3704 matches found
Yahoo! Webcam image upload ActiveX control vulnerable to arbitrary code execution
Overview The Yahoo! Webcam image upload ActiveX control contains a stack buffer overflow, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Yahoo! Webcam is a component of Yahoo! Messenger that allows users to chat via webcams over a...
Computer Associates Anti-Virus engine fails to properly handle long file names in CAB archives
Overview The Computer Associates Anti-Virus engine contains a stack-based buffer overflow that may allow a remote, unauthenticated attacker to execute arbitrary code. Description The Computer Associates Anti-Virus engine contains a stack-based buffer overflow in the code responsible for processin...
Java Runtime Environment Image Parsing Code buffer overflow vulnerability
Overview The Sun Java Runtime Environment contains a buffer overflow vulnerability that may allow an attacker to execute code or read local files. Description The Java Runtime Environment JRE is a group software packages from Sun Microsystems that allow a computer to access and use Java...
Microsoft Windows GDI+ ICO InfoHeader Height division by zero vulnerability
Overview Microsoft Windows GDI+ fails to properly handle ICO files, which could allow a remote, unauthenticated attacker to cause a denial-of-service condition. Description Microsoft Windows Graphics Device Interface GDI+ is an application programming interface API that provides programmers the...
Computer Associates Anti-Virus engine fails to properly handle malformed CAB archives
Overview The Computer Associates Anti-Virus engine contains a stack-based buffer overflow that may allow a remote, unauthenticated attacker to execute arbitrary code. Description The Computer Associates Anti-Virus engine contains a stack-based buffer overflow in the code responsible for processin...
HP System Management Homepage cross-site scripting vulnerability
Overview The HP System Management Homepage contains a cross-site scripting vulnerability. Description The HP System Management Homepage SMH server is a web-based interface that can manage HP servers running the Microsoft Windows or Linux operating systems.The SMH contains an unspecified cross-sit...
Microsoft Internet Explorer cross-domain frame race condition
Overview Microsoft Internet Explorer contains a race condition that results in a cross-domain violation. Description Internet Explorer uses a cross-domain security model to maintain separation between browser frames from different sources. This model is designed to prevent code in one domain from...
E-Book Systems FlipViewer ActiveX control stack buffer overflows
Overview The E-Book Systems FlipViewer ActiveX control contains multiple stack buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description E-Book Systems FlipViewer is software for viewing "FlipBooks." FlipViewer includes an...
CREDANT Mobile Guardian Shield fails to remove credentials from memory
Overview CREDANT Mobile Guardian Shield fails to properly remove credentials from memory, which may allow an attacker to obtain access to the Windows domain and encrypted drive contents. Description CREDANT Mobile Guardian CMG Shield is a component of Mobile Guardian Enterprise Edition. CMG Shiel...
IPv6 Type 0 Route Headers allow sender to control routing
Overview IPv6 Type 0 Route Headers allow the sender to control packet routing. This vulnerability may allow an attacker to cause a denial-of-service condition. Description Routing header options provided by IPv6 allow packet senders to indicate specific nodes through which the packet should trave...
Mozilla products vulnerable to memory corruption in the JavaScript engine
Overview A vulnerability in the Mozilla JavaScript engine may allow execution of arbitrary code or denial of service. Description The Mozilla JavaScript engine contains an unspecified vulnerability that may result in memory corruption. The impact of this memory corruption is unclear. According to...
Authentium Command Antivirus odapi.dll multiple ActiveX buffer overflows
Overview Authentium Command Antivirus contains multiple ActiveX vulnerabilities, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Authentium Command Antivirus provides multiple ActiveX controls. Many of the ActiveX controls provided ...
Logitech VideoCall multiple ActiveX controls contain stack buffer overflows
Overview Logitech VideoCall ActiveX controls contain multiple stack buffer overflows, which could allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Logitech VideoCall is video conferencing software for Windows. Logitech VideoCall includes...
Macrovision FLEXnet Connect Software Manager DWUpdateService ActiveX control contains dangerous methods
Overview The Macrovision FLEXnet Connect Software Manager DWUpdateService ActiveX control fails to restrict access to its methods, which can allow a remote, unauthenticated attacker to execute arbitrary commands on a vulnerable system. Description Macrovision FLEXnet Connect is a software package...
Mozilla Layout Engine memory corruption vulnerabilities
Overview The Mozilla layout engine contains multiple vulnerabilities that may lead to memory corruption. These vulnerabilities may allow an attacker to execute code or cause a denial-of-service condition. Description The Mozilla Layout Engine contains an multiple vulnerabilities that may result i...
Sun Java System Web Proxy Server fails to properly process malformed packets
Overview A vulnerability in the way Sun Java System Web Proxy Server processes malformed packets may allow execution of arbitrary code. Description SOCKS is a network protocol that provides a framework that allows client-server applications to securely use network firewall services. A vulnerabili...
