13538 matches found
Schneider Electric ProClima ATX45 SetHtmlFileName Heap Buffer Overflow (CVE-2014-8511)
A code execution vulnerability has been reported in Schneider Electric ProClima. The vulnerability is due to a heap buffer overflow when processing user supplied parameter input to SetHtmlFileName in the Atx45.ocx ActiveX control. A remote unauthenticated attacker could exploit this vulnerability...
Samsung SmartViewer CNC_Ctrl ActiveX Control Buffer Overflow (CVE-2012-4333; CVE-2014-9265)
A stack buffer overflow vulnerability exists in Samsung SmartViewer. The vulnerability is due to improper validation of a parameter provided to the BackupToAvi method of the CNCCtrl ActiveX Control. A remote, unauthenticated attacker can exploit this vulnerability by enticing the target user to...
Asterisk chan_iax2 IAX2 Control Frame LAGR Denial of Service - Ver2 (CVE-2007-3763)
A denial-of-service vulnerability has been reported in Asterisk AsteriskNOW, Asterisk Appliance Developer Kit and Asterisk S800i Appliance. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...
Symantec Workspace Streaming XML-RPC Arbitrary File Upload - Ver2 (CVE-2014-1649)
An arbitrary file upload vulnerability has been reported in Symantec Workspace. The vulnerability is due to lack of access control validation in the functionality used to process XMLRPC requests. A remote unauthenticated attacker could exploit this vulnerability by a sending specially crafted...
Microsoft Exchange Server Outlook Web Access Cross-Site Scripting (MS14-075; CVE-2014-6326)
An elevation of privilege vulnerability exists in Microsoft Exchange Server. The vulnerability is due to an error in Microsoft Exchange input validation. A remote attacker can exploit this issue by enticing a victim to open a specially crafted email with Microsoft Outlook Web Access OWA...
Visual Mining NetCharts Server Admin Console Arbitrary File Upload (CVE-2014-8516)
An arbitrary file upload vulnerability has been reported in Visual Mining NetCharts Server. The vulnerability exists in the Admin console and is due to insufficient validation of filename during the upload process. A remote attacker can exploit this vulnerability to execute arbitrary code on the...
SENKAS Kolibri Webserver GET Request Buffer Overflow (CVE-2014-4158)
A stack buffer overflow vulnerability has been reported in SENKAS Kolibri Webserver 2.0. The vulnerability is due to a boundary error when handling GET request. A remote unauthenticated attacker can exploit the service by sending a crafted GET request to the target service...
AlienVault OSSIM av-centerd Util.pm remote_task Arbitrary Command Execution (CVE-2014-5210)
The vulnerability is due to a failure to safely sanitize remotetask SOAP requests within Util.pm. this vulnerability can be exploit by sending crafted requests to the affected service. Successful exploitation could result in arbitrary command execution with root privileges...
Apache HTTP Server error handling malformed HTTP headers Denial of Service (CVE-2014-0117)
A denial of service vulnerability has been reported in Apache HTTP server. The vulnerability is due to an error handling malformed HTTP headers. A remote, unauthenticated attacker can leverage this vulnerability by sending a malicious request to the target server...
MOXA Device Manager Tool SCADA Buffer Overflow (CVE-2010-4741)
A remote code execution vulnerability has been reported in MOXA Device Manager Tool. The vulnerability is due to a stack based buffer overflow when handling specially crafted packets...
Microsoft Internet Explorer Memory Corruption (MS14-035; CVE-2014-1772)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way that Internet Explorer accesses an object that has not been correctly initialized or has been deleted. A remote attacker can exploit this issue by enticing a use...
Yokogawa CENTUM CS 3000 SCADA Buffer Overflow (CVE-2014-0784)
A remote code execution vulnerability has been reported in Yokogawa CENTUM CS 3000. The vulnerability is due to a stack based buffer overflow when handling specially crafted packets...
InduSoft Web Studio Directory Traversal (CVE-2014-0780)
A directory traversal vulnerability has been reported in InduSoft Web Studio. The vulnerability is due to insufficient validation of certain requests while using the development web server. An unauthenticated attacker could exploit this vulnerability by sending crafted requests to the vulnerable...
Apple QuickTime QTVR QTVRStringAtom Parsing Buffer Overflow - Ver2 (CVE-2012-0667)
A buffer overflow vulnerability has been reported in Apple QuickTime. The vulnerability is due to a signedness error when processing a specially crafted QTVR string. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cau...
Microsoft Office Excel SerAuxTrend Record Remote Code Execution (MS11-045) - Ver2 (CVE-2011-1274)
This is a remote code execution vulnerability. When Microsoft Excel validates record information upon opening a specially crafted Excel file, a memory handling error may corrupt system memory in such a way that an attacker could execute arbitrary code. Successful exploitation of this vulnerabilit...
