3965 matches found
KLA10328 ACE vulnerability in Skype
An untrusted path was found in Skype. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally and possibly remotely via a DLL hijack. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...
KLA10312 ACE vulnerability in SAP Business One 2005
A buffer overflow was found in SAP Business One. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed packet. Original advisories - Exploitation Public exploits exist for this vulnerability. Related...
KLA10280 DoS vulnerability in OpenOffice.org
Multiple critical vulnerabilities have been found in OpenOffice.org. Malicious users can exploit these vulnerabilities to cause denial of service or possibly execute arbitrary code. Below is a complete list of vulnerabilities 1. An integer overflow can be exploited remotely via specially designed...
KLA10110 ACE vulnerability in Citrix
An unspecified vulnerability was found in Citrix products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at a point related to the ICA graphics packet via a specially designed HTML or ICA document. Original advisories...
KLA10117 ACE vulnerability in Citrix XenApp Online plug-in
An unspecified vulnerability was found in the Citrix XenApp Online plug-in. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed web site Original advisories Citrix bulletin Related products...
KLA10331 SB vulnerability in Snare
A CSRF vulnerability was found in Snare. By exploiting this vulnerability malicious users can hijack administrator auth. This vulnerability can be exploited remotely. Original advisories - Related products Snare-for-Windows Epilog-for-Windows CVE list CVE-2010-2594 high Solution Update to latest...
KLA10334 DoS vulnerability in TFTP Server
An unspecified vulnerability was found in the TFTP Server. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed request. Original advisories - Exploitation Public exploits exist for this vulnerability...
KLA10044 ACE vulnerability in 2BrightSparks SyncBack
A buffer overflow vulnerability was found at 2BrightSparks SyncBack. Malicious users can exploit this vulnerability to execute arbitrary code via a specially designed filename. Original advisories Change log Vulnerability description Related products 2BrightSparks-SyncBack SyncBackFree CVE list...
KLA10309 ACE vulnerability in RemoteExec
Buffer overflow was found in the RemoteExec. By using this vulnerability spiteful abuser can execute arbitrary code. This vulnerability can be exploited from remote via specially designed REC file Original advisories Blog post Changelog Related products RemoteExec CVE list Solution Update to late...
KLA10409 ACE vulnerability in ZipGenius
A buffer overflow was found in ZipGenius. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZIP file. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...
KLA10225 DoS vulnerability in WS FTP
A format string vulnerability was found in WS FTP. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed format string. Original advisories - Exploitation Public exploits exist for this vulnerability...
KLA10389 ACE vulnerability in Warcraft III
An unspecified vulnerability was found in Warcraft III. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed map. Original advisories - Related products Warcraft-III:-The-Frozen-Throne CVE list...
KLA10106 ACE vulnerability in Cisco Secure Desktop
An improperly downloaded files verification vulnerability was found in Cisco Security Desktop. By exploiting this vulnerability malicious users can Execute Arbitrary Code. This vulnerability can be exploited from the network at a point related to Web Install via a specially designed web page...
KLA10381 Multiple vulnerabilities in VMware
Multiple critical vulnerabilities have been found in VMware. Malicious users can exploit these vulnerabilities to execute arbitrary code or gain privileges. Below is a complete list of vulnerabilities 1. Improper library access can be exploited remotely at a point related to network share; 2...
KLA10148 ACE vulnerability in Quiksoft Easymail Objects
A buffer overflow was found in QuikSoft EasyMail Objects. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to the connection method. Original advisories - Related products...
KLA10042 Critical vulnerability in Adobe Download Manager
Improper request validation at NOS Microsystems getPlus Download Manager was found in Adobe Download Manager. Malicious users can exploit this vulnerability to bypass security and install arbitrary programs via a specially designed download site name. Original advisories Adobe bulletin Related...
KLA10414 ACe vulnerability in Avast! Antivirus
Improper input validation was found in Avast! Antivirus. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed IOCTL request. Original advisories - Related products...