Apple QuickTime for Java information disclosure vulnerability
Overview Apple QuickTime for Java fails to properly clear memory. As a result, sensitive information may be exposed to unintended parties. Description Apple QuickTime includes the ability to integrate QuickTime into Java applications and applets. This feature is known as QuickTime for Java. Apple...
Apple QuickTime for Java security bypass vulnerability
Overview Apple QuickTime for Java fails to properly restrict the instantiation and manipulation of Java objects. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Apple QuickTime includes the ability to integrate QuickTim...
British Telecommunications Business Connect webhelper ActiveX control buffer overflows
Overview The British Telecommunications Business Connect webhelper ActiveX control contains multiple buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The registration process for British Telecommunications BT intern...
British Telecommunications Consumer webhelper ActiveX control buffer overflows
Overview The British Telecommunications Consumer webhelper ActiveX control contains multiple buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The registration process for British Telecommunications BT internet...
Avast! antivirus buffer overflow vulnerability
Overview Avast! antivirus contains a buffer overflow vulnerability. This vulnerability may allow an attacker to execute code a vulnerable system. Description Avast! antivirus is an antivirus application that can scan different types of files. The Symbian Installer Format SIS file format is used b...
Media Technology Group CDPass ActiveX control stack buffer overflows
Overview The Media Technology Group CDPass ActiveX control contains several stack buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Media Technology Group CDPass is software that provides bonus content for music CDs...
Zenturi ProgramChecker ActiveX buffer overflow vulnerabilities
Overview Zenturi ProgramChecker contains multiple ActiveX buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Zenturi ProgramChecker is a set of "... easy to use tools to analyze, validate, authenticate and research th...
Apple Mac OS X iChat UPnP buffer overflow
Overview A vulnerabilty in the way Apple Mac OS X iChat handles specially crafted UPnP packets may allow execution of arbitrary code or denial of service. Description Apple iChat contains a vulnerability that could be exploited by an attacker on the local network when it attempts to handle...
Apple Mac OS X mDNSResponder buffer overflow vulnerability
Overview Apple Mac OS X mDNSresponder contains a buffer overflow vulnerability that may allow an attacker to execute arbitrary code. Description mDNS uses IP multicast with DNS to provide the functionality of a DNS server for service discovery in networks that do not have a DNS server...
RSA BSAFE libraries denial of service vulnerability
Overview The RSA BSAFE Crypto-C and Cert-C libraries contain a denial-of-service vulnerability. Description RSA BSAFE products include software libraries that developers can use to implement cryptography in their applications. The RSA BSAFE Crypto-C and Cert-C libraries contain a denial-of-servic...
OPeNDAP filesystem enumeration vulnerability
Overview The OPeNDAP server version 4 contains a file enumeration vulnerability. This vulnerability may allow an attacker to enumerate filesystem contents. Description OPeNDAP is a software package designed to help researchers exchange data sets that are stored in different formats. The most rece...
OPeNDAP arbitrary command execution vulnerability
Overview The BES daemon in OPeNDAP server version 4 contains a vulnerability. This vulnerability may allow an attacker to execute arbitrary commands, or upload files to a remote server. Description OPeNDAP is a software package designed to help researchers exchange data sets that are stored in...
LEAD Technologies JPEG 2000 ActiveX control buffer overflow
Overview The LEAD Technologies JPEG 2000 ActiveX control contains a buffer overflow, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description LEAD Technologies provides imaging software for Windows. The LEAD JPEG 2000 ActiveX control, which ...
libpng denial of service vulnerability
Overview The libpng library contains a denial-of-service vulnerability. Description The libpng library can be used to allow other applications to render PNG images.The libpng library contains a denial-of-service vulnerability. From the Libpng-1.2.16-ADVISORY: This vulnerability could be used to...
Symantec Norton Internet Security 2004 ISAlertDataCOM ActiveX control stack buffer overflow
Overview The Symantec Norton Internet Security 2004 ISAlertDataCOM ActiveX control contains a stack buffer overflow, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Symantec Norton Internet Security is a software package for Windows...
HTTP content scanning systems full-width/half-width Unicode encoding bypass
Overview Various HTTP content scanning systems fail to properly scan full-width/half-width Unicode encoded traffic. This may allow malicious HTTP traffic to bypass content scanning systems. Description Full-width and half-width encoding is a technique for encoding Unicode characters. Various HTTP...
Samba NDR MS-RPC heap buffer overflow
Overview Samba fails to properly handle malformed MS-RPC packets. Exploitation of this vulnerability could allow a remote attacker to execute arbitrary code. Description Samba is a widely used open-source implementation of Server Message Block SMB/Common Internet File System CIFS. Network Data...
Samba command injection vulnerability
Overview Samba fails to properly filter input to /bin/sh. This vulnerability may allow a remote, authenticated attacker to execute arbitrary code on a Samba server. Description Samba provides file and print services for Microsoft Windows, Unix, Linux, and OS X clients. Samba can also act as a...
