3965 matches found
KLA10426 Vulnerability in 7-Zip
An unspecified vulnerability was found in 7-Zip. By exploiting this vulnerability malicious users can cause unknown impact. This vulnerability can be exploited remotely via unspecified vectors. Original advisories - Related products 7-Zip CVE list CVE-2008-6536 critical Solution Update to latest...
KLA10286 WLF vulnerability in Orbit Downloader
An argument injection vulnerability was found in Orbit Downloader. By exploiting this vulnerability malicious users can overwrite arbitrary files. This vulnerability can be exploited remotely via a specially designed method call. Original advisories - Exploitation Public exploits exist for this...
KLA10064 DoS vulnerability in SlySoft
An improper buffer validation vulnerability was found in SlySoft products. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited locally at a point related to ElbyCDIO.sys via a specially designed IOCTL call. Original advisories CloneC...
KLA10198 Multiple vulnerabilities in IBM Director
Multiple serious vulnerabilities have been found in IBM Director. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. Vectors related to CIM server can be exploited remotely via a specially designed...
KLA10090 RCE vulnerability in BlackBerry Desktop Manager
A buffer overflow was found in BlackBerry Desktop Software. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at a point related to Lotus Notes Intellisync via a specially designed web page. Original advisories BlackBerry...
KLA10213 LPE vulnerability in IBM WebSphere MQ
An unspecified vulnerability was found in the IBM WebSphere MQ. By exploiting this vulnerability malicious users can gain priveleges. This vulnerability can be exploited locally at a point related to the queue manager. Original advisories - Related products IBM-WebSphere-MQ CVE list CVE-2009-0439...
KLA11371 ACE vulnerability in TightVNC
Integer signing errors were found in TightVNC. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed message. Original advisories - Exploitation Public exploits exist f...
KLA10364 ACE vulnerability in UltraVNC & TightVNC
Integer signing errors were found in UltraVNC & TightVNC. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed message. Original advisories - Related products UltraVNC...
KLA10051 ACE vulnerability in Axis Camera Control
A buffer overflow vulnerability was found in Axis Camera Control. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to AxisCamControl.ocx via a specially designed imagepantilt property value. Origin...
KLA10308 ACE vulnerability in RealVNC
An unspecified vulnerability was found in RealVNC. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed RFB data. Original advisories - Related products RealVNC-Viewer CVE list CVE-2008-4770 critical...
KLA10358 ACE vulnerability in multiple products
Buffer overflows were found in multiple products. By exploiting these vulnerabilities malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed tabs. Original advisories - Related products TSC2-Help-Desk ComponentOne-Studio-Enterprise-2005...
KLA10368 Multiple vulnerabilities in Trend Micro HouseCall
Multiple critical vulnerabilities have been found in Trend Micro HouseCall. Malicious users can exploit these vulnerabilities to execute arbitrary code or download arbitrary files. Below is a complete list of vulnerabilities 1. A use-after-free vulnerability can be exploited remotely via a...
KLA10285 RLF vulnerability in Orb
A directory traversal vulnerability was found in Orb. By exploiting this vulnerability malicious users can read arbitrary files. This vulnerability can be exploited remotely via a specially designed GET request. Original advisories - Related products Orb CVE list CVE-2008-5645 high Solution Updat...
KLA10141 SB vulnerability in Anti-Virus software
An unspecified vulnerability was found in several anti-virus programs. By exploiting this vulnerability malicious users can bypass malware detection. This vulnerability can be exploited from the network at a point related to Internet Explorer via specially designed HTML. Original advisories proof...
KLA10372 ACE vulnerabilities in Trillian
Multiple critical vulnerabilities have been found in Trillian. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities 1. A buffer overflow and double free can be exploited remotely via a specially designed XML; 2. Buffer overflow c...
KLA10352 Multiple vulnerabilities in Symantec Backup Exec
Multiple serious vulnerabilities have been found in Symantec Backup Exec. Malicious users can exploit these vulnerabilities to bypass auth, read / delete files, cause denial of service and possibly execute arbitrary code. Below is a complete list of vulnerabilities 1. Vectors related to the...
