EUVD-2015-1630

Malware in sbrugna...

EUVD-2015-1629

Malware in sbrugna...

Multiple Stack Buffer Overflow Vulnerabilities in Motorola Mobility Scanner SDK

The Motorola Mobility Scanner SDK is a suite of applications from Motorola Mobility USA that provide support for capturing images. The Motorola Mobility Scanner SDK suffers from multiple stack buffer overflow vulnerabilities that allow an attacker to submit a special string to the open method in...

CVE-2015-1496

Motorola Scanner SDK uses weak permissions for 1 CoreScanner.exe, 2 rsmdriverproviderservice.exe, and 3 ScannerService.exe, which allows local users to gain privileges via unspecified vectors...

CVE-2015-1495

Multiple stack-based buffer overflows in Motorola Scanner SDK allow remote attackers to execute arbitrary code via a crafted string to the Open method in 1 IOPOSScanner.ocx or 2 IOPOSScale.ocx...

Stack overflow

Multiple stack-based buffer overflows in Motorola Scanner SDK allow remote attackers to execute arbitrary code via a crafted string to the Open method in 1 IOPOSScanner.ocx or 2 IOPOSScale.ocx...

Code injection

Motorola Scanner SDK uses weak permissions for 1 CoreScanner.exe, 2 rsmdriverproviderservice.exe, and 3 ScannerService.exe, which allows local users to gain privileges via unspecified vectors...

CVE-2015-1496

Motorola Scanner SDK uses weak permissions for 1 CoreScanner.exe, 2 rsmdriverproviderservice.exe, and 3 ScannerService.exe, which allows local users to gain privileges via unspecified vectors...

CVE-2015-1495

Multiple stack-based buffer overflows in Motorola Scanner SDK allow remote attackers to execute arbitrary code via a crafted string to the Open method in 1 IOPOSScanner.ocx or 2 IOPOSScale.ocx...

CVE-2015-1496

The CVE concerns Motorola Scanner SDK. Affected components are CoreScanner.exe, rsmdriverproviderservice.exe, and ScannerService.exe. The root cause is weak file permissions (ACLs) on installed directories, enabling local attackers to escalate privileges and execute arbitrary code with SYSTEM pri...

CVE-2015-1495

CVE-2015-1495 affects Motorola Mobility/Scanner SDK. The vulnerability involves multiple stack-based buffer overflows in the Open methods of IOPOSScanner.ocx and IOPOSScale.ocx within Motorola Scanner SDK, caused by unbounded string copies into fixed-length stack buffers. Exploitation can lead to...

Motorola Scanner SDK rsmdriverproviderservice.exe Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code with elevated privileges on vulnerable installations of Motorola Scanner SDK. Authentication is not required to exploit this vulnerability. The specific flaw exists within the file permissions ACLs on an installed directory...

Motorola Scanner SDK CoreScanner.exe Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code with elevated privileges on vulnerable installations of Motorola Scanner SDK. Authentication is not required to exploit this vulnerability. The specific flaw exists within the file permissions ACLs on an installed directory...

Motorola Scanner SDK OPOSSCANNER.ocx Open Method Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Motorola Scanner SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Motorola Scanner SDK OPOSScale.ocx Open Method Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Motorola Scanner SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Motorola Scanner SDK ScannerService.exe Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code with elevated privileges on vulnerable installations of Motorola Scanner SDK. Authentication is not required to exploit this vulnerability. The specific flaw exists within the file permissions ACLs on an installed directory...