Computer Associates eTrust AntiVirus Server buffer overflow
Overview Computer Associates eTrust AntiVirus Server contains a buffer overflow vulnerability. This vulnerability may allow an attacker to execute arbitrary code, or create a denial of service condition. Description Computer Associates eTrust AntiVirus Server is an antivirus product distributed b...
Computer Associates AntiVirus InoTask buffer overflow vulnerability
Overview Computer Associates AntiVirus for the Enterprise and Threat Manager products contain a buffer overflow vulnerability that may be exploited by local users to execute code with elevated privileges. Description Computer Associates eTrust Antivirus v8 includes a component called InoTask...
Microsoft Windows Media Services NMSA Session Description Object ActiveX control contains dangerous methods
Overview The Microsoft Windows Media Services NMSA Session Description Object ActiveX control fails to restrict access to dangerous methods. This vulnerability could allow a remote attacker to execute arbitrary code on an affected system. Description Microsoft Windows Media Services is a software...
Microsoft Word fails to properly parse crafted rich text content
Overview Microsoft Word fails to properly parse rich text content and may allow a remote, unauthenticated attacker to execute arbitrary code. Description Microsoft Word does not properly validate rich text within the contents of a file. When Word opens and parses a specially crafted file, memory...
Trend Micro ServerProtect SpntSvc buffer overflow vulnerability
Overview Trend Micro ServerProtect contains a buffer overflow vulnerability. This vulnerability may allow an attacker to execute arbitrary code on a vulnerable system. Description Trend Micro ServerProtect is an anti-virus application that is designed to run on Windows-based servers. The...
Microsoft Word fails to properly process crafted array data
Overview Microsoft Word contains a remote code execution vulnerability that could enable an attacker to execute arbitrary code and gain complete control of the vulnerable system. Description Microsoft Word fails to properly handle malformed data within an array. When a Word file is opened, Word...
Microsoft Exchange Server fails to properly decode MIME email messages
Overview Microsoft Exchange Server contains a remote code execution vulnerability that could enable an attacker to execute arbitrary code and gain complete control of the vulnerable system. Description Microsoft Exchange Server fails to properly process MIME messages. When an email message...
Microsoft Cryptographic API Component Object Model Certificates ActiveX control contains a remote code execution vulnerability
Overview Microsoft Cryptographic API Component Object Model CAPICOM Certificates ActiveX control contains a vulnerability that may allow a remote, unauthenticated attacker to execute arbitrary code. Description The Microsoft Cryptographic API Component Object Model CAPICOM Certificates ActiveX...
Microsoft Exchange Outlook Web Access UTF character set label script injection vulnerability
Overview Microsoft Exchange Outlook Web Access OWA fails to properly handle the UTF character set label, which can allow a remote, unauthenticated attacker to execute script within the security context of the OWA user. Description OWA allows users to access their email accounts on a Microsoft...
Microsoft Excel fails to properly process files with crafted filter records
Overview A vulnerability in Microsoft Excel could allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft Excel fails to validate certain filter records contained in Excel documents. This flaw results in an unspecified memory corruption vulnerability that...
Research In Motion TeamOn Import Object ActiveX control buffer overflow
Overview The Research In Motion TeamOn Import Object ActiveX control contains a buffer overflow, which could allow an attacker to execute arbitrary code on a vulnerable system. Description The Research In Motion TeamOn Import Object is an ActiveX control, which is provided by the file TOImport.dl...
Microsoft Office drawing object vulnerability
Overview Microsoft Office fails to properly handle malformed drawing objects. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code. Description Microsoft Office fails to properly handle malformed drawing objects embedded within Office documents. By convincing ...
Trend Micro ServerProtect EarthAgent buffer overflow vulnerability
Overview Trend Micro ServerProtect contains a buffer overflow vulnerability. This vulnerability may allow an attacker to execute arbitrary code on a vulnerable system. Description Trend Micro ServerProtect is an anti-virus application that is designed to run on Windows-based servers. The...
Axis Communications CamImage ActiveX control stack buffer overflow
Overview The Axis Communications CamImage ActiveX control contains a stack buffer overflow, which can allow a remote, unauthenticated attacker to run arbitrary code on a vulnerable system. Description Axis Communications provides an ActiveX control for viewing motion JPEG streams in Microsoft...
Cisco ASA clientless SSL VPN denial of service vulnerability
Overview The Cisco ASA firewall's SSL VPN component contains an denial-of-service vulnerability. Description The Cisco Adaptive Security Appliance ASA is firewall that includes routing, intrusion prevention system IPS, and VPN components. The clientless SSL VPN allows remote users with a web...
LiveData Protocol Server fails to properly handle requests for WSDL files
Overview The LiveData Protocol Server fails to properly handle requests. This vulnerability may allow a remote attacker to execute arbitrary code. Description The LiveData Protocol Server is real-time data acquisition and processing software used to record and transmit data among process control...