Lucene search
+L

148 matches found

openvas
openvas
added 2010/07/08 12:0 a.m.26 views

Microsoft Windows Vector Markup Language Buffer Overflow (938127)

This security update resolves a privately reported vulnerability in the Vector Markup Language VML implementation in Windows. The vulnerability could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewe...

9.3CVSS0.1AI score0.41547EPSS
Exploits1References1
openvas
openvas
added 2010/07/08 12:0 a.m.26 views

Microsoft Windows Vector Markup Language Buffer Overflow (938127)

This security update resolves a privately reported vulnerability in the Vector Markup Language VML implementation in Windows. The vulnerability could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewe...

9.3CVSS6.3AI score0.41547EPSS
Exploits1References3
exploitdb
exploitdb
added 2010/07/03 12:0 a.m.38 views

Microsoft Internet Explorer - 'VML' Fill Method Code Execution (MS06-055) (Metasploit)

$Id: ms06055vmlmethod.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

7.4AI score
Exploits0
nvd
nvd
added 2010/03/29 7:30 p.m.20 views

CVE-2010-1179

Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a large integer in the numcolors attribute of a recolorinfo element in a VML file, possibly a related issue to CVE-2007-0024...

9.3CVSS7.8AI score0.08947EPSS
Exploits1References3
prion
prion
added 2010/03/29 7:30 p.m.30 views

Design/Logic Flaw

Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a large integer in the numcolors attribute of a recolorinfo element in a VML file, possibly a related issue to CVE-2007-0024...

9.3CVSS8.1AI score0.46488EPSS
Exploits6References3
cvelist
cvelist
added 2010/03/29 7:0 p.m.28 views

CVE-2010-1179

Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a large integer in the numcolors attribute of a recolorinfo element in a VML file, possibly a related issue to CVE-2007-0024...

7.7AI score0.08947EPSS
Exploits1References3
packetstorm
packetstorm
added 2010/03/28 12:0 a.m.26 views

Bad VML Remote Denial Of Service On Safari

Exploit Title: Bad "VML" Remote DoS on Safari for iPhone & iPod Touch Date: 26/03/2010 Author: Nishant Das Patnaik For more of Nishant's research, please visit: http://nishantdaspatnaik.yolasite.com/research.php Tested on: iPod Touch 3G iPhone OS 3.1.3 Description: An attacker may direct the user...

0.3AI score
Exploits0
zdt
zdt
added 2010/03/26 12:0 a.m.33 views

Safari for iPhone & iPod Touch Bad "VML" Denial of Service Exploit

Exploit for hardware platform in category dos / poc ========================================================================= Safari for iPhone & iPod Touch Bad "VML" Remote Denial of Service Exploit ========================================================================= Exploit Title: Bad "VML...

7AI score
Exploits0
exploitpack
exploitpack
added 2010/03/26 12:0 a.m.22 views

Apple iOS Safari - Bad VML Remote Denial of Service

Apple iOS Safari - Bad VML Remote Denial of Service Exploit Title: Bad "VML" Remote DoS on Safari for iPhone & iPod Touch Date: 26/03/2010 Author: Nishant Das Patnaik For more of Nishant's research, please visit: http://nishantdaspatnaik.yolasite.com/research.php Tested on: iPod Touch 3G iPhone O...

0.3AI score
Exploits0
packetstorm
packetstorm
added 2009/11/26 12:0 a.m.45 views

Internet Explorer VML Fill Method Code Execution

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Internet...

9.3CVSS0.62149EPSS
Exploits7
seebug
seebug
added 2008/09/11 12:0 a.m.52 views

Microsoft GDI+ VML基于堆的缓冲区溢出漏洞(MS08-052)

BUGTRAQ ID: 31018 CVE ID:CVE-2007-5348 CNCVE ID:CNCVE-20085348 Microsoft Windows是一款微软开发的操作系统。 Microsoft Windows GDI+库不正确处理梯度大小,远程攻击者可以利用漏洞进行基于堆的缓冲区溢出,可导致任意代码执行。 GDI+库处理内存分配时存在错误,部分畸形的梯度填充输入可导致应用程序破坏堆,允许任意代码执行。 攻击者必须诱使用户使用受此GDI+函数影响的应用程序来渲染文档,可通过链接,文档查看,EMAIL消息来触发。 iDefense Labs证实此漏洞影响Microsoft...

