12 matches found
EUVD-2002-0216
Malware in sbrugna...
EUVD-2002-0215
Malware in sbrugna...
SAS Integration Technologies Client 9.31_M1 (SASspk.dll) - Stack-Based Overflow
No description provided by source. !-- SAS Integration Technologies Client 9.31M1 SASspk.dll Stack-based Overflow Vendor: SAS Institute Inc. Product web page: http://www.sas.com Affected version: Deployment Manager 9.3.0.0 Model 12.05, TS1M2 SAS Integration Technologies Client 9.31M1 Summary: SAS...
SAS Integration Technologies Client ActiveX Stack Buffer Overflow
The version of the SAS Integration Technologies Client installed on the remote host is affected by a stack-based buffer overflow condition in the 'SASspk.dll' ActiveX control due to improper validation of user-supplied input to the RetrieveBinaryFile function via the 'bstFileName' parameter. An...
SAS Integration Technologies Client 9.31_M1 'SASspk.dll' - Stack Overflow
!-- SAS Integration Technologies Client 9.31M1 SASspk.dll Stack-based Overflow Vendor: SAS Institute Inc. Product web page: http://www.sas.com Affected version: Deployment Manager 9.3.0.0 Model 12.05, TS1M2 SAS Integration Technologies Client 9.31M1 Summary: SAS Integration Technologies provides...
SAS Integration Technologies Client 9.31_M1 Buffer Overflow
The SASspk module SASspk.dll version 9.310.0.11307, has a function called 'RetrieveBinaryFile' which has one parameter called 'bstrFileName' which takes arguments as strings as defined in the function itself as ISPKBinaryFile from the SASPackageRetrieve library. Stack-based buffer overflow was...
SAS Integration Technologies Client 9.31_M1 (SASspk.dll) Stack-based Overflow
Summary SAS Integration Technologies provides you with software that enables you to build a secure client/server infrastructure on which to implement SAS distributed processing solutions. With SAS Integration Technologies, you can integrate SAS with other applications in your enterprise; provide...
CVE-2002-0218
Format string vulnerability in 1 sastcpd in SAS/Base 8.0 and 8.1 or 2 objspawn in SAS/Integration Technologies 8.0 and 8.1 allows local users to execute arbitrary code via format specifiers in a command line argument...
CVE-2002-0219
Buffer overflow in 1 sastcpd in SAS/Base 8.0 and 8.1 or 2 objspawn in SAS/Integration Technologies 8.0 and 8.1 allows local users to execute arbitrary code via large command line argument...
CVE-2002-0218
Format string vulnerability in 1 sastcpd in SAS/Base 8.0 and 8.1 or 2 objspawn in SAS/Integration Technologies 8.0 and 8.1 allows local users to execute arbitrary code via format specifiers in a command line argument...
CVE-2002-0219
CVE-2002-0219 affects SAS products: SAS/Base 8.0/8.1 (sastcpd) and SAS/Integration Technologies 8.0/8.1 (objspawn). The root cause is a buffer overflow triggered by a large command line argument, allowing a local user to execute arbitrary code. Impact is reported as local code execution with full...
CVE-2002-0219
Buffer overflow in 1 sastcpd in SAS/Base 8.0 and 8.1 or 2 objspawn in SAS/Integration Technologies 8.0 and 8.1 allows local users to execute arbitrary code via large command line argument...