CVE-2000-0381

CVE-2000-0381 affects the Gossamer Threads DBMan DBMan CGI script (db.cgi). The vulnerability arises when a non-existent database is referenced via the db parameter, allowing remote attackers to view environment variables and setup information (server information leakage). The OpenVAS NASL entrie...

Security Bulletin (MS00-042)

The following is a Security Bulletin from the Microsoft Product Security Notification Service. Please do not reply to this message, as it was sent from an unattended mailbox. -----BEGIN PGP SIGNED MESSAGE----- Patch Available for "Active Setup Download" Vulnerability Originally Posted: June 29,...

CVE-2000-0329

The CVE concerns a Microsoft ActiveX control vulnerability in the Active Setup Control that allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML email. Affected component is an ActiveX control; impact is remote code execution with partia...

PT-2000-1324 · Gossamer Threads · Gossamer Threads Dbman

Name of the Vulnerable Software and Affected Versions: Gossamer Threads DBMan version db.cgi Description: The issue allows remote attackers to view environmental variables and setup information. This is achieved by referencing a non-existing database in the db parameter. Recommendations: For...

unsigned.cab.exploit.txt

Vulnerability details and example exploit for Microsoft Active Setup control's unsigned CAB file execution vulnerability. Introduction Microsoft's Active Setup Control asctrls.ocx shipped with Internet Explorer 4 and above has a vulnerability in it as discovered by Juan Carlos Garcia Cuartango ,...

CVE-2000-0160

The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the software's manufacturer is Microsoft...

CVE-2000-0160

The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the software's manufacturer is Microsoft...

KB4599861: Setup Dynamic Update for Windows 10, version 2004 and 20H2: February 2, 2021

KB4599861: Setup Dynamic Update for Windows 10, version 2004 and 20H2: February 2, 2021 Summary This update makes improvements to Setup binaries or any files that Setup uses for feature updates in Windows 10, version 2004 and 20H2. How to get this update This update is available through Windows...

Update Rollup 3 for System Center Operations Manager 2019 (KB4594078)

Update Rollup 3 for System Center Operations Manager 2019 KB4594078 Applies to: System Center 2019 Operations Manager Introduction This article describes the new features and issues that are fixed in System Center Operations Manager 2019 Update Rollup 3. This article also contains the installatio...

CVE-2000-0329

A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability...

Microsoft Internet Explorer 4.x5 Outlook 2000 098 0Express 4.x - ActiveX .CAB File Execution

Microsoft Internet Explorer 4.x5 Outlook 2000 098 0Express 4.x - ActiveX .CAB File Execution Microsoft Internet Explorer 4.0 for Windows 95/Windows NT 4,Internet Explorer 4.1 for Windows 95/Windows 98/Windows NT 4,Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Internet...

CVE-1999-0372

The installer for BackOffice Server includes account names and passwords in a setup file reboot.ini which is not deleted...

CVE-1999-1484

Buffer overflow in MSN Setup BBS 4.71.0.10 ActiveX control setupbbs.ocx allows a remote attacker to execute arbitrary commands via the methods 1 vAddNewsServer or 2 bIsNewsServerConfigured...

domain.nu.DoS.txt

Date: Sat, 20 Feb 1999 21:20:13 -0800 From: Shane Wegner To: [email protected] Subject: Possible DOS attack in the .nu domain service Hello all, I am not sure if this is known or even relevant to the list and if not, please excuse this post. There appears to be a bug in the niu DNS setup proce...

bintec.boss.txt

Date: Wed, 10 Feb 1999 22:10:57 +0100 From: Pascal Gienger To: [email protected] Subject: Security Bug in Bintec Router Firmware CLID Vulnerability in Bintec Firmware BOSS V4.9 Release 1 and earlier Abstract: Non-interpretation of "international" or "national" incoming call setup leads to a...

reboot.ini-passwds.txt

Date: Fri, 12 Feb 1999 14:34:17 -0800 From: [email protected] To: [email protected] Subject: Microsoft Security Bulletin MS99-005 The following is a Security Bulletin from the Microsoft Product Security Notification Service. Please do not reply to this message, as it was sent from an...

pinepolicy.txt

Date: Mon, 7 Sep 1998 12:18:28 +0100 From: Chris Wilson Hey people, I've discovered a vulnerability in Pine, tested on version 3.95q, but which probably applies to all versions up to 4.02. This vulnerability allows users to bypass site policies and use Pine to run arbitrary commands in the user's...

SQL Server 2012 Service Pack 1 Setup Update (KB2674319)

SQL Server 2012 Service Pack 1 Setup Update KB2674319...

Security update 1970-01-01

...

Windows 8 RTM Build Targeting for Setup DU

Windows 8 RTM Build Targeting for Setup DU...