Microsoft Security Bulletin MS09-065 - Critical Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (969947)

Microsoft Security Bulletin MS09-065 - Critical Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution 969947 Published: November 10, 2009 Version: 1.0 General Information Executive Summary This security update resolves several privately reported vulnerabilities in the...

FreeBSD : vinagre -- format string vulnerability (214e8e07-d369-11dd-b800-001b77d09812)

CORE Security Technologies reports : A format string error has been found on the vinagreutilsshowerror function that can be exploited via commands issued from a malicious server containing format string specifiers on the VNC name. In a web-based attack scenario, the user would be required to...

Vulnerability in InterVations' MailCopa

While developing one of our advanced security training movies, we identified an exploitable vulnerability in the latest release of InterVetions' MailCopa. Successful exploitation of this vulnerability allows an attacker to execute arbitrary code in the context of the user executing MailCopa. In a...

Microsoft Security Advisory (933052) Vulnerability in Microsoft Word Could Allow Remote Code Executio

Microsoft Security Advisory 933052 Vulnerability in Microsoft Word Could Allow Remote Code Execution Published: February 14, 2007 Microsoft is investigating new public reports of very limited, targeted attacks against Microsoft Word “zero-day” using a vulnerability in Microsoft Office 2000 and...

Microsoft Security Advisory (929433) Vulnerability in Microsoft Word Could Allow Remote Code Execution

Microsoft Security Advisory 929433 Vulnerability in Microsoft Word Could Allow Remote Code Execution Published: December 5, 2006 Top of sectionTop of section Microsoft is investigating a new report of limited “zero-day” attacks using a vulnerability in Microsoft Word 2000, Microsoft Word 2002,...

Microsoft Security Advisory (927892) Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution

Microsoft Security Advisory 927892 Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution Published: November 3, 2006 Microsoft is investigating public reports of a vulnerability in the XMLHTTP 4.0 ActiveX Control, part of Microsoft XML Core Services 4.0 on Windows. We are...

Microsoft Security Advisory (925984) Vulnerability in PowerPoint Could Allow Remote Code Execution

Microsoft Security Advisory 925984 Vulnerability in PowerPoint Could Allow Remote Code Execution Published: September 27, 2006 Microsoft is investigating new public reports of limited “zero-day” attacks using a vulnerability in Microsoft PowerPoint 2000, Microsoft PowerPoint 2002, Microsoft Offic...

Computer Terrorism (UK) :: Incident Response Centre - Microsoft Publisher Font Parsing Vulnerability

Computer Terrorism UK :: Incident Response Centre www.computerterrorism.com Security Advisory: CT12-09-2006-2.htm ============================================== Microsoft Publisher Font Parsing Vulnerability ============================================== Advisory Date: 12th, September 2006...

Computer Terrorism (UK) :: Incident Response Centre - Adobe/Macromedia Flash Player Vulnerability

Computer Terrorism UK :: Incident Response Centre www.computerterrorism.com Security Advisory: CT12-09-2006 ============================================================ Adobe/Macromedia Flash Player - Remote Code Execution ============================================================ Advisory Date...

Microsoft Security Advisory (923762) Microsoft Security Advisory (923762): Long URLs to sites using HTTP 1.1 and compression Could Cause Internet Explorer 6 Service Pack 1 to Unexpectedly Exit

Microsoft Security Advisory 923762 Microsoft Security Advisory 923762: Long URLs to sites using HTTP 1.1 and compression Could Cause Internet Explorer 6 Service Pack 1 to Unexpectedly Exit Published: August 22, 2006 On August 15, 2006 Microsoft announced that it would be re-releasing MS06-042...

Microsoft Windows Media Player Malformed PNG Remote Code Execution Vulnerability

Description Microsoft Windows Media Player is prone to a remote code-execution vulnerability. This vulnerability is related to handling of malicious PNG images. PNG images may be embedded in Windows Media Player skin files. Attackers may be able to exploit this issue by causing the application to...

Microsoft DirectX DirectShow AVI Processing Buffer Overflow Vulnerability

Description A buffer overflow vulnerability exists in the Microsoft Windows DirectX component. This issue is related to processing of .AVI Audio Visual Interleave media files. The specific vulnerability exists in DirectShow and could be exposed through applications that employ DirectShow to proce...