832 matches found
Microsoft Windows Message Queuing Privilege Escalation Vulnerability (971032)
This host is missing a critical security update according to Microsoft Bulletin MS09-040. OpenVAS Vulnerability Test $Id: secpodms09-040.nasl 5363 2017-02-20 13:07:22Z cfi $ Microsoft Windows Message Queuing Privilege Escalation Vulnerability 971032 Authors: Nikita MR Updated By: Madhuri D on...
Microsoft Windows WINS Server Network Buffer Length Integer Overflow Vulnerability
Description The Microsoft Windows WINS Server is prone to a remote integer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successful exploits will completely compromise affected computers. Failed exploit attempts will result in a...
Microsoft Windows WINS Server Network Packet Remote Heap Buffer Overflow Vulnerability
Description The Microsoft Windows WINS Server is prone to a remote heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges...
iDefense Security Advisory 06.11.09: Microsoft Windows 2000 Print Spooler Remote Stack Buffer Overflow Vulnerability
iDefense Security Advisory 06.09.09 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 09, 2009 I. BACKGROUND The Windows Print Spooler manages the printing process, and loads files to memory for later printing. For more information about Print Spooler, please visit following website:...
Microsoft Windows Print Spooler Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability that affects the Print Spooler service. A remote authenticated attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges, which can result in the complete compromise of affected computers...
Windows GDI Privilege Elevation
Added: 05/25/2009 CVE: CVE-2006-5758 BID: 20940 OSVDB: 30214 Background The Graphics Rendering Engine in Microsoft Windows 2000 and Windows XP maps GDI Kernel structures on a global shared memory section that is created with insecure permissions. Problem Users with local access can remap the shar...
Windows GDI Privilege Elevation
Added: 05/25/2009 CVE: CVE-2006-5758 BID: 20940 OSVDB: 30214 Background The Graphics Rendering Engine in Microsoft Windows 2000 and Windows XP maps GDI Kernel structures on a global shared memory section that is created with insecure permissions. Problem Users with local access can remap the shar...
Windows GDI Privilege Elevation
Added: 05/25/2009 CVE: CVE-2006-5758 BID: 20940 OSVDB: 30214 Background The Graphics Rendering Engine in Microsoft Windows 2000 and Windows XP maps GDI Kernel structures on a global shared memory section that is created with insecure permissions. Problem Users with local access can remap the shar...
Windows GDI Privilege Elevation
Added: 05/25/2009 CVE: CVE-2006-5758 BID: 20940 OSVDB: 30214 Background The Graphics Rendering Engine in Microsoft Windows 2000 and Windows XP maps GDI Kernel structures on a global shared memory section that is created with insecure permissions. Problem Users with local access can remap the shar...
Symantec (Multiple Products) - Intel Common Base Agent Remote Command Execution
Symantec Multiple Products - Intel Common Base Agent Remote Command Execution The AMS2 Alert Management Systems 2 component of multiple Symantec products is prone to a remote command-execution vulnerability because the software fails to adequately sanitize user-supplied input. Successfully...
Multiple Symantec Products Intel Common Base Agent Remote Command Execution
No description provided by source. The AMS2 Alert Management Systems 2 component of multiple Symantec products is prone to a remote command-execution vulnerability because the software fails to adequately sanitize user-supplied input. Successfully exploiting this issue will allow an attacker to...
Layered Defense Research Advisory: Format String Vulnerability: FortiClient Version 3
================================================== Layered Defense Research Advisory 02 April 2009 ================================================== 1 Affected Product FortiClient Version 3.0.614 Earlier versions may also be vulnerable ================================================== 2 Severit...
SlySoft (Multiple Products) - Driver IOCTL Request Multiple Local Buffer Overflow Vulnerabilities
SlySoft Multiple Products - Driver IOCTL Request Multiple Local Buffer Overflow Vulnerabilities source: https://www.securityfocus.com/bid/34103/info Multiple SlySoft products are prone to multiple buffer-overflow vulnerabilities because they fail to adequately validate user-supplied input. A loca...
Mozilla Firefox Multiple Vulnerabilities Feb-09 (Linux)
The host is installed with Mozilla Firefox browser and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodfirefoxmultvulnfeb09lin.nasl 5055 2017-01-20 14:08:39Z teissa $ Mozilla Firefox Multiple Vulnerabilities Feb-09 Linux Authors: Sharath S Copyright: Copyright c 2009...
Kaspersky (Multiple Products) - klim5.sys Local Privilege Escalation
Kaspersky Multiple Products - klim5.sys Local Privilege Escalation source: https://www.securityfocus.com/bid/33561/info Multiple Kaspersky products are prone to a local privilege-escalation vulnerability because the applications fail to perform adequate boundary checks on user-supplied data. A...
Microsoft Windows SMB NT Trans2 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability that occurs in the SMB Server Message Block protocol implementation. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successful exploits will facilitate in the complete...
FreeBSD : openfire -- multiple vulnerabilities (937adf01-b64a-11dd-a55e-00163e000016)
Andreas Kurtz reports : The jabber server Openfire = version 3.6.0a contains several serious vulnerabilities. Depending on the particular runtime environment these issues can potentially even be used by an attacker to execute code on operating system level. - Authentication bypass - This...
Microsoft Windows Vista - iphlpapi.dll Local Kernel Buffer Overflow
Microsoft Windows Vista - iphlpapi.dll Local Kernel Buffer Overflow // source: https://www.securityfocus.com/bid/32357/info // Microsoft Windows Vista is prone to a buffer-overflow vulnerability because of insufficient boundary checks. // Local attackers could exploit this issue to cause...
Openfire Server <= 3.6.0a (Auth Bypass/SQL/XSS) Multiple Vulnerabilities
No description provided by source. Advisory: Openfire Server Multiple Vulnerabilities Advisory ID: AKADV2008-001 Release Date: 2008/11/07 Revision: 1.0 Last Modified: 2008/11/07 Date Reported: 2008/05/17 Author: Andreas Kurtz mail at andreas-kurtz.de Affected Software: Openfire Server = 3.6.0a...
Openfire Server 3.6.0a - Authentication Bypass / SQL Injection / Cross-Site Scripting
Advisory: Openfire Server Multiple Vulnerabilities Advisory ID: AKADV2008-001 Release Date: 2008/11/07 Revision: 1.0 Last Modified: 2008/11/07 Date Reported: 2008/05/17 Author: Andreas Kurtz mail at andreas-kurtz.de Affected Software: Openfire Server = 3.6.0a Remotely Exploitable: Yes Risk:...