154 matches found
[security bulletin] HPSBMA02488 SSRT100013 rev.1 - HP ProLiant Support Pack 8.30 for Windows, Remote Code Execution, Information Disclosure
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01997644 Version: 1 HPSBMA02488 SSRT100013 rev.1 - HP ProLiant Support Pack 8.30 for Windows, Remote Code Execution, Information Disclosure NOTICE: The information in this Security Bulletin shoul...
Mozilla Firefox PKCS11 Module Installation Code Execution
Added: 09/24/2009 CVE: CVE-2009-3076 BID: 36343 OSVDB: 57977 Background Mozilla is a suite of Internet client products available for multiple platforms. Problem The warning dialog displayed when adding or removing security modules via pkcs11.addmodule or pkcs11.deletemodule can be customized by a...
Mozilla Firefox PKCS11 Module Installation Code Execution
Added: 09/24/2009 CVE: CVE-2009-3076 BID: 36343 OSVDB: 57977 Background Mozilla is a suite of Internet client products available for multiple platforms. Problem The warning dialog displayed when adding or removing security modules via pkcs11.addmodule or pkcs11.deletemodule can be customized by a...
Mozilla Firefox PKCS11 Module Installation Code Execution
Added: 09/24/2009 CVE: CVE-2009-3076 BID: 36343 OSVDB: 57977 Background Mozilla is a suite of Internet client products available for multiple platforms. Problem The warning dialog displayed when adding or removing security modules via pkcs11.addmodule or pkcs11.deletemodule can be customized by a...
MS09-037: Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution (973908)
The remote Windows host contains a version of the Microsoft Active Template Library ATL, included as part of Visual Studio or Visual C++, that is affected by multiple vulnerabilities : - A remote code execution issue affects the Microsoft Video ActiveX Control due to the a flaw in the function...
CVE-2009-2495
The Active Template Library ATL in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1 does not properly enforce string termination, which allows remote attackers to obtain sensitive information via a crafted HTML...
Microsoft Visual Studio ATL COM对象远程代码执行漏洞
Bugraq ID: 35828 CVE ID:CVE-2009-2493 Microsoft Visual Studio是一款微软公司的开发工具套件系列产品。 Microsoft活动模版库ATL处理数据流对象实例化时ATL头存在错误,远程攻击者可以利用漏洞绕过IE等Kill-bits安全策略,并导致任意代码执行。 此漏洞只影响安装了使用Visual Studio ATL的组件和控件的系统。如果组件或控件使用ATL,不安全使用OleLoadFromStream允许任意对象实例化,可绕过相关的安全策略,如 Internet Explorer的Kill...
Microsoft Visual Studio ATL 'VariantClear()'远程代码执行漏洞
Bugraq ID: 35832 CVE ID:CVE-2009-0901 CNCVE ID:CNCVE-20090901 Microsoft Visual Studio是一款微软公司的开发工具套件系列产品。 Microsoft活动模版库ATL处理ATL头字段存在问题,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 ATL头字段存在的一个错误允许攻击者对未正确初始化的VARIANT进行VariantClear调用,基于此攻击者可以提供破坏的流触发错误处理过程中来调用VariantClear而控制整个流程。此漏洞只影响安装了使用Visual Studio...
PT-2009-3491
Name of the Vulnerable Software and Affected Versions Microsoft Visual Studio .NET versions 2003 SP1 through 2008 Microsoft Visual C++ versions 2005 SP1 through 2008 SP1 Windows versions 2000 SP4 through XP SP3, Server 2003 SP2, Vista Gold through SP2, and Server 2008 Gold through SP2 Description...
Microsoft Visual Studio Active Template Library COM Object Remote Code Execution Vulnerability
Description Microsoft Visual Studio is prone to a remote code-execution vulnerability in the Active Template Library ATL. Remote attackers can exploit this issue to execute arbitrary code with the privileges of the user running an application built against the affected library. Failed exploit...
Microsoft Visual Studio ATL 'VariantClear()' Remote Code Execution Vulnerability
Description Microsoft Visual Studio is prone to a remote code-execution vulnerability in the Active Template Library ATL. Remote attackers can exploit this issue to execute arbitrary code with the privileges of the user running an application built with the affected library. Technologies Affected...
Description of the security update for the Microsoft Visual C++ 2008 Redistributable Package (for previously installed versions): July 28, 2009
None None...
Description of the security update for Microsoft Visual C++ 2008 Service Pack 1 Redistributable Package: July 28, 2009
None None...
Description of the security update for Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package: July 28, 2009
None None...
Description of the security update for the Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package (for previously installed versions): July 28, 2009
None None...
University of Washington IMAP Format String
/ This BUg Discover By Faryad Rahmany C0d3d by Faryad rahmany website : http://rahmany.net University Of Washington IMAP c-client Remote FOrmat String Shellcode based on work by vlad902 Greets to my best Freind : DJ7xpl UG : File Host Port Target Target 1 : WIndows XP Sp 1 : 0 Target 2 : Windows ...
Avaya IP Office Phone Manager Local Password Disclosure Exploit
No description provided by source. include windows.h include stdio.h include string.h / Filename: exploit.c Title: Avaya IP Office Phone Manager - Cleartext Sensitive Data Vulnerability Exploit v0.01 Author: pagvac Adrian Pastor Date: 24th Feb, 2005 Other info: tested on version 2.013. Compile as...
vc6. 0 stack overflow-vulnerability warning-the black bar safety net
from:Phantom maillist Hold for six months. The problem is that the include file name length is not detected. For example include "AAAA.... AA"-A It will be hung. =2008-2-17 found vulnerabilities. 2008-3-3 report to MS, same day received a reply, saying that under study. 2008-3-4 MS confirmed this...
MS Windows IIS 5.0 SSL Remote buffer overflow Exploit (MS04-011)
No description provided by source. // / THCIISSLame 0.3 - IIS 5 SSL remote root exploit / / Exploit by: Johnny Cyberpunk [email protected] / / THC PUBLIC SOURCE MATERIALS / / / / Bug was found by Intern...
IPSwitch IMail LDAP Daemon Remote Buffer Overflow Exploit
No description provided by source. // / THCimail 0.1 - Wind0wZ remote root exploit / / Exploit by: Johnny Cyberpunk [email protected] / / THC PUBLIC SOURCE MATERIALS /...