9.3CVSS6.8AI score0.52886EPSS
Exploits1
symantec
symantec
added 2008/09/09 12:0 a.m.30 views

Microsoft GDI+ VML Heap-Based Buffer Overflow Vulnerability

Description Microsoft GDI+ is prone to a heap-based buffer-overflow vulnerability because the vector graphics link library improperly processes gradient sizes. Successfully exploiting this issue would allow an attacker to corrupt heap memory and execute arbitrary code in the context of the...

0.6AI score
Exploits0References1Affected Software33
checkpoint_advisories
checkpoint_advisories
added 2008/09/01 12:0 a.m.7 views

Microsoft Windows GDI+ VML Gradient Buffer Overflow (MS08-052; CVE-2007-5348)

Vector Markup Language VML is a set of XML tags used for exchange, editing, and delivery of vector graphics on the web. A remote code execution vulnerability has been reported in the way that GDI+ handles VML files. The vulnerability is due to a heap-based buffer overrun when GDI+ fails to proper...

9.3CVSS7.2AI score0.52886EPSS
Exploits1
seebug
seebug
added 2007/08/17 12:0 a.m.31 views

Microsoft IE向量标记语言VGX.DLL远程堆溢出漏洞(MS07-050)

BUGTRAQ ID: 25310 CVECAN ID: CVE-2007-1749 Internet Explorer是微软发布的非常流行的WEB浏览器。 IE的VML在处理压缩的数据时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制用户系统。 VGX.DLL是IE中负责渲染VML的组件,该组件中的CDownloadSink类实现处理从VML中内嵌URL所下载的数据。例如,以下VML会下载由VGX.DLL!CDownloadSink::OnDataAvailable处理的额外内容: v:rect v:imagedata src="http://malice/compressed.emz...

9.3CVSS6.9AI score0.41547EPSS
Exploits1
securityvulns
securityvulns
added 2007/08/15 12:0 a.m.51 views

Microsoft Windows VML parsing buffer overflow

Heap buffer overflow on compressed VML content...

9.3CVSS3.3AI score0.41547EPSS
Exploits1References2
securityvulns
securityvulns
added 2007/08/15 12:0 a.m.52 views

Microsoft Security Bulletin MS07-050 - Critical Vulnerability in Vector Markup Language Could Allow Remote Code Execution (938127)

Microsoft Security Bulletin MS07-050 - Critical Vulnerability in Vector Markup Language Could Allow Remote Code Execution 938127 Published: August 14, 2007 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in the Vector Markup...

9.3CVSS2.2AI score0.41547EPSS
Exploits1
prion
prion
added 2007/08/14 10:17 p.m.27 views

Integer overflow

Integer underflow in the CDownloadSink class code in the Vector Markup Language VML component VGX.DLL, as used in Internet Explorer 5.01, 6, and 7 allows remote attackers to execute arbitrary code via compressed content with an invalid buffer size, which triggers a heap-based buffer overflow...

9.3CVSS7.9AI score0.41547EPSS
Exploits1References11Affected Software1
nvd
nvd
added 2007/08/14 10:17 p.m.19 views

CVE-2007-1749

Integer underflow in the CDownloadSink class code in the Vector Markup Language VML component VGX.DLL, as used in Internet Explorer 5.01, 6, and 7 allows remote attackers to execute arbitrary code via compressed content with an invalid buffer size, which triggers a heap-based buffer overflow...

9.3CVSS7.6AI score0.41547EPSS
Exploits1References11
cvelist
cvelist
added 2007/08/14 10:0 p.m.26 views

CVE-2007-1749

Integer underflow in the CDownloadSink class code in the Vector Markup Language VML component VGX.DLL, as used in Internet Explorer 5.01, 6, and 7 allows remote attackers to execute arbitrary code via compressed content with an invalid buffer size, which triggers a heap-based buffer overflow...

7.5AI score0.41547EPSS
Exploits1References11
cve
cve
added 2007/08/14 10:0 p.m.58 views

CVE-2007-1749

CVE-2007-1749 is a VML/VGX.DLL heap-buffer-overflow remote-code-execution vulnerability in Internet Explorer versions 5.01, 6 and 7 caused by an integer underflow in CDownloadSink::OnDataAvailable when processing compressed VML content. The vulnerability can be triggered by a specially crafted we...

9.3CVSS7.5AI score0.41547EPSS
Exploits1References11Affected Software1
Rows per page
Query Builder