KLA10112 OSI vulnerability in Citrix
An unspecified vulnerability was found in Citrix products. By exploiting this vulnerability malicious users can obtain information. This vulnerability can be exploited locally at a point related to MSI logging. Original advisories Citrix bulletin Related products Citrix-Presentation-Server CVE li...
KLA10371 ACE vulnerability in Trend Micro ServerProtect
Buffer overflows were found in Trend Micro ServerProtect. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via unknown vectors. Original advisories - Related products Trend-Micro-ServerProtect-for-Windows-NetWare CVE list...
KLA10115 SB vulnerability in Citrix Web Interface
An unspecified vulnerability was found in the Citrix Secure Gateway. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network via a specially designed request. Original advisories Citrix bulletin Related products...
KLA10150 ACE vulnerability in Exceed
A buffer overflow was found in Hummingbird Exceed. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially formed ActiveX control property. Original advisories - Exploitation Public exploits exist for this...
KLA10346 ACE vulnerability in Java System Web Proxy Server
A buffer overflow was found in the Java System Web Proxy Server. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely a via specially designed GET request. Original advisories - Related products Sun-Java-System-Web-Proxy-Server...
KLA10223 DoS vulnerability in Internet Download Manager
A buffer overflow was found in Internet Download Manager. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed file. Original advisories - Related products...
KLA10240 CI vulnerability in Kontiki DMS
An XSS vulnerability was found in Kontiki DMS. By exploiting this vulnerability malicious users can inject arbitrary web script. This vulnerability can be exploited remotely via a specially designed call. Original advisories - Related products Kontiki-Delivery-Management-System CVE list...
KLA10089 DoS vulnerability in Torrent
A buffer overflow was found in the BitTorrent & UTorrent. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed .torrent file. Original advisories - Related products...
KLA10097 WLF vulnerability in CDBurnerXP
An unspecified vulnerability was found in CDBurnerXP. By exploiting this vulnerability malicious users can overwrite arbitrary files. This vulnerability can be exploited from the network at a point related to NMS DVD Burning SDK. Original advisories vulnerability description Exploitation Public...
KLA10063 ACE vulnerability in Avira
A nonsecure function call vulnerability was found in Avira. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited from the network at a point related to the scheduler via a specially designed .exe file. Original advisories detailed description...
KLA10074 Multiple vulnerabilities in Apple Bonjour
Multiple serious vulnerabilities have been found in Apple Bonjour. Malicious users can exploit these vulnerabilities to spoof DNS responses or cause denial of service Below is a complete list of vulnerabilities 1. Not exploiting random transaction ID’s can be exploited remotely by spoofing DNS...
KLA10258 ACE vulnerability in Maxthon Browser
A buffer overflow was found in Maxthon Browser. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed HTTP request. Original advisories - Related products Maxthon-Browser CVE list CVE-2008-3667 high...
KLA10132 DoS vulnerability in Cyberlink PowerDVD
A buffer overflow was found in Cyberlink PowerDVD. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed playlist. Original advisories Blog post Related products Cyberlink-PowerDVD CVE list Solution Upda...
KLA10244 ACE vulnerability in LinkedIn Browser Toolbar
Improper update verification was found in the LinkedIn Browser Toolbar. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a man-in-the-middle attack. Original advisories - Related products LinkedIn-Internet-Explorer-Toolb...
KLA10151 DoS vulnerability in F-Prot antivirus
An unspecified vulnerability was found in F-Prot antivirus. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely at a point related to the scanning engine. Original advisories Release notes Related products...
KLA10140 ACE vulnerability in Download Accelerator Plus
A buffer overflow was found in Download Accelerator Plus. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed M3U file. Original advisories - Exploitation Public exploits exist for this vulnerability...
KLA10323 ACE vulnerabilities ServerView
A buffer overflow was found in ServerView. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed URL. Original advisories - Related products ServerView CVE list CVE-2008-3126 high Solution Update to lates...
