348 matches found
Max Web Portal < 1.30 - Multiple Vulnerabilities
Max Web Portal Multiple Vulnerabilities Vendor: Max Web Portal Product: Max Web Portal Version: alertdocument.cookie Remember this vuln as I will later explain how it can be used to aide an attacker to compromise user and admin accounts. Hidden Form Field weakness: The Max Web Portal system seems...
More Office XP problems
Moderator: check the legal notice before submitting this to some database. Georgi Guninski security advisory 53, 2002 More Office XP problems Systems affected: Office XP Risk: High Date: 31 March 2002 Legal Notice: This Advisory is Copyright c 2002 Georgi Guninski. You may distribute it unmodifie...
Microsoft Windows 2000 Service Control Manager creates predictably named pipes
Overview A vulnerability exists in the Microsoft Windows 2000 Service Control Manager which could allow local users to gain control of the system. Description A vulnerability exists in the Service Control Manager SCM function. This function creates named pipes for system services. More informatio...
guninski31.txt
Georgi Guninski security advisory 31, 2001 Windows Media Player 7 and IE vulnerability - executing arbitrary programs Systems affected: Windows Media Player 7 and IE Risk: High Date: 1 January 2001 Legal Notice: This Advisory is Copyright c 2000 Georgi Guninski. You may distribute it unmo dified...
excel2000-exec.txt
Georgi Guninski security advisory 15, 2000 Excel 2000 vulnerability - executing programs Systems affected: Excel 2000/Win98 - almost sure other versions/OSes, have not tested Risk: High Disclaimer: The opinions expressed in this advisory and program are my own and not of any company. The usual...
IE 5 and Access 2000 vulnerability - executing programs
Georgi Guninski security advisory 14, 2000 IE 5 and Access 2000 vulnerability - executing programs Systems affected: IE 5.01, Access 2000, Win98 - probably other versions, have not tested Risk: High Disclaimer: The opinions expressed in this advisory and program are my own and not of any company...
Уязвимости GNU Emacs
В программах, основанных на Emacs можно контролировать PTY пользователя, небезопасно создаются временные файлы легко угадываемое имя, хранится последовательность нажатых клавиш, что позволяет извлечь пароль пользователя...
CVE-1999-0728
CVE-1999-0728 affects Windows NT where a user can disable the keyboard or mouse by directly invoking the IOCTLs that control those devices. Multiple sources (NVD, CVELIST, Red Hat, Red Hat CVE page) describe the issue consistently: the vulnerability arises from using IOCTLs to manipulate input de...