Wacom driver startProcess function elevation of privilege vulnerability

Wacom driver is a driver for connecting and managing platform computers. An input validation error vulnerability exists in the startProcess function in Wacom driver. The vulnerability originates from a network system or product that does not properly validate input data. An attacker could use the...

VMware vielib.dll ActiveX控件远程代码执行漏洞

BUGTRAQ ID: 25118 VMware Workstation是一款非常流行的虚拟PC机软件。 VMware intraprocesslogging.dll ActiveX控件实现上存在漏洞，远程攻击者可能利用此漏洞在用户系统上执行任意指令。 VMware中所捆绑的vielib.dll库中的StartProcess方式没有验证是否被应用程序或恶意用户调用，如果用户受骗访问了恶意网页的话，调用了该库的应用程序就可能导致以登录用户的权限执行任意指令。 VMWare Workstation 6.0 临时解决方法：...