Microsoft Windows DirectShow JPEG Double Free (MS14-013; CVE-2014-0301) - ver 2
A double free vulnerability has been reported in Microsoft Windows DirectShow. The vulnerability is due to the way DirectShow handles JPEG images. A remote attacker can exploit this vulnerability by enticing a user to download and process a maliciously crafted JPEG file...
Microsoft XML Core Services Nested Tag Memory Corruption- Ver2 (CVE-2007-0099)
A memory corruption vulnerability has been reported in Xml Core Services. The vulnerability is due to the way that Microsoft XML Core Services handles nested tags. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows ANI file Denial of Service - Ver2 (CVE-2007-1765)
A denial-of-service vulnerability has been reported in Microsoft Windows. An attacker could exploit this vulnerability via a malformed ANI file. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Multiple Antivirus Products RAR Parser MZ Character Sequence Security Bypass - Ver2 (CVE-2012-1443)
A security bypass vulnerability has been reported in multiple antivirus products. An attacker could exploit this vulnerability via a RAR file with an initial MZ character sequence. Successful exploitation of this vulnerability would allow remote attackers to bypass security tests and protocols on...
Microsoft IIS Input Validation Directory Traversal (CVE-2000-0884)
A directory traversal vulnerability has been reported in Microsoft IIS. The vulnerability is due to an input validation error in Microsoft IIS that does not properly sanitize the URI for directory traversal patterns. Successful exploitation of this vulnerability would allow the attacker to execut...
Microsoft ASP.NET POST Request Denial of Service (MS14-009; CVE-2014-0253)
A denial of service vulnerability exists in Microsoft ASP.NET. The vulnerability is caused when the .NET Framework improperly identifies stale or closed HTTP client connections. A remote attacker can trigger this flaw by sending a small number of specially crafted requests to an affected server...
HP AIO Archive Query Server oasoa.exe Stack Buffer Overflow (CVE-2013-6189)
A stack buffer overflow vulnerability exists in HP Application Information Optimizer. The vulnerability is due to insufficient sanitization on the range of the opcode value. A remote unauthenticated attacker can leverage this vulnerability by sending crafted messages to the server...
Microsoft Excel NAME Record Array Indexing Stack Buffer Corruption - Ver2 (CVE-2008-4266)
A code execution vulnerability has been reported in Microsoft Office Excel. The vulnerability is due to a stack corruption in Microsoft Excel when loading Excel records. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Oracle Fusion Middleware Showenv Servlet Information Disclosure (CVE-2012-3152; CVE-2012-3153)
An information disclosure vulnerability has been reported in the Oracle Reports component of Oracle Fusion Middleware. The vulnerability is due to incorrect website configuration that could allow a remote attacker to execute unauthenticated network attacks over HTTP...
RealPlayer CDDA URI Code Execution - Ver2 (CVE-2010-3747)
A code execution vulnerability has been reported in RealNetworks RealPlayer ActiveX control.RealPlayer. The vulnerability is due to access to uninitialized memory during processing of CDDA URIs. A remote attacker could exploit this vulnerability by enticing a target user to open a crafted web fil...
Oracle 9i HTTP Server Web Administration Access Privilege Escalation - Ver2 (CVE-2002-0561)
A privilege escalation vulnerability has been reported in Oracle 9i Application Server. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...
Oracle Outside In OS 2 Metafile Parser stack buffer overflow (CVE-2013-5763; CVE-2013-5879)
A stack buffer overflow vulnerability exists in Oracle Outside-In, a set of libraries used to decode many file formats. The vulnerability is due to a boundary error while processing OS/2 Metafiles. Oracle Outside-In is embedded in many enterprise applications. This vulnerability can be exploited ...
HP Data Protector CRS Opcode 1092 Stack Buffer Overflow (CVE-2013-2331)
A stack buffer overflow has been discovered in HP Data Protector...
Microsoft Internet Explorer Javascript Runtime Denial Of Service (MS13-082; CVE-2013-3861)
A remote Denial of Service vulnerability has been reported in Microsoft Internet Explorer...
Microsoft Windows ICMPv6 Router Advertisement Denial of Service (MS13-065; CVE-2013-3183)
There exists a denial of service vulnerability in Windows TCP/IP stack...
Mutiny FrontEnd Arbitrary File Upload (CVE-2013-0136)
A directory traversal vulnerability has been reported in EditDocument servlet file upload function from the frontend on the Mutiny 5 appliance. A directory traversal vulnerability in the same functionality allows for arbitrary file upload, which results in arbitrary code execution with root...
InduSoft Web Studio Unauthenticated Insecure Remote Operations - High Confidence (CVE-2011-4051)
A code execution vulnerability has been reported in the Remote Agent component of InduSoft Web Studio. The vulnerability is due to the absence of authentication for incoming requests to the Remote Agent service. A remote, unauthenticated attacker could exploit this vulnerability by sending crafte...