KLA10179 Vulnerability in Google Desktop
An unspecified vulnerability was found in Google Desktop. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited by vectors related to Gadgets. Original advisories securityfocus Related products Google-Desktop CVE list Solution Update to...
KLA10315 Multiple vulnerabilities in SUPERAntiSpyware
Multiple serious vulnerabilities have been found in SUPERAntiSpyware. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code and gain privileges. Below is a complete list of vulnerabilities 1. Unsafe buffers, function parameter handling, unsafe pointe...
KLA10073 SB vulnerability in Apple AirPort
An improperly MAC address distribution was found in Apple AirPort. By exploiting this vulnerability malicious users can bypass access restrictions. This vulnerability can be exploited from the network via an authentication frame. Original advisories vulnerability description Related products...
KLA10287 ACE vulnerability in PDF-XChange Viewer
An unspecified vulnerability was found in PDF-XChange Viewer. By exploiting this vulnerability malicious users can execute arbitrary code or cause denial of service. This vulnerability can be exploited remotely via a specially designed PDF file. Original advisories securityfocus Related products...
KLA10241 ACE vulnerability in Lateral Arts Photobox Uploader
A buffer overflow was found in LA Photobox Uploader. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed URL. Original advisories Juniper description Related products Photobox-Uploader-ActiveX-Control C...
KLA10108 DoS vulnerability in Cisco VPN client
Improper error handling was found in Cisco VPN Client. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited locally at a point related to the cvpnd service via cvpnd.exe manipulations. Original advisories Cisco bulletin Related products...
KLA10347 DoS vulnerability in VirtualBox
An unspecified vulnerability was found in xVM VirtualBox. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited locally via vectors related to guest additions. Original advisories - Related products Oracle-VirtualBox CVE list CVE-2009-39...
KLA10094 DoS vulnerabilities in CA products
An unspecified vulnerability was found in CA products. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited from the network at a point related to arclib via a specially designed RAR archive. Original...
KLA10344 Multiple vulnerabilities in Sun Java SE
Multiple serious vulnerabilities have been found in SUN Java SE. Malicious users can exploit these vulnerabilities to cause denial of service or bypass authentication. Below is a complete list of vulnerabilities 1. Unknown vectors can be exploited remotely via specially designed HTTP headers or...
KLA10417 ACE vulnerability in eEye Retina Network Security
A buffer overflow was found in eEye Retina Network Security. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed RWS file. Original advisories - Exploitation Public exploits...
KLA10183 DoS vulnerability in Gpg4Win
An unspecified vulnerability was found in Gpg4Win. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed certificate. Original advisories - Related products Gpg4win CVE list CVE-2009-3805 warning Solutio...
KLA10374 ACE vulnerability in UiTV UiPlayer
A buffer overflow was found in UiTV UiPlayer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed filename parameter. Original advisories - Related products UiTV-UiPlayer CVE list CVE-2009-2970 critical...
KLA10166 ACE vulnerability in FrontRange HEAT
An SQL injection vulnerability was found in FrontRange HEAT. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at a point related to Call Logging. Original advisories - Related products FrontRange-HEAT CVE list CVE-2009-3642...
KLA10131 DoS vulnerability in CuteFTP
A buffer overflow was found in CuteFTP. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed site list. Original advisories - Related products CuteFTP-Pro CuteFTP-Home...
KLA10333 DoS vulnerability in TFTP
An unspecified vulnerability was found in the TFTP Server. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed request. Original advisories - Exploitation Public exploits exist for this vulnerability...
KLA10085 SUI vulnerability in Avant
An unspecified vulnerability was found in the Avant browser. By exploiting this vulnerability malicious users can spoof the address bar. This vulnerability can be exploited from the network at a point related to opening windows via a specially designed URI. Original advisories Blog record Related...
KLA10127 ACE vulnerability in CoolPreviews
An unspecified vulnerability was found in CoolPreviews. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed link. Original advisories security-assessment advisory Related products CoolPreviews C...
