Lucene search
+L

10525 matches found

nvd
nvd
added 2008/07/07 11:41 p.m.34 views

CVE-2008-2463

The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message,...

6.8CVSS6.8AI score0.59125EPSS
Exploits9References12
prion
prion
added 2008/07/07 11:41 p.m.15 views

Code injection

The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message,...

6.8CVSS7.5AI score0.59125EPSS
Exploits9References12Affected Software1
d2
d2
added 2008/07/07 11:41 p.m.53 views

DSquare Exploit Pack: D2SEC_SNPVW2

Name| d2secsnpvw2 ---|--- CVE| CVE-2008-2463 Exploit Pack| D2ExploitPack Description| Microsoft Office Snapshot Viewer ActiveX Vulnerability - Generic Version Notes|...

6.8CVSS4.2AI score0.59125EPSS
Exploits9
cvelist
cvelist
added 2008/07/07 11:0 p.m.27 views

CVE-2008-2463

The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message,...

6.8AI score0.59125EPSS
Exploits9References12
cve
cve
added 2008/07/07 11:0 p.m.83 views

CVE-2008-2463

CVE-2008-2463 affects the Microsoft Office Snapshot Viewer ActiveX Control (snapview.ocx) shipped with standalone Snapshot Viewer and Office Access 2000–2003. The vulnerability allows remote download of arbitrary files via crafted HTML/email, potentially enabling code execution by writing to a St...

6.8CVSS6.7AI score0.59125EPSS
Exploits9References12Affected Software1
cert
cert
added 2008/07/07 12:0 a.m.31 views

Microsoft Office Snapshot Viewer ActiveX control race condition

Overview The Microsoft Office Snapshot Viewer ActiveX control contains a race condition, which can allow a remote, unauthenticated attacker to download arbitrary files to arbitrary locations. Description Microsoft Snapshot Viewer is a viewer for snapshots created with Microsoft Access. Snapshot...

6.8CVSS6.1AI score0.59125EPSS
Exploits9References8
fedora
fedora
added 2008/07/06 6:14 a.m.45 views

[SECURITY] Fedora 8 Update: chmsee-1.0.0-2.31.fc8

A gtk2 chm document viewer. It uses chmlib to extract files. It uses gecko to display pages. It supports displaying multilingual pages due to gecko. It features bookmarks and tabs. The tabs could be used to jump inside the chm file conveniently. Its UI is clean and handy, also is well localized. ...

10CVSS0.13949EPSS
Exploits2
seebug
seebug
added 2008/06/28 12:0 a.m.26 views

IBM AFP查看器插件SRC属性堆溢出漏洞

BUGTRAQ ID: 29932 IBM的AFP查看器插件允许用户在WEB浏览器中查看AFP文档。 AFP查看器插件在处理文档中的SRC属性时存在堆溢出漏洞,如果用户打开的文档包含有超过1023个字符的超长属性参数的话,就可以触发这个溢出,导致执行任意指令。 IBM AFP Viewer 3.2.1.1 IBM AFP Viewer 2.0.7.1 IBM --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

6.9AI score
Exploits0
nvd
nvd
added 2008/06/26 5:41 p.m.18 views

CVE-2008-2880

Heap-based buffer overflow in the IBM AFP Viewer Plug-in 2.0.7.1 and 3.2.1.1 allows remote attackers to execute arbitrary code via a long SRC property value. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

9.3CVSS7.7AI score0.03927EPSS
Exploits0References3
prion
prion
added 2008/06/26 5:41 p.m.13 views

Heap overflow

Heap-based buffer overflow in the IBM AFP Viewer Plug-in 2.0.7.1 and 3.2.1.1 allows remote attackers to execute arbitrary code via a long SRC property value. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

9.3CVSS8AI score0.03927EPSS
Exploits0References3Affected Software1
cve
cve
added 2008/06/26 5:0 p.m.46 views

CVE-2008-2880

CVE-2008-2880 : A heap-based buffer overflow in the IBM AFP Viewer Plug-in (versions 2.0.7.1 and 3.2.1.1) can be triggered by processing a long SRC property value, allowing remote attackers to execute arbitrary code. The issue is exploitable via the plugin in a web/browser context, with a remote ...

