3 matches found
ooVoo URI处理器远程栈溢出漏洞
BUGTRAQ ID: 32251 ooVoo是免费的视频聊天工具。 ooVoo在处理命令行参数时存在栈溢出漏洞。如果用户受骗访问了恶意网页并向ooVoo: URI处理器传送了超长字符串的话,就可能触发这个溢出,导致执行任意指令。 ooVoo LLC ooVoo 1.7.1.57 ooVoo LLC ooVoo 1.7.1.35 ooVoo LLC --------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.oovoo.com ?php / ooVoo 1.7.1.35 URL Protocol remote...
CVE-2008-0583
Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.6.0.244, and earlier 3.5.x and 3.6.x versions, on Windows allows user-assisted remote attackers to inject arbitrary web script or HTML in the Local Machine Zone via the Description and unspecified other metadata...
CVE-2008-0583
CVE-2008-0583 describes a cross-zone scripting vulnerability in the Internet Explorer web control used by Skype 3.6.0.244 and older 3.5.x/3.6.x builds. The issue allows user-assisted remote attackers to inject arbitrary web script or HTML into the Local Machine Zone via metadata fields (Descripti...