13538 matches found
ESTsoft ALZip MIM File Buffer Overflow (CVE-2011-1336)
A remote code execution vulnerability has been reported in ESTsoft's ALZip. The vulnerability is due to an error while parsing MIME files. A remote attacker may exploit this vulnerability by sending a specially crafted .mim file to an affected user. Successful exploitation of this vulnerability...
7T Interactive Graphical SCADA System (IGSS) Directory Traversal (CVE-2011-1565)
A directory traversal vulnerability has been reported in 7T Interactive Graphical SCADA System IGSS. 7-Technologies' IGSS is a Supervisory Control and Data Acquisition SCADA system used for monitoring and controlling industrial processes. A remote attacker may exploit this vulnerability to read a...
Uniscribe Font Parsing Engine Remote Code Excution (MS10-063; CVE-2010-2738)
This is a memory corruption vulnerability in Microsoft Windows and Microsoft Office products. The vulnerability is due to improper input validation of a table in the TrueType font layout. Remote attacker could trigger this flaw by enticing a user to open a specially crafted TTF file. Successful...
Novell File Reporter Agent XML Parsing Stack Buffer Overflow (CVE-2011-0994)
A stack buffer overflow vulnerability has been reported in the Agent component of Novell File Reporter. The vulnerability is due to improper boundary checks of user-supplied NAME tags in the input XML. The vulnerability is triggered upon parsing of a malicious XML tag with overly long content...
Adobe Audition Session File Stack Buffer Overflow (APSB11-10; CVE-2011-0614)
Adobe Audition formerly Cool Edit Pro is a digital audio workstation from Adobe Systems featuring both a multi-track, non-destructive mix/edit environment and a destructive-approach waveform editing view. A stack buffer overflow exists in Adobe Audition. The vulnerability is due to an error when...
Microsoft Windows Media Player PNG Chunk Handling Stack Overflow (MS06-024) - High Confidence (CVE-2006-0025)
An attacker can exploit this vulnerability by enticing a user to open a crafted PNG file, resulting in the possible injection and execution of arbitrary code on the target system with the privileges of the currently logged-in user. A remote stack buffer overflow vulnerability has been discovered ...
Microsoft Windows Kernel-Mode Drivers Win32k Memory Corruption (MS11-012; CVE-2011-0090)
The Windows kernel-mode driver win32k.sys is a kernel-mode device driver and is the kernel part of the Windows subsystem. It contains the window manager and the Graphics Device Interface GDI. It also serves as a wrapper for DirectX support. An elevation of privilege vulnerability has been...
RealNetworks RealPlayer RecordClip Parameter Injection Code Execution (CVE-2010-3749)
RealNetworks RealPlayer is a cross-platform media player that supports multiple multimedia formats such as: MP3, MPEG-4, QuickTime, Windows Media, and RealAudio and RealVideo formats. RealPlayer contains many features including streaming capabilities, media browser, video download, and CD ripping...
Microsoft Windows SMB mrxsmb.sys Remote Heap Overflow (CVE-2011-0654)
A heap buffer overflow vulnerability has been reported in the Microsoft Windows Server Message Block SMB implementation. The SMB Protocol is a network file sharing protocol that is implemented in Microsoft Windows. A remote attacker may exploit this vulnerability to create a denial of service...
Microsoft Graphics Filters TIFF Image Converter Heap Overflow (MS10-105; CVE-2010-3947)
Tagged Image File Format TIFF is a container format for storing images, including photographs and line art. A remote code execution vulnerability has been discovered in the way that Microsoft Office parses specially crafted TIFF image files. The vulnerability is due to an error in Microsoft Offic...
Adobe Shockwave Player Duplicate Keys Memory Corruption (APSB10-25; CVE-2010-4088)
Adobe Shockwave is a multimedia player that allows Adobe Director applications to be published on the Internet and viewed in a web browser by anyone who has the Shockwave plug-in installed. A memory corruption vulnerability has been identified in Adobe Shockwave Player. The vulnerability is due t...
Microsoft OpenType Font Parsing Elevation of Privilege (MS10-078; CVE-2010-2740)
OpenType is a font format developed jointly by Microsoft and Adobe as an extension of Apple's TrueType font format. An OpenType font file contains data, in table format, that comprises either a TrueType or a PostScript outline font. An elevation of privilege vulnerability has been reported in the...
