CVE-2007-3068

Stack-based buffer overflow in DVD X Player 4.1 Professional allows remote attackers to execute arbitrary code via a PLF playlist containing a long filename...

CVE-2007-2848

Stack-based buffer overflow in the SetPath function in the shComboBox ActiveX control shcmb80.ocx in Sky Software Shell MegaPack ActiveX 8.0 allows remote attackers to execute arbitrary code via a long argument. NOTE: the provenance of this information is unknown; the details are obtained solely...

CVE-2007-2771

The CVE-2007-2771 entry concerns the LEAD Technologies LeadTools JPEG 2000 LEADJ2K.LEADJ2K.140 ActiveX control (LTJ2K14.ocx) version 14.5.0.35, where a stack-based buffer overflow via a long BitmapDataPath property allows remote code execution. Affected component: LTJ2K14.ocx in LeadTools JPEG 20...

lt-thumb-overflow.txt

2007/05/19 ---------------------------------------------------------------------------------------------------- LeadTools Thumbnail Browser Control lttmb14E.ocx v. 14.5.0.44 Remote Stack-Based Buffer Overflow url: http://www.leadtools.com/ peice: eheheh, take a look at thier site : author: shinna...

LeadTools Raster Thumbnail Object Library - LTRTM14e.dll Remote Buffer Overflow

LeadTools Raster Thumbnail Object Library - LTRTM14e.dll Remote Buffer Overflow 2007/05/20 ---------------------------------------------------------------------------------------------------------- LeadTools Raster Thumbnail Object Library LTRTM14e.DLL v. 14.5.0.44 Remote Stack-Based Buffer...

CVE-2007-2744

Stack-based buffer overflow in the PrecisionID Barcode 1.9 ActiveX control in PrecisionIDBarcode.dll allows remote attackers to cause a denial of service Internet Explorer 6 crash, and possibly execute arbitrary code, via a long argument to the SaveBarCode method. NOTE: this issue might overlap...

CVE-2007-2744

The CVE-2007-2744 entry concerns the PrecisionID Barcode 1.9 ActiveX control (PrecisionID_Barcode.dll). The vulnerability is a stack-based buffer overflow triggered by a long argument to the SaveBarCode method, allowing a remote attacker to cause an Internet Explorer 6 crash and potentially execu...

CVE-2007-2648

Stack-based buffer overflow in the Clever Database Comparer 2.2 ActiveX control comparerax.ocx allows remote attackers to execute arbitrary code via a long argument to the ConnectToDatabase function...

CA (Multiple Products) - Console Server InoCore.dll Remote Code Execution

CA Multiple Products - Console Server InoCore.dll Remote Code Execution // source: https://www.securityfocus.com/bid/23906/info Multiple products by Computer Associates are prone to multiple vulnerabilities that will allow remote attackers to execute arbitrary code on an affected computer...

Stack overflow

Multiple stack-based buffer overflows in Trend Micro ServerProtect 5.58 before Security Patch 2 Build 1174 allow remote attackers to execute arbitrary code via crafted data to 1 TCP port 5168, which triggers an overflow in the CAgRpcClient::CreateBinding function in the AgRpcCln.dll library in...

Stack overflow

Stack-based buffer overflow in InterVations MailCOPA 8.01 20070323 allows user-assisted remote attackers to execute arbitrary code via a long command line argument, as demonstrated by a long string in the subject field in a mailto URI. NOTE: some of these details are obtained from third party...

CVE-2007-2505

CVE-2007-2505 : Concrete details indicate a stack-based buffer overflow in InterVations MailCOPA 8.01 20070323. The vulnerability is triggered by a long string in the subject field of a mailto URI, allowing user-assisted remote attackers to execute arbitrary code. The issue affects the MailCOPA p...

CVE-2007-2495

CVE-2007-2495 affects the ExcelViewer.ocx 3.1.0.6 ExcelOCX ActiveX control. The vulnerability is described as multiple stack-based buffer overflows that allow remote attackers to cause a denial of service, specifically an Internet Explorer 7 crash, by supplying long values for any of these proper...

CVE-2007-2487

Stack-based buffer overflow in AtomixMP3 allows remote attackers to execute arbitrary code via a long filename in an MP3 file, a different vector than CVE-2006-6287...

CVE-2007-2487

CVE-2007-2487 is described in connected records as a stack-based buffer overflow in AtomixMP3 2.3 that allows remote attackers to execute arbitrary code via a long filename in an MP3 file; this vector is stated to be different from CVE-2006-6287. The available sources do not reveal a patch versio...

CVE-2007-2343

Affected products: Enterasys NetSight Console 2.1 and NetSight Inventory Manager 2.1. Component vulnerable: TFTPD. Root cause: stack-based buffer overflow. Impact: remote attackers can execute arbitrary code via crafted requests containing long file names; network-based exploit with high impact (...

CVE-2007-2293

Multiple stack-based buffer overflows in the processsdp function in chansip.c of the SIP channel T.38 SDP parser in Asterisk before 1.4.3 allow remote attackers to execute arbitrary code via a long 1 T38FaxRateManagement or 2 T38FaxUdpEC SDP parameter in an SIP message, as demonstrated using SIP...

Stack overflow

Stack-based buffer overflow in the Microgaming Download Helper ActiveX control dlhelper.dll before 7.2.0.19, and the WebHandler Class control, allows remote attackers to execute arbitrary code via unspecified vectors...

CVE-2007-1691

The CVE-2007-1691 issue is a stack-based buffer overflow in Second Sight Software's ActiveMod ActiveX control (ActiveMod.ocx) that can allow a remote attacker to execute arbitrary code. CERT notes the vulnerability can be exploited by convincing a user to view a crafted HTML document and provides...

CVE-2007-1891

Stack-based buffer overflow in the GetPrivateProfileSectionW function in Akamai Technologies Download Manager ActiveX Control DownloadManagerV2.ocx after 2.0.4.4 but before 2.2.1.0 allows remote attackers to execute arbitrary code, related to misinterpretation of the nSize parameter as a byte cou...