Novell GroupWise Client IMG Tag SRC Parameter Buffer Overflow - High Confidence (CVE-2007-6435)
Novell GroupWise is a client-server collaborative software and email system provided by Novell. The Novell GroupWise Client application is capable of communicating with Novell Group server, as well as Internet email gateways using SMTP, POP, and IMAP protocols. A buffer overflow vulnerability has...
Oracle Outside In Paradox Database Stream Filter Denial of Service (CVE-2013-0393)
A denial of service vulnerability has been reported in Oracle Outside In, a set of libraries used to decode many file formats. The vulnerability is due to an error while processing Paradox databases that contain a malicious entry in a field description array. A remote attacker could trigger this...
Microsoft .NET Framework WinForms Information Disclosure (CVE-2013-0001)
A remote code execution vulnerability has been reported in the Microsoft .NET Framework. The vulnerability is due to the way WinForms handles pointers to unmanaged memory locations.A remote, unauthenticated attacker can exploit this vulnerability by either enticing a user to visit a maliciously...
Microsoft DNS Server Denial of Service - Specific (MS12-017; CVE-2012-0006)
A denial of service vulnerability has been reported in Microsoft DNS servers. The vulnerability is due to the way that the DNS server improperly handles objects in memory when looking up the resource record of a domain. A remote attacker may exploit this issue by sending a specially crafted DNS...
NFR Agent Heap Overflow (CVE-2012-4956)
...
Microsoft Word RTF listoverridecount Remote Code Execution (MS12-079; CVE-2012-2539; CVE-2014-1761)
A remote code execution vulnerability has been reported in Microsoft Word. The vulnerability is due to an error in the way Word parses specially crafted Rich Text Format RTF data. A remote attacker can exploit this issue by enticing a target user to open a malicious Microsoft Office Document...
EMC AutoStart ftAgent.exe Null Byte Write (CVE-2012-0409)
A memory corruption vulnerability has been reported in EMC AutoStart...
Apple QuickTime TeXML Color String Parsing Buffer Overflow (CVE-2012-0663)
A stack buffer overflow vulnerability has been reported in Apple QuickTime. The vulnerability is due to insufficient validation of a string length when processing certain elements inside QuickTime TeXML files. A remote attacker can exploit this issue by enticing a target user to open a specially...
Internet Explorer HTML Sanitization Information Disclosure (MS12-039; CVE-2012-1858)
An information disclosure vulnerability has been reported in Microsoft Internet Explorer...
Symantec AppStream Client LaunchObj ActiveX Control Code Execution (CVE-2008-4388)
A remote code execution vulnerability has been reported in Symantec AppStream Client...
Logitech VideoCall ActiveX Control Buffer Overflow (CVE-2007-2918)
A buffer overflow vulnerability has been reported in Logitech VideoCall. The vulnerability is due to a boundary error in an ActiveX control while handling a certain method. A remote attacker could exploit this vulnerability by enticing a user to open a specially crafted web page. Successful...
Sun Java Web Start BasicServiceImpl Remote Code Execution (CVE-2010-3563)
A remote code execution vulnerability has been reported in Oracle Java SE. The vulnerability is due to a flaw in the way Web Start retrieves security policies. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted web-page. Successful exploitation...
EnjoySAP SAP GUI ActiveX Control Arbitrary File Download (CVE-2008-4830)
An arbitrary file download vulnerability has been reported in EnjoySAP, a GUI for SAP. The vulnerability is due to an input validation error while processing a certain method. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted HTML page...
Cisco AnyConnect VPN Client ActiveX Code Execution (CVE-2011-2039)
A remote code execution vulnerability has been reported in Cisco Anyconnect VPN Client. Annyconnect provides secured remote connection software solution for PCs and mobile devices. The vulnerability exists in the application VPN client's Activex control which aids in downloading and executing its...
Microsoft Remote Desktop Client Insecure Library Loading (MS11-017; CVE-2011-0029)
The Remote Desktop feature in Windows enables access to all of the programs, resources, and accessories on a user's computer from another Windows-based computer. Once connected, Remote Desktop gives mouse and keyboard control over the computer while showing everything that is happening on the...
Oracle Document Capture EasyMail ActiveX Control Information Disclosure (CVE-2010-3595)
Oracle Document Capture supplies document scanning and indexing capabilities. It installs an ActiveX control EasyMail on web clients An information disclosure vulnerability has been reported in the EasyMail ActiveX control included with Oracle Document Capture. The vulnerability is due to imprope...
RealNetworks RealPlayer CDDA URI Uninitialized Pointer Code Execution (CVE-2010-3747)
RealPlayer is a media player application developed by RealNetworks Inc. This application is capable of playing back numerous multimedia file formats and can open media files from local file system or network servers. A remote code execution vulnerability has been reported in RealNetworks RealPlay...
Oracle Secure Backup Administration property_box.php Command Injection (CVE-2010-0899)
Oracle Secure Backup is a backup solution allowing for centralized tape backup management. The server allows for single point of management of data present on network attached storage NAS devices and distributed hosts which may have different operating systems. The data in transit is kept secure ...