8762 matches found
Microsoft Visual FoxPro fails to properly evaluate filenames before launching application
Overview There is a vulnerability in Microsoft Visual FoxPro 6.0 that allows remote attackers to execute Visual FoxPro applications with the privileges of the victim user. Description Microsoft Visual FoxPro 6.0 contains an unspecified vulnerability that allows remote attackers to execute arbitra...
Code execution via Microsoft Visual FoxPro
.app files are open without any warning...
Security Bulletin MS02-049: Flaw Could Enable Web Page to Launch Visual FoxPro 6.0 Application Without Warning (Q326568)
---------------------------------------------------------------------- Title: Flaw Could Enable Web Page to Launch Visual FoxPro 6.0 Application Without Warning Q326568 Date: 04 September 2002 Software: Microsoft Visual FoxPro 6.0 Impact: Attacker could gain control over user's system. Max Risk:...
CVE-2002-0619
The Mail Merge Tool in Microsoft Word 2002 for Windows, when Microsoft Access is present on a system, allows remote attackers to execute Visual Basic VBA scripts within a mail merge document that is saved in HTML format, aka a "Variant of MS00-071, Word Mail Merge Vulnerability" CVE-2000-0788...
CVE-2000-0072
Technical details (affected products/versions, root cause, exploitability) are not publicly provided in the connected documents. Monitor for updates and forthcoming disclosures.
CVE-2000-0072
Visual Casel Vcasel does not properly prevent users from executing files, which allows local users to use a relative pathname to specify an alternate file which has an approved name and possibly gain privileges...
CVE-2000-0788
The Mail Merge tool in Microsoft Word does not prompt the user before executing Visual Basic VBA scripts in an Access database, which could allow an attacker to execute arbitrary commands...
McKesson Pathways Homecare 6.5 - Weak Username and Password Encryption
McKesson Pathways Homecare 6.5 - Weak Username and Password Encryption source: https://www.securityfocus.com/bid/3653/info McKesson Pathways Homecare is a client/server application which is used to track patient information, billing information and medical records for home care patients. The...
another fatal bug in NT/2000 "Command Prompt" I/O
Recent messages on the comp.lang.c and allegedly comp.os.ms-windows.programmer.win32 have documented various short programs which cause Windows NT4 and 2000 to crash and reboot by writing certain strings to stdout. The following is one example of such a program: include stdio.h int mainvoid while...
CVE-2001-0341
CVE-2001-0341 describes a remote code execution vulnerability in the Microsoft FrontPage Server Extensions, specifically the fp30reg.dll component used by IIS FrontPage. The root cause is an unchecked stack-based buffer overflow triggered by a registration URL longer than the expected length, all...
CVE-2001-0341
Buffer overflow in Microsoft Visual Studio RAD Support sub-component of FrontPage Server Extensions allows remote attackers to execute arbitrary commands via a long registration request URL to fp30reg.dll...
MiM Simultaneous close attack
Доброе время суток Учёный Кот! Глядя на убогий эксплоит mimsc.exe решили написать нечто похожее, коментарий одного из автора проекта: ---------------------------------------------------------------------------------------------- Данный эксплоит написан в поддержку security advisory MiM Simultaneo...
CVE-2001-0341
Buffer overflow in Microsoft Visual Studio RAD Support sub-component of FrontPage Server Extensions allows remote attackers to execute arbitrary commands via a long registration request URL to fp30reg.dll...
Переполнение буфера в FrontPage Server Extensions (RAD buffer overflow)
Переполнение буфера в компоненте Visual Studio RAD...
Security Bulletin MS01-035
---------------------------------------------------------------------- Title: FrontPage Server Extension Sub-Component Contains Unchecked Buffer Date: 21 June 2001 Software: Microsoft Visual Studio RAD Support in FrontPage Server Extensions Impact: Run code of attacker's choice Bulletin: MS01-035...
Microsoft Visual Studio RAD Support - Remote Buffer Overflow (MS03-051) (Metasploit)
Microsoft Visual Studio RAD Support - Remote Buffer Overflow MS03-051 Metasploit source: https://www.securityfocus.com/bid/2906/info Due to an unchecked buffer in a subcomponent of FrontPage Server Extensions Visual InterDev RAD Remote Deployment Support, a specially crafted request via...
Microsoft Visual Studio RAD Support - Remote Buffer Overflow
Microsoft Visual Studio RAD Support - Remote Buffer Overflow // source: https://www.securityfocus.com/bid/2906/info Due to an unchecked buffer in a subcomponent of FrontPage Server Extensions Visual InterDev RAD Remote Deployment Support, a specially crafted request via 'fp30reg.dll' could allow ...
Microsoft Visual Studio RAD Support - Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/2906/info Due to an unchecked buffer in a subcomponent of FrontPage Server Extensions Visual InterDev RAD Remote Deployment Support, a specially crafted request via 'fp30reg.dll' could allow a user to execute arbitrary commands in the context of...
CVE-2001-0153
This CVE concerns the VB-TSQL Debugger Object (VB T-SQL Debugger) in Visual Studio 6.0 Enterprise Edition. The root cause is a buffer overflow in the DCOM object’s NewSPID method due to an unchecked sprintf on the database name, allowing a remote attacker to run arbitrary code on systems where th...
CVE-2001-0153
Buffer overflow in VB-TSQL debugger object vbsdicli.exe in Visual Studio 6.0 Enterprise Edition allows remote attackers to execute arbitrary commands...