10525 matches found
CVE-2008-2463
The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message,...
Code injection
The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message,...
DSquare Exploit Pack: D2SEC_SNPVW2
Name| d2secsnpvw2 ---|--- CVE| CVE-2008-2463 Exploit Pack| D2ExploitPack Description| Microsoft Office Snapshot Viewer ActiveX Vulnerability - Generic Version Notes|...
CVE-2008-2463
The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message,...
CVE-2008-2463
CVE-2008-2463 affects the Microsoft Office Snapshot Viewer ActiveX Control (snapview.ocx) shipped with standalone Snapshot Viewer and Office Access 2000–2003. The vulnerability allows remote download of arbitrary files via crafted HTML/email, potentially enabling code execution by writing to a St...
Microsoft Office Snapshot Viewer ActiveX control race condition
Overview The Microsoft Office Snapshot Viewer ActiveX control contains a race condition, which can allow a remote, unauthenticated attacker to download arbitrary files to arbitrary locations. Description Microsoft Snapshot Viewer is a viewer for snapshots created with Microsoft Access. Snapshot...
[SECURITY] Fedora 8 Update: chmsee-1.0.0-2.31.fc8
A gtk2 chm document viewer. It uses chmlib to extract files. It uses gecko to display pages. It supports displaying multilingual pages due to gecko. It features bookmarks and tabs. The tabs could be used to jump inside the chm file conveniently. Its UI is clean and handy, also is well localized. ...
IBM AFP查看器插件SRC属性堆溢出漏洞
BUGTRAQ ID: 29932 IBM的AFP查看器插件允许用户在WEB浏览器中查看AFP文档。 AFP查看器插件在处理文档中的SRC属性时存在堆溢出漏洞,如果用户打开的文档包含有超过1023个字符的超长属性参数的话,就可以触发这个溢出,导致执行任意指令。 IBM AFP Viewer 3.2.1.1 IBM AFP Viewer 2.0.7.1 IBM --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CVE-2008-2880
Heap-based buffer overflow in the IBM AFP Viewer Plug-in 2.0.7.1 and 3.2.1.1 allows remote attackers to execute arbitrary code via a long SRC property value. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Heap overflow
Heap-based buffer overflow in the IBM AFP Viewer Plug-in 2.0.7.1 and 3.2.1.1 allows remote attackers to execute arbitrary code via a long SRC property value. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2008-2880
CVE-2008-2880 : A heap-based buffer overflow in the IBM AFP Viewer Plug-in (versions 2.0.7.1 and 3.2.1.1) can be triggered by processing a long SRC property value, allowing remote attackers to execute arbitrary code. The issue is exploitable via the plugin in a web/browser context, with a remote ...
KLA10197 ACE vulnerability in IBM AFP Viewer plug-in
A buffer overflow was found in IBM AFP Viewer plug-in. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed property value. Original advisories - Related products IBM-AFP-Viewer-Plug-In CVE list...
IBM AFP Viewer Plug-in SRC Property Buffer Overflow
The Windows remote host contains IBM's AFP Viewer plug-in, which allows for viewing AFP Advanced Function Presentation documents from a web browser. The version of the plug-in installed on the remote host reportedly contains a heap-based buffer overflow that can be triggered when processing a 'SR...
XnView产品TAAC文件解析栈溢出漏洞
BUGTRAQ ID: 29851 CVECAN ID: CVE-2008-2427 XnView是一款浏览的图片查看器,支持多种图形格式。 XnView在处理Sun TAAC文件的format关键字时存在栈溢出漏洞,如果用户受骗打开了特制的Sun TAAC文件就会触发这个溢出,导致执行任意指令。 0 XnView XnView 1.93.6 for Windows XnView XnView 1.70 for Linux/FreeBSD XnView NConvert 4.92 XnView GFL SDK 2.82 XnView ------...
Integer overflow
Integer underflow in Help Viewer in Apple Mac OS X before 10.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted help:topic URL that triggers a buffer overflow...
CVE-2008-1034
Integer underflow in Help Viewer in Apple Mac OS X before 10.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted help:topic URL that triggers a buffer overflow...
CVE-2008-1034
Integer underflow in Help Viewer in Apple Mac OS X before 10.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted help:topic URL that triggers a buffer overflow...
Apple Mac OS X multiple security vulnerabilities
AFP server directory traversal, Apache updates, AppKit memory corruption, Apple Pixlet Video multiple memory corruptions, Apple Type Services PDF printing fonts memory corruption, SSL information leak, multiple vulnerabilities in Graphics and Image engines on different filetypes and multimedia...
[SECURITY] Fedora 8 Update: cbrpager-0.9.17-2.fc8
A no-nonsense, simple to use, small viewer for cbr and cbz comic book archive files. As it is written in C, the executable is small and fast. It views jpg or jpeg, gif and png images, and you can zoom in and out...
[SECURITY] Fedora 7 Update: cbrpager-0.9.17-2.fc7
A no-nonsense, simple to use, small viewer for cbr and cbz comic book archive files. As it is written in C, the executable is small and fast. It views jpg or jpeg, gif and png images, and you can zoom in and out...