programs and access data on a computer running Microsoft Exchange Server 2013. You can help protect your computer by installing this update from Microsoft...

Security Update for Microsoft Windows 2000 (KB826232)

A security issue has been identified that could allow an attacker to read files or run programs on a computer, running Microsoft® Windows® 2000, that has been used to view an attacker's Web site or has read a specially crafted HTML e-mail. You can help protect your computer by installing this...

Cumulative Security Update for Outlook Express 5.5 Service Pack 2 (KB837009)

A security issue has been identified in Microsoft Outlook Express that could allow an attacker to read files on your computer, or cause a program to run. You can help protect your computer by installing this update. After you install this item, you may have to restart your computer...

Security Update For Exchange Server 2016 CU6 (KB4036108)

A security issue has been identified that could allow an attacker to run programs and access data on a computer running Microsoft Exchange Server 2016. You can help protect your computer by installing this update from Microsoft...

814078: Security Update (Microsoft Jscript version 5.5, Windows 2000)

A security issue has been identified that could allow an attacker to run programs on a computer running Microsoft® Windows®. The attacker would first have to send you an e-mail message or entice you into visiting a malicious Web site. You can help protect your computer by installing this update...

Security Update for Windows XP (819696)

An identified security issue in Microsoft® DirectX® could allow an attacker to run programs on a computer running Microsoft® Windows® XP. The attacker would first have to send you an e-mail message or entice you into visiting a malicious Web site. You can help protect your computer by installing...