KLA10249 Vulnerability in MDaemon
Multiple unspecified vulnerabilities were found in MDaemon. By exploiting this vulnerability malicious users can have an unknown impact on vectors related to XSS. Original advisories - Related products MDaemon CVE list CVE-2008-6967 warning Solution Update to latest version Impacts SB Security...
KLA10422 ACE vulnerability in ooVoo
A buffer overflow was found in ooVoo. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed URI. Original advisories - Exploitation Public exploits exist for this...
KLA10158 DoS vulnerability in FireBird
An unspecified vulnerability was found in FireBird. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed message. Original advisories - Exploitation Public exploits exist for this vulnerability. Related...
KLA10233 ACE vulnerability in Kantaris Media Player
A buffer overflow was found in Kantaris Media Player. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed file. Original advisories Juniper description Related products...
KLA10348 ACE vulnerability in SureThing CD/DVD Labeler
Buffer overflow was found in the SureThing CD/DVD Labeler. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed playlist. Original advisories - Related products SureThing-CD-DVD-Labeler CVE list...
KLA10164 DoS vulnerability in Foxit Reader
Improper string handling was found in Foxit Reader. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed PDF file. Original advisories - Related products Foxit-Reader...
KLA10114 DoS vulnerability in Citrix Secure Gateway
An unspecified vulnerability was found in the Citrix Secure Gateway. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network via a specially designed request. Original advisories Citrix bulletin Related products...
KLA10033 Multiple ACE vulnerabilities in Adobe Acrobat & Reader
Multiple serious vulnerabilities have been found in Adobe Acrobat & Reader. getAnnots and customDictionaryOpen methods in JavaScript API can be exploited to cause denial of service or execute arbitrary code through a specially designed pdf file. Original advisories Adobe bulletin Exploitation...
KLA10317 ACE vulnerability in SafeNet SoftRemote
A buffer overflow was found in SoftRemote. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed request. Original advisories - Related products SafeNet-SoftRemote CVE list CVE-2009-1943 critical Solution...
KLA10214 DoS vulnerability in ICQ
A buffer overflow was found in ICQ. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed internet shortcut. Original advisories - Exploitation Public exploits exist f...
KLA10050 SB vulnerability in AVG
An unspecified vulnerability was found in AVG Anti-virus. By exploiting this vulnerability malicious users can bypass security restrictions. This vulnerability can be exploited at a point related to the AVG parsing engine via a specially designed RAR or ZIP archive. Original advisories...
KLA10172 Vulnerability in Garmin Communicator Plugin
An improper restriction was found in Garmin Communicator Plug-In. By exploiting this vulnerability malicious users can obtain sensitive information or reconfigure GPS device. This vulnerability can be exploited remotely via unspecified vectors. Original advisories - Related products...
KLA10210 Vulnerability in IBM Tivoli Storage Manager
An unspecified vulnerability was found in IBM Tivoli Storage Manager. By exploiting this vulnerability malicious users can conduct a man-in-the-middle attack and read arbitrary files. This vulnerability can be exploited remotely at a point related to SSL. Original advisories - Related products...
KLA10392 ACE vulnerability in Microsoft Intelligent Application Gateway
An unspecified vulnerability was found in Microsoft IAG. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed arguments. Original advisories - Related products Microsoft-Intelligent-Application-Gateway CVE...
KLA10137 ACE vulnerability in DivX Web Player
An integer signing error was found in DivX Web Player. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DivX file. Original advisories - Related products DivX-Web-Player CVE list CVE-2008-5259 critic...
KLA10282 Multiple vulnerabilities in Oracle Database
Unspecified vulnerabilities were found in the Oracle Database. By exploiting these vulnerabilities malicious users can affect availability, confidentiality and integrity. These vulnerabilities can be exploited remotely via unknown vectors. Original advisories - Related products Oracle-Database CV...