KLA10388 WLF vulnerability in AceBIT WISE-FTP
A directory traversal vulnerability was found in WISE-FTP. By exploiting this vulnerability malicious users can overwrite arbitrary files. This vulnerability can be exploited remotely via a specially designed response. Original advisories - Related products WISE-FTP CVE list CVE-2008-2889 high...
KLA10197 ACE vulnerability in IBM AFP Viewer plug-in
A buffer overflow was found in IBM AFP Viewer plug-in. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed property value. Original advisories - Related products IBM-AFP-Viewer-Plug-In CVE list...
KLA10109 ACE vulnerability in CitectSCADA
A buffer overflow was found in Citect products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed TCP packet. Original advisories - Exploitation Public exploits exist for this vulnerability. Malware...
KLA10245 ACE vulnerability in Logitech Desktop Manager
Buffer overflow was found in the Logitech Desktop Manager. By exploiting this vulnerability malicious users can execute arbitrary code at unspecified vectors. Original advisories - Related products Logitech-Desktop-Messenger CVE list CVE-2008-0956 critical Solution Update to latest version Impact...
KLA10054 ACE vulnerability in Akamai Download Manager
CRLF injection vulnerability was found in the Akamai Download Manager. By using this vulnerability spiteful abuser can execute arbitrary code. This vulnerability can be exploited from network at point related to unknown. Via specially designed URL. Original advisories vulnerability description...
KLA10203 ACE vulnerability in IBM Lotus Sametime
An unspecified vulnerability was found in IBM Lotus Sametime. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed URL. Original advisories - Related products IBM-Lotus-Sametime CVE list CVE-2008-2499 hi...
KLA10192 ACE vulnerability in HP Software Update
An unspecified vulnerability was found in an HP Software Update. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to Hpufunction.dll. Original advisories - Exploitation Public exploits exist for th...
KLA10087 DoS vulnerability in BadBlue
Insufficient document access control was found in BadBlue. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited from the network at points related to uninst.exe, badblue.exe and dyndns.exe. Original...
KLA10283 Vulnerability in Oracle Jinitiator
An unspecified vulnerability was found in Oracle Jinitiator. By exploiting this vulnerability malicious users can cause unknown impact. This vulnerability can be exploited remotely. Original advisories - Related products Oracle-JInitiator CVE list CVE-2008-1823 critical Solution Update to latest...
KLA10375 WLF vulnerability in UltraEdit
A directory traversal vulnerability was found in UltrEdit. By exploiting this vulnerability malicious users can create & overwrite arbitrary files. This vulnerability can be exploited remotely via a specially designed response. Original advisories - Related products UltraEdit CVE list CVE-2008-27...
KLA10370 DoS vulnerability in OfficeScan
Multiple serious vulnerabilities have been found in OfficeScan. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities 1. A buffer overflow can be exploited remotely via a specially designed password; 2. A NULL pointer can be...
KLA10365 DoS vulnerability in Timbuktu
An unspecified vulnerability was found in Timbuktu. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed message. Original advisories - Related products Timbuktu-Pro CVE list CVE-2008-1337 warning...
KLA10079 ACE vulnerability in Aurigma Image Uploader
A buffer overflow vulnerability was found in the Aurigma Image Uploader ActiveX control. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to unknown applications via specially designed properties...
KLA10407 ACE vulnerability in Yahoo! Music Jukebox
Buffer overflows were found in Yahoo! Music Jukebox. By exploiting these vulnerabilities malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed arguments to different methods. Original advisories - Exploitation Public exploits exist for thi...
KLA10253 ACE vulnerability in MPlayer
An array index error was found in MPlayer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed MOV file. Original advisories - Related products MPlayer CVE list CVE-2008-0485 critical Solution Update to...
KLA10260 ACE vulnerability in McAfeeE-Buisness Server
An unspecified vulnerability was found in McAfee E-Business. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed auth packet. Original advisories - Exploitation Public exploits exist for this...
KLA10182 SUI vulnerability in Google Toolbar
Lack of domain name verification was found in Google Toolbar. By exploiting this vulnerability malicious users can spoof domain names. This vulnerability can be exploited remotely via custom button manipulations. Original advisories - Related products Google-Toolbar CVE list CVE-2007-6536 high...