25 matches found
Two New Vulnerabilities Linked to Latest IE Zero Day
UPDATE – Researchers at Websense said today they may have isolated two components within the VGX library that are being exploited by attackers targeting the latest Internet Explorer zero-day vulnerability. By combing through millions of Windows crash reports sent via the Windows Error Reporting...
CVE-2013-0030
The Vector Markup Language VML implementation in Microsoft Internet Explorer 6 through 10 does not properly allocate buffers, which allows remote attackers to execute arbitrary code via a crafted web site, aka "VML Memory Corruption Vulnerability."...
MS13-010: Vulnerability in Vector Markup Language Could Allow Remote Code Execution (2797052)
The remote host is missing Internet Explorer IE Security Update 2797052. The installed version of IE is affected by a vulnerability in the implementation of the Vector Markup Language VML that could allow an attacker to execute arbitrary code on the remote host. C Tenable Network Security, Inc...
MS11-052: Vulnerability in Vector Markup Language Could Allow Remote Code Execution (2544521)
The remote host is missing Internet Explorer IE Security Update 2497640. The installed version of IE is affected by a vulnerability in the implementation of the Vector Markup Language VML that could allow an attacker to execute arbitrary code on the remote host. C Tenable Network Security, Inc...
Internet Explorer Vector Markup Language Remote Code Execution Vulnerability (2544521)
This host is missing a critical security update according to Microsoft Bulletin MS11-052. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Windows Vector Markup Language Vulnerabilities (929969)
Remote exploitation of an integer overflow vulnerability in the Vector Markup Language VML support in multiple Microsoft products allows attackers to execute arbitrary code within the context of the user running the vulnerable application. SPDX-FileCopyrightText: 2010 LSS Some text descriptions...
MS07-050: Vulnerability in Vector Markup Language Could Allow Remote Code Execution (938127)
The remote host is running a version of Internet Explorer or Outlook Express with a bug in the Vector Markup Language VML handling routine that may allow an attacker execute arbitrary code on the remote host by sending a specially crafted email or by luring a user on the remote host into visiting...
CVE-2007-0024
Integer overflow in the Vector Markup Language VML implementation vgx.dll in Microsoft Internet Explorer 5.01, 6, and 7 on Windows 2000 SP4, XP SP2, Server 2003, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted web page that contains unspecified integer properti...
VulnCheck KEV: CVE-2007-0024
Integer overflow in the Vector Markup Language VML implementation vgx.dll in Microsoft Internet Explorer 5.01, 6, and 7 on Windows 2000 SP4, XP SP2, Server 2003, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted web page that contains unspecified integer...
Internet Explorer VML Buffer Overrun (MS07-004; CVE-2007-0024)
Microsoft Internet Explorer IE contains a remote code execution vulnerability. The vulnerability exists in Microsoft Vector Markup Language VML. VML is a set of XML tags used for exchange, editing, and delivery of vector graphics on the web. By convincing a user to visit a specially crafted Web...
MS07-004: Vulnerability in Vector Markup Language Could Allow Remote Code Execution (929969)
The remote host is running a version of Internet Explorer or Outlook Express that is vulnerable to a bug in the Vector Markup Language VML handling routine that could allow an attacker execute arbitrary code on the remote host by sending a specially crafted email or by luring a user on the remote...
Microsoft VML buffer overflow
Buffer overflow and integer overflows on Vector Markup Language parsing. May be used for hidden malware installation...
Internet Explorer VML Rect Fill Method Buffer Overflow (MS06-055; CVE-2006-4868)
Microsoft Internet Explorer is the most widely used Internet browser. Microsoft Internet Explorer fails to handle Vector Markup Language VML tags. VML is a set of XML tags for drawing vector graphics. A remote attacker may trigger this vulnerability to execute arbitrary code on the target system...
MS06-055: Vulnerability in Vector Markup Language Could Allow Remote Code Execution (925486)
The remote host is running a version of Internet Explorer or Outlook Express that is vulnerable to a bug in the Vector Markup Language VML handling routine that could allow an attacker execute arbitrary code on the remote host by sending a specially crafted email or by luring a user on the remote...
CVE-2006-4868
Stack-based buffer overflow in the Vector Graphics Rendering engine vgx.dll, as used in Microsoft Outlook and Internet Explorer 6.0 on Windows XP SP2, and possibly other versions, allows remote attackers to execute arbitrary code via a Vector Markup Language VML file with a long fill parameter...
CVE-2004-0501
Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language VML entity whose src parameter points to the remote site, which could allow remote attackers to know whe...
CVE-2004-0501
Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language VML entity whose src parameter points to the remote site, which could allow remote attackers to know whe...
Security Update for Internet Explorer 5.01 Service Pack 4 (KB929969)
A security issue has been identified in the way Vector Markup Language VML is handled that could allow an attacker to compromise a computer running Microsoft Windows and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...
Security Update for Windows XP (KB929969)
A security issue has been identified in the way Vector Markup Language VML is handled that could allow an attacker to compromise a computer running Microsoft Windows and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...
Security Update for Internet Explorer 6 Service Pack 1 (KB938127)
A security issue has been identified in the way Vector Markup Language VML is handled that could allow an attacker to compromise a computer running Microsoft Windows and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...