21 matches found
Adobe SVG Viewer 3.0 ActiveX Control SRC Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13490/info The Adobe SVG Viewer ActiveX control is prone to an information disclosure vulnerability. Reports indicate that the Adobe SVG Viewer ActiveX control may be employed to disclose the existence of a target file...
Adobe SVG Viewer 3.0 postURL/getURL Restriction Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8785/info Adobe SVG Viewer ASV is prone to an issue in the implementation of the getURL and postURL methods. These methods are designed to prevent access to URIs in a foreign domain or local files. However, by using a...
Microsoft Windows Common Control Library Heap Buffer Overflow (MS10-081; CVE-2010-2746)
The common controls are a set of windows that are implemented by the common control library, Comctl32.dll, which is a DLL included with the Windows operating system. Like other control windows, a common control is a child window that an application uses in conjunction with another window to enabl...
Heap overflow
Heap-based buffer overflow in Comctl32.dll aka the common control library in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7, when a third-party SVG viewer is used, allows remote attackers to execute...
PT-2010-4261 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: A remote code execution issue exists in the way the Windows common control library renders specially crafted Web sites when using a third-party scalable vector graphics SVG...
Adobe SVG Viewer Circle Transform Remote Code Execution
The version of Adobe SVG Viewer on the remote host has a remote code execution vulnerability. A remote attacker could exploit this by tricking a user into requesting a maliciously crafted web page, resulting in arbitrary code execution. C Tenable Network Security, Inc. include"compat.inc"; if...
Adobe SVG Viewer 3.0 - Circle Transform Remote Code Execution
Adobe SVG Viewer 3.0 - Circle Transform Remote Code Execution source: https://www.securityfocus.com/bid/40885/info Adobe SVG Viewer is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the application. Failed attacks may...
Adobe SVG Viewer 3.0 - Circle Transform Remote Code Execution
source: https://www.securityfocus.com/bid/40885/info Adobe SVG Viewer is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the application. Failed attacks may cause a denial-of-service condition. Adobe SVG Viewer 3.03 is...
Mozilla Firefox SVG viewer vulnerable to integer overflow
Overview The Mozilla SVG viewer contains an integer overflow vulnerability. This vulnerability may allow an attacker to execute arbitrary code, or create a denial-of-service condition. Description Scalable Vector Graphics SVG is an XML markup language for describing and displaying animated or...
Local file detection bug found through Adobe SVG Viewer
Hyperdose Security Advisory Name: Local file detection bug found through Adobe SVG Viewer Systems Affected: v3.0 unclear if earlier versions were affected Severity: Low Author: Robert Fly - [email protected] Advisory URL: http://www.hyperdose.com/advisories/H2005-07.txt --Adobe Description--...
Adobe SVG Viewer multiple bugs
ActiveX control contains few metods used to access local and remote files, scripting in local zone, crossite scripting...
CVE-2005-0918
The NPSVG3.dll ActiveX control for Adobe SVG Viewer 3.02 and earlier, when running on Internet Explorer, allows remote attackers to determine the existence of arbitrary files by setting the src property to the target filename and using Javascript to determine if the web page immediately stops...
CVE-2005-0918
The issue concerns the NPSVG3.dll ActiveX control used by Adobe SVG Viewer (versions 3.02 and earlier) on Internet Explorer. The vulnerability allows remote attackers to infer the existence of arbitrary files by setting the control’s src property to a target filename and observing whether the pag...
CVE-2005-0918
The NPSVG3.dll ActiveX control for Adobe SVG Viewer 3.02 and earlier, when running on Internet Explorer, allows remote attackers to determine the existence of arbitrary files by setting the src property to the target filename and using Javascript to determine if the web page immediately stops...
Adobe SVG Viewer 3.0 - ActiveX Control SRC Information Disclosure
Adobe SVG Viewer 3.0 - ActiveX Control SRC Information Disclosure source: https://www.securityfocus.com/bid/13490/info The Adobe SVG Viewer ActiveX control is prone to an information disclosure vulnerability. Reports indicate that the Adobe SVG Viewer ActiveX control may be employed to disclose t...
Adobe SVG Viewer 3.0 - ActiveX Control SRC Information Disclosure
source: https://www.securityfocus.com/bid/13490/info The Adobe SVG Viewer ActiveX control is prone to an information disclosure vulnerability. Reports indicate that the Adobe SVG Viewer ActiveX control may be employed to disclose the existence of a target file. Information that is harvested by...
Adobe SVG Viewer Cross Domain and Zone Access (GM#004-MC)
GreyMagic Security Advisory GM004-MC ===================================== By GreyMagic Software, Israel. 07 Oct 2003. Available in HTML format at http://security.greymagic.com/adv/gm004-mc/. Topic: Adobe SVG Viewer Cross Domain and Zone Access. Discovery date: 07 Sep 2003. Affected applications:...
Adobe SVG Viewer Active Scripting Bypass (GM#002-MC)
GreyMagic Security Advisory GM002-MC ===================================== By GreyMagic Software, Israel. 07 Oct 2003. Available in HTML format at http://security.greymagic.com/adv/gm002-mc/. Topic: Adobe SVG Viewer Active Scripting Bypass. Discovery date: 19 Aug 2003. Affected applications:...
[Full-Disclosure] Adobe SVG Viewer Local and Remote File Reading (GM#003-MC)
GreyMagic Security Advisory GM003-MC ===================================== By GreyMagic Software, Israel. 07 Oct 2003. Available in HTML format at http://security.greymagic.com/adv/gm003-mc/. Topic: Adobe SVG Viewer Local and Remote File Reading. Discovery date: 07 Sep 2003. Affected applications...
Adobe SVG Viewer 3.0 - postURLgetURL Restriction Bypass
Adobe SVG Viewer 3.0 - postURLgetURL Restriction Bypass source: https://www.securityfocus.com/bid/8785/info Adobe SVG Viewer ASV is prone to an issue in the implementation of the getURL and postURL methods. These methods are designed to prevent access to URIs in a foreign domain or local files...