Lucene search
K

14 matches found

The Hacker News
The Hacker News
added 2026/02/18 6:52 a.m.9 views

CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Tuesday added four security flaws to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation in the wild. The list of vulnerabilities is as follows - CVE-2026-2441 CVSS score: 8.8 - A use-after-free...

9.8CVSS10AI score0.85416EPSS
Exploits22
CISA
CISA
added 2026/02/17 12:0 p.m.40 views

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2008-0015link is external Microsoft Windows Video ActiveX Control Remote Code Execution Vulnerability CVE-2020-7796link is external Synacor Zimbra Collaboratio...

9.8CVSS5.8AI score0.85416EPSS
In wildExploits22References9
CISA KEV Catalog
CISA KEV Catalog
added 2026/02/17 12:0 a.m.11 views

Microsoft Windows Video ActiveX Control Remote Code Execution Vulnerability

Microsoft Windows Video ActiveX Control contains a remote code execution vulnerability. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully...

9.3CVSS6.6AI score0.76647EPSS
In wildExploits10
Microsoft KB
Microsoft KB
added 2020/04/13 2:2 a.m.299 views

MS09-055: Cumulative Security Update of ActiveX Kill Bits

Resolves a vulnerability that is currently being exploited in Microsoft Video ActiveX Control that could allow remote code execution if a user views a specially crafted Web page by using Internet Explorer, instantiating the ActiveX control.INTRODUCTIONMicrosoft has released security bulletin...

9.3CVSS6.6AI score0.43389EPSS
Exploits1
0day.today
0day.today
added 2009/07/10 12:0 a.m.15 views

MS Internet Explorer 7 Video ActiveX Remote Buffer Overflow Exploit

Exploit for windows platform in category remote exploits =================================================================== MS Internet Explorer 7 Video ActiveX Remote Buffer Overflow Exploit =================================================================== !/usr/bin/env python MS Internet...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2009/07/09 12:0 a.m.34 views

Microsoft Video ActiveX Control 'msvidctl.dll' BOF Vulnerability

Microsoft Video ActiveX Control is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS5.6AI score0.30917EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2009/07/07 11:30 p.m.5 views

CVE-2008-0015

Stack-based buffer overflow in the CComVariant::ReadFromStream function in the Active Template Library ATL, as used in the MPEG2TuneRequest ActiveX control in msvidctl.dll in DirectShow, in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold...

9.3CVSS6.7AI score0.76647EPSS
In wildExploits10References22
Prion
Prion
added 2009/07/07 11:30 p.m.24 views

Stack overflow

Stack-based buffer overflow in the CComVariant::ReadFromStream function in the Active Template Library ATL, as used in the MPEG2TuneRequest ActiveX control in msvidctl.dll in DirectShow, in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold...

9.3CVSS8.1AI score0.76647EPSS
Exploits10References20Affected Software2
CVE
CVE
added 2009/07/07 11:0 p.m.109 views

CVE-2008-0020

Technical details about CVE-2008-0020 are not publicly available in the provided connected documents. Monitor for updates as new information becomes public.

9.3CVSS7.4AI score0.30917EPSS
Exploits0References8Affected Software2
Cvelist
Cvelist
added 2009/07/07 11:0 p.m.41 views

CVE-2008-0015

Stack-based buffer overflow in the CComVariant::ReadFromStream function in the Active Template Library ATL, as used in the MPEG2TuneRequest ActiveX control in msvidctl.dll in DirectShow, in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold...

7.6AI score0.76647EPSS
Exploits10References20
CVE
CVE
added 2009/07/07 11:0 p.m.110 views

CVE-2008-0015

CVE-2008-0015 is a stack-based buffer overflow in ATL’s CComVariant::ReadFromStream used by the MPEG2TuneRequest ActiveX control in msvidctl.dll (DirectShow). The vulnerability affects multiple Windows versions (2000 SP4, XP SP2/SP3, Server 2003 SP2, Vista SP1/SP2, Server 2008 SP2) and allows rem...

9.3CVSS7.8AI score0.76647EPSS
In wildExploits10References21Affected Software2
Check Point Advisories
Check Point Advisories
added 2009/07/07 12:0 a.m.3 views

Microsoft DirectShow Video ActiveX Control Stack Buffer Overflow (CVE-2008-0015)

The Microsoft Video Control object is a Microsoft ActiveX control that connects Microsoft DirectShow filters for use in capturing, recording, and playing video. A stack buffer overflow vulnerability has been discovered in Microsoft DirectShow. The flaw is in the way Microsoft Video ActiveX contro...

9.3CVSS7.5AI score0.76647EPSS
Exploits10
VulnCheck KEV
VulnCheck KEV
added 2009/07/07 12:0 a.m.3 views

VulnCheck KEV: CVE-2008-0015

Microsoft Windows Video ActiveX Control contains a remote code execution vulnerability. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully...

9.3CVSS6.6AI score0.76647EPSS
Exploits10References1
securityvulns
securityvulns
added 2009/07/07 12:0 a.m.37 views

US-CERT Technical Cyber Security Alert TA09-187A -- Microsoft Video ActiveX Control Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 National Cyber Alert System Technical Cyber Security Alert TA09-187A Microsoft Video ActiveX Control Vulnerability Original release date: July 06, 2009 Last revised: -- Source: US-CERT Systems Affected Microsoft Windows XP Microsoft Windows Server 200...

0.3AI score
Exploits0
Rows per page
Query Builder