77 matches found
[SECURITY] Fedora 8 Update: libsynce-0.11-2.fc8
The purpose of the SynCE project is to provide a means of communication with a Windows CE device from a computer running Linux, FreeBSD or a similar operating system...
CORE-2007-1106: SynCE Remote Command Injection
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies – CoreLabs Advisory http://www.coresecurity.com/corelabs SynCE Remote Command Injection Advisory Information Title: SynCE Remote Command Injection Advisory ID: CORE-2007-1106 Advisory URL:...
SYMSA-2007-012: Microsoft Windows CE IGMP Denial of Service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Symantec Vulnerability Research http://www.symantec.com/research Security Advisory Advisory ID: SYMSA-2007-012 Advisory Title: Microsoft Windows CE IGMP Denial of Service Author: Ollie Whitehouse / [email protected] Release Date: 22-10-2007...
Microsoft Windows CE Internet Explorer SSL未明远程拒绝服务漏洞
Microsoft Windows CE是为各种嵌入式系统和产品设计的一种压缩的、高效的、可升级的操作系统OS)。 Microsoft Windows CE包含的Internet Explorer处理SSL通信存在错误,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 在通过SSL访问部分站点时由于WININET.DLL存在问题可导致Internet Explorer出现访问错误而造成拒绝服务攻击。 Microsoft Windows CE 5.0 可采用如下升级补丁: http://support.microsoft.com/kb/837392/...
Microsoft Windows CE Internet Explorer Content-Type远程拒绝服务漏洞
Microsoft Windows CE是为各种嵌入式系统和产品设计的一种压缩的、高效的、可升级的操作系统OS)。 Microsoft Windows CE包含的Internet Explorer存在边界错误,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 当处理包含大型字符串值的Content-Type字段时存在异常错误,可导致InternetExplorer崩溃。 Microsoft Windows CE 6.0 可采用如下升级补丁: http://support.microsoft.com/kb/933679...
Microsoft Windows CE .NET Compact Framework Components Multiple Vulnerabilities
Description Components of the .NET Compact Framework for Microsoft Windows CE are prone to multiple vulnerabilities. Exploiting these issues may allow remote attackers to cause denial-of-service conditions, corrupt memory, or execute arbitrary machine code in the context of the affected...
Windows CE < 5.0 / 6.0 Buffer Overflow
Binary data 4096.prm...
Windows CE < 5.1 Detection
Binary data 4095.prm...
Microsoft Windows CE畸形RNDIS报文远程拒绝服务漏洞
Microsoft Windows CE是为各种嵌入式系统和产品设计的一种压缩的、高效的、可升级的操作系统OS)。 Microsoft Windows CE不正确处理畸形RNDIS报文,远程攻击者可以利用漏洞对系统进行拒绝服务攻击。 如果Windows CE上的应用程序使用RNDIS设备驱动,在处理畸形的RNDIS报文和文件数据,可导致应用程序崩溃。 Microsoft Windows CE 5.0 可采用如下升级补丁: Microsoft Windows CE 5.0 Microsoft Windows CE 5.0 Platform Builder Monthly Update...
Windows CE < 5.1 Detection
Binary data 4080.prm...
CVE-2006-6908
CVE-2006-6908 describes a buffer overflow in the Widcomm Bluetooth Stack COM Server. Affected components include Widcomm Stack 3.x and earlier on Windows, Widcomm BTStackServer 1.4.2.10 and 1.3.2.7 on Windows, Widcomm Bluetooth Communication Software 1.4.1.03 on Windows, and the Bluetooth impleme...
CVE-2006-6908
Buffer overflow in the Bluetooth Stack COM Server in the Widcomm Bluetooth stack, as packaged as Widcomm Stack 3.x and earlier on Windows, Widcomm BTStackServer 1.4.2.10 and 1.3.2.7 on Windows, Widcomm Bluetooth Communication Software 1.4.1.03 on Windows, and the Bluetooth implementation in Windo...
Linksys WIP 330 VoIP wireless phone crash from Nmap scan
Vulnerability Description ================== The Linksys WIP 330 VoIP wireless phone will crash when a full port-range Nmap scan is run against its IP address. Linksys WIP 330 Firmware Version ========================== 1.00.06A Nmap scan command ================ nmap -P0 WIP 330 ip address -p...
Windows CE MMS多媒体短信编辑器远程溢出漏洞
Windows CE是微软开发维护的运行于嵌入式设备的操作系统。 Windows CE自带的MMS多媒体短信编辑器程序实现上存在多个缓冲区溢出漏洞,远程攻击者可能利用此漏洞在用户设备上执行任意指令。 MMS多媒体短信编辑器在处理短信中TransactionID、Subject、ContentLocation等多个头部字段时存在溢出问题,攻击者可能通过向受害者发送畸形MMS消息导致在用户机器上执行任意指令。 Microsoft MMS Composer 2.0.0.13 Microsoft MMS Composer 1.5.5.6...
[NT] PicoWebServer Unicode Stack Overflow
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
PicoWebServer Remote Unicode Stack Overflow
Title: PicoWebServer Remote Unicode Stack Overflow Release Date: 28. May 2005 Author: Dennis Elser dennis backtrace de Vendor: Newmad Technologies http://www.newmad.se Vendor Status: Contacted Product: PicoWebServer Affected Version: 1.0 Platform: Microsoft Windows CE / PocketPC Processor Type: A...
PT-2001-1393 · Microsoft · Wince
Name of the Vulnerable Software and Affected Versions: WinCE version 3.0.9348 Description: The issue allows remote attackers to spoof or hijack TCP connections due to the generation of predictable TCP Initial Sequence Numbers ISNs. Recommendations: For WinCE version 3.0.9348, at the moment, there...