9.3CVSS7.7AI score0.03927EPSS
Exploits0References3Affected Software1
kaspersky
kaspersky
added 2008/06/26 12:0 a.m.41 views

KLA10197 ACE vulnerability in IBM AFP Viewer plug-in

A buffer overflow was found in IBM AFP Viewer plug-in. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed property value. Original advisories - Related products IBM-AFP-Viewer-Plug-In CVE list...

9.3CVSS7.8AI score0.03927EPSS
Exploits0References2
nessus
nessus
added 2008/06/26 12:0 a.m.34 views

IBM AFP Viewer Plug-in SRC Property Buffer Overflow

The Windows remote host contains IBM's AFP Viewer plug-in, which allows for viewing AFP Advanced Function Presentation documents from a web browser. The version of the plug-in installed on the remote host reportedly contains a heap-based buffer overflow that can be triggered when processing a 'SR...

9.3CVSS6.2AI score0.03927EPSS
Exploits0References2
seebug
seebug
added 2008/06/25 12:0 a.m.30 views

XnView产品TAAC文件解析栈溢出漏洞

BUGTRAQ ID: 29851 CVECAN ID: CVE-2008-2427 XnView是一款浏览的图片查看器,支持多种图形格式。 XnView在处理Sun TAAC文件的format关键字时存在栈溢出漏洞,如果用户受骗打开了特制的Sun TAAC文件就会触发这个溢出,导致执行任意指令。 0 XnView XnView 1.93.6 for Windows XnView XnView 1.70 for Linux/FreeBSD XnView NConvert 4.92 XnView GFL SDK 2.82 XnView ------...

9.3CVSS6.4AI score0.16059EPSS
Exploits1
prion
prion
added 2008/06/02 9:30 p.m.19 views

Integer overflow

Integer underflow in Help Viewer in Apple Mac OS X before 10.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted help:topic URL that triggers a buffer overflow...

9.3CVSS8.2AI score0.0818EPSS
Exploits1References9Affected Software1
nvd
nvd
added 2008/06/02 9:30 p.m.21 views

CVE-2008-1034

Integer underflow in Help Viewer in Apple Mac OS X before 10.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted help:topic URL that triggers a buffer overflow...

9.3CVSS7.6AI score0.0818EPSS
Exploits1References9
cvelist
cvelist
added 2008/06/02 2:0 p.m.22 views

CVE-2008-1034

Integer underflow in Help Viewer in Apple Mac OS X before 10.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted help:topic URL that triggers a buffer overflow...

7.5AI score0.0818EPSS
Exploits1References9
securityvulns
securityvulns
added 2008/05/30 12:0 a.m.67 views

Apple Mac OS X multiple security vulnerabilities

AFP server directory traversal, Apache updates, AppKit memory corruption, Apple Pixlet Video multiple memory corruptions, Apple Type Services PDF printing fonts memory corruption, SSL information leak, multiple vulnerabilities in Graphics and Image engines on different filetypes and multimedia...

10CVSS2.8AI score0.15542EPSS
Exploits10References1Affected Software1
fedora
fedora
added 2008/05/29 2:44 a.m.20 views

[SECURITY] Fedora 8 Update: cbrpager-0.9.17-2.fc8

A no-nonsense, simple to use, small viewer for cbr and cbz comic book archive files. As it is written in C, the executable is small and fast. It views jpg or jpeg, gif and png images, and you can zoom in and out...

2.4AI score
Exploits0
fedora
fedora
added 2008/05/29 2:39 a.m.12 views

[SECURITY] Fedora 7 Update: cbrpager-0.9.17-2.fc7

A no-nonsense, simple to use, small viewer for cbr and cbz comic book archive files. As it is written in C, the executable is small and fast. It views jpg or jpeg, gif and png images, and you can zoom in and out...

2.4AI score
Exploits0
Rows per page
Query Builder