Sun Directory Server LDAP Denial of Service (CVE-2006-0647)
Sun Directory Server is a distributed directory server based on the Lightweight Directory Access Protocol LDAP. The server listens for LDAP requests on a port specified during installation. The default port assigned to the server during installation is randomly selected. There exists a...
CA BrightStor ARCserve Backup Message Engine Stack Overflow (CVE-2007-5327)
There exists a buffer overflow vulnerability in CA BrightStor ARCserve Backup Message Engine. The vulnerability is due to insufficient boundary checking when processing strings supplied in RPC requests. Successful exploitation of this vulnerability allows a remote unauthenticated attacker to...
Microsoft Access ACCWIZ.dll Uninitialized Variable Code Execution (MS10-044; CVE-2010-1881)
ACCWIZ.dll Microsoft Access Wizard Controls is a component of Microsoft Office that provides a library of Access ActiveX controls. A remote code execution vulnerability has been reported in the way that the AccWizObjects ActiveX control is instantiated by Microsoft Office and Internet Explorer. T...
Microsoft Windows ISATAP IPv6 Source Address Spoofing (CVE-2010-0812)
The Intra-Site Automatic Tunnel Addressing Protocol ISATAP provides IPv6 connectivity within an IPv4 Intranet. A spoofing vulnerability has been reported in Microsoft Windows due to the way that Windows checks the inner packet's IPv6 source address in a tunneled ISATAP packet. The vulnerability i...
Update Protection against Novell iPrint Client ienipp.ocx target-frame Stack Buffer Overflow
A buffer overflow vulnerability exists in Novell iPrint Client, an application that allows users to install and manage printers, or submit print jobs from a web browser. The vulnerability is due to a boundary error in the ActiveX control when parsing target-frame parameter values. A remote attack...
Microsoft Word Document Parsing Buffer Overflow (MS05-023; CVE-2004-0963)
Microsoft Word is a popular document processing product released by the Microsoft Corporation. A Word document contains values which enable the product to correctly parse the document such as length, count, offset fields and so on. Some of these values are string that represents font name, style,...
Microsoft Movie Maker Project File Handling Buffer Overflow (MS10-016; CVE-2010-0265)
Microsoft Movie Maker is a video creating/editing software, that contains features such as effects, transitions, titles/credits, audio track, and timeline narration. A buffer overflow vulnerability has been identified in Microsoft Movie Maker. The vulnerability is due to an error in Microsoft Mov...
Internet Explorer Plugin Loading Address Bar Spoofing (MS06-021; CVE-2006-1626)
Microsoft Internet Explorer is a popular browser that is bundled with the Microsoft Windows family of operating systems. The browser is capable of rendering HTML pages, as well as images and other embedded media, which may be handled by third party plugins. Some of the plugins available to be use...
VideoLAN VLC Media Player SMB Module Win32AddConnection Buffer Overflow (CVE-2009-2484)
A buffer overflow vulnerability has been reported in VideoLAN VLC Media Player. The vulnerability is due to a boundary error. Remote attackers can exploit this vulnerability, for example, by enticing target users to open a playlist file having an overly long "smb://" URI that will cause an stack...
Microsoft Windows SMB Client Pool Corruption (MS10-006; CVE-2010-0016)
The SMB Protocol is a network file sharing protocol that is implemented in Microsoft Windows. A remote code execution vulnerability has been reported in the Microsoft Server Message Block SMB Protocol. The vulnerability is due to an error in the Microsoft SMB implementation that improperly...
Microsoft PowerPoint Viewer TextCharsAtom Record Stack Overflow (MS10-004; CVE-2010-0034)
Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote code execution vulnerability has been identified in Microsoft PowerPoint. The vulnerability is due to a stack overflow in Microsoft PowerPoint TextCharsAtom record when processing malicious...
HP OpenView Network Node Manager OVwSelection Buffer Overflow (CVE-2009-4181)
The HP OpenView product consists of a suite of network and system management software applications developed by HP. It includes several optional modules and components, such as OpenView Quality Manager, OpenView Performance Insight, OpenView Network Node Manager, etc. A buffer overflow...
Opera Browser file URI Handling Buffer Overflow (CVE-2008-5178)
Opera is a web browser and Internet suite developed by the Opera Software company. Opera handles common Internet-related tasks such as displaying web sites, sending and receiving e-mail messages, managing contacts, IRC online chatting, downloading files via BitTorrent, and reading web feeds. The...
Adobe Flash Media Server Resource Exhaustion Denial of Service (APSB09-18; CVE-2009-3791)
A resource exhaustion vulnerability has been discovered in Adobe Flash Media Server FMS. Flash Media Server FMS is an application server for Flash-based applications. Successful exploitation of this issue will create a denial of service condition, causing the application to become non-responsive...
CA BrightStor ARCserve Backup caloggerd Opcode 79 Stack Buffer Overflow (CVE-2008-2242)
Computer Associates BrightStor ARCserve Backup products offer data protection for distributed servers, clients, databases and applications. They provide centralized control over a series of distributed operations including Backup and Restore, Data Migration, and Threat Management. There exists a...
Ipswitch WS_FTP Server Commands Buffer Overflow Denial of Service (CVE-2004-1135)
The Ipswitch WSFTP server is a full featured secure FTP server complete with several optional authentication mechanisms, encryption and data access controls. It is fully compliant with the File Transfer Protocol specifications. A vulnerability exists in the way Ipswitch WSFTP server parses certai...
Novell GroupWise WebAccess Basic Authentication Buffer Overflow (CVE-2007-2171)
Novell GroupWise is an enterprise collaboration system that provides secure e-mail, calendaring, scheduling, and instant messaging. GroupWise also includes task management, contact management, document management, and other productivity tools. GroupWise can be used on the users' desktop and can b...
Microsoft Exchange Server XEXCH50 Command Buffer Overflow (MS03-046; CVE-2003-0714)
The Microsoft Exchange Server is an implementation of an email server capable of handling numerous Internet protocol, including the Simple Mail Transfer Protocol SMTP. A security vulnerability exists in the Internet Mail Service in Exchange Server 5.5 and Exchange 2000 that could allow an...
Microsoft Exchange OWA Cross-Site Scripting and Spoofing (MS04-026; CVE-2004-0203)
Microsoft Exchange Outlook Web Access is a web application that is an alternative to Microsoft Outlook. It allows users to access their emails and public folders using a web browser. Outlook Web Access is implemented in ASP and is hosted on a system with Internet Information Server IIS installed...
Symantec VERITAS Storage Foundation Administrator Service Buffer Overflow (CVE-2008-0638)
Symantec VERITAS Storage Foundation, provides a complete solution for heterogeneous online storage management. Storage Foundation Management Server allows centralized storage management capabilities across a broad array of operating systems and storage hardware. There exists a buffer overflow...
Novell NetMail IMAP Buffer Overflow (CVE-2005-3314)
The Internet Message Access Protocol IMAP allows the access and manipulation of electronic mail. Novell Netmail is a mail server product that relies on Novell eDirectory and Novell Nsure Audit products. It supports the IMAP protocol as well as other well known internet mail protocols. There exist...
VideoLAN VLC Media Player WAV Processing Integer Overflow (CVE-2008-2430)
VLC media player is an open source multimedia player. It can play many audio and video formats MPEG, DivX, ogg, Wave etc. as well as various streaming protocols. It is highly portable and available for multiple platforms. Support for various formats is implemented in the form of plugins bundled...
Oracle Secure Enterprise Search search_p_groups Cross-Site Scripting (CVE-2009-1968)
Oracle Secure Enterprise Search SES, a standalone product from Oracle, enables a secure, high quality search across all enterprise information assets. Oracle Database Secure Enterprise Search contains a flaw that allows a remote cross site scripting attack. This flaw exists because the applicatio...
Microsoft Workstation Service NetrGetJoinInformation Corruption (MS09-041; CVE-2009-1544)
Microsoft Windows Workstation Service routes local file system requests and remote file or print network requests via Remote Procedure Call RPC. RPC is a protocol that a program can use to request a service from another program which is located on another computer in a network. An elevation of...
Microsoft Excel String Copy Stack-Based Overrun (MS09-021; CVE-2009-0559)
Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The vulnerability is due to a memory corruption error in Microsoft Excel when loading specially crafted Excel files that include a malformed record object. A...
Microsoft Excel QSir and QSif Records Pointer Corruption (MS09-021; CVE-2009-1134)
Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The flaw is due to a memory corruption error in Microsoft Excel when loading specially crafted Excel files that include a malformed record object. The...
Protection against Microsoft Windows HTTP Services Certificate Name Mismatch Remote Code Execution Vulnerability (MS09-013)
A spoofing vulnerability has been reported in Microsoft Windows HTTP Services. Windows HTTP Services WinHTTP provides developers with an HTTP client application programming interface API to send requests through the HTTP protocol to other HTTP servers. A remote attacker may exploit this issue to...
Microsoft Excel TXO and OBJ Records Parsing Memory Corruption (MS08-074; CVE-2008-4265; CVE-2009-0100)
Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The vulnerability is due to a memory corruption error in Microsoft Excel when loading Excel records. An attacker can exploit this flaw to execute arbitrary code ...
Preemptive Protection against Novell Groupwise Internet Agent RCPT Command Buffer Overflow
A buffer overflow vulnerability was reported in Novell GroupWise, a client-server collaborative software and email system provided by Novell. The vulnerability is due to a boundary error while processing specially crafted SMTP requests. Remote attackers can exploit this vulnerability to execute...
Internet Explorer WebDav Pathname Code Execution (MS08-073; CVE-2008-4259)
A remote code execution vulnerability has been reported in the way Microsoft Internet Explorer accesses uninitialized memory in certain situations. The vulnerability is due to a memory corruption error in Internet Explorer when it attempts to access uninitialized memory in certain situations. An...
Microsoft Windows Message Queuing Service Queue Name Handling (MS08-065) - ver 2 (CVE-2008-3479)
Microsoft Message Queuing MSMQ is a component of Microsoft Windows designed to act as a message portal between a set of applications requiring message exchange functionality. MSMQ enables applications that are running at different times to communicate across heterogeneous networks and across...
Microsoft Office OneNote URL Validation Error (MS08-055; CVE-2008-3007)
Microsoft Office OneNote is a tool for note-taking, information gathering, and multi-user collaboration that visualizes notes as a two-dimensional page. A remote code execution vulnerability has been reported in the way that Microsoft Office handles specially crafted OneNote files. The...
Preemptive Protection against CA eTrust Secure Content Manager Gateway FTP PASV Stack Overflow Vulnerability
A buffer overflow vulnerability was discovered in CA eTrust Secure Content Manager. CA eTrust Secure Content Manager SCM is a gateway product for Windows platform that secures, monitors, filters and blocks potential threats from messaging and Web traffic. It provides protection against malware,...
Microsoft Malware Protection Engine Disk Space Exhaustion (MS08-029; CVE-2008-1438)
The Microsoft Malware Protection Engine provides the scanning, detection and cleaning capabilities for the following antivirus and antispyware clients: Windows Live OneCare, Microsoft Forefront Security, Microsoft Antigen, and Windows Defender. A denial of service vulnerability has been identifie...
Update Protection against Asterisk Buffer Overflow Vulnerabilities
Two buffer overflow vulnerabilities have been reported in the RTP payload handling code of Asterisk that could allow remote attackers to execute arbitrary code...
HP OpenView Products OVTrace Service Stack Buffer Overflow (CVE-2007-3872)
OpenView product consists of a suite of network and systems management software applications that include hundreds of optional modules and components. A buffer overflow vulnerability was reported in HP OpenView products OVTrace server. The vulnerability is due to a boundary error in HP OVTrace...
Microsoft Office Outlook mailto URI Handling Code Execution (MS08-015; CVE-2008-0110)
Microsoft Office Outlook is a personal information manager that provides an e-mail application, a calendar and task and contact management.A remote code execution vulnerability has been reported in Microsoft Office Outlook. The vulnerability is due to an error in Microsoft Office Outlook that fai...
Microsoft Visual FoxPro ActiveX Control Buffer Overflow (MS08-010; CVE-2007-4790)
Microsoft Visual FoxPro is an application development tool for building database applications. This vulnerability is due to a memory corruption error in certain ActiveX objects of Microsoft Visual FoxPro when it is used in Microsoft Internet Explorer. A remote attacker could exploit this issue by...