3965 matches found
KLA10398 Vulnerability in NetMeeting
An unspecified vulnerability was found in Microsoft NetMeeting. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed input. Original advisories - Related products...
KLA10096 ACE vulnerability in CAM UnZip
A buffer overflow was found in CAM UnZip. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZIP archive. Original advisories - Related products CAM-UnZip CVE list CVE-2006-2161 high Solution Update to...
KLA10173 DoS vulnerability in Gene6 FTP Server
A buffer overflow was found in Gene6 FTP Server. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via unspecified vectors. Original advisories - Related products Gene6-FTP-Server CVE list...
KLA10147 ACE vulnerabilities in EMC Retrospect
Improper privileges and permissions work was found in EMC Retrospect. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally by replacing program files or manipulating ‘open file’ dialog. Original advisories - Related products...
KLA10338 ACE vulnerability in SpeedProject
Buffer overflows were found in SpeedProject products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ACE file. Original advisories - Related products Speedproject-SpeedCommander Speedproject-Squeez...
KLA10086 CI vulnerability in Avant Browser
An unspecified vulnerability was found in the Avant browser. By exploiting this vulnerability malicious users can inject command line arguments. This vulnerability can be exploited remotely with user assistance via a specially designed ‘mailto:’ link. Original advisories - Related products...
KLA10144 DoS vulnerability in Secure FTP
An unspecified vulnerability was found in the Secure FTP Server. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network via a specially designed custom command Original advisories - Related products...
KLA10310 ACE vulnerability in RealNetworks
A buffer overflow was found in RealNetworks products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed SWF file. Original advisories RealNetworks bulletin Related products RealPlayer Rhapsody...
KLA10378 DoS vulnerability in Veritas Backup Exec Remote Agent
An unspecified vulnerability was found in Veritas Backup Exec Remote Agent. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited locally. Original advisories Symantec advisory Related products VERITAS-Backup-Exec-Remote-Agent CVE list...
KLA10254 ACE vulnerabilities in Adobe Flash Player
Multiple unspecified vulnerabilities were found in Flash Player. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed SWF file. Original advisories - Related products Adobe-Flash-Player-ActiveX...
KLA10320 Vulnerability in Van Dyke Technologies
An unspecified vulnerability was found in SecureCRT & SecureFX. By exploiting this vulnerability malicious users can cause unknown impact. This vulnerability can be exploited remotely via unknown vectors. Original advisories - Related products SecureCRT SecureFX CVE list CVE-2006-1038 critical...
KLA10363 ACE vulnerability in The Bat!
A buffer overflow was found in The Bat! By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed e-mail. Original advisories - Related products The-Bat! CVE list CVE-2006-0918 high Solution Update to latest...
KLA10339 WLF vulnerability in SpeedProject
A directory traversal vulnerability was found in SpeedProject products. By exploiting this vulnerability malicious users can overwrite local files. This vulnerability can be exploited remotely at a point related to the JAR and ZIP archives. Original advisories - Related products...
KLA10267 ACE vulnerability in NJStar Word Processor
A buffer overflow was found in NJStar Word Processor. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via NJX documents. Original advisories - Related products NJStar-Chinese-Word-Processor NJStar-Japanese-Word-Processor CV...
KLA10152 ACE vulnerability in SFTP
A format string was found in the multiple SFTP products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via unknown vectors. Original advisories - Related products SSH-Secure-Shell-for-Workstations F-Secure-SSH-for-Windows...
KLA10324 ACE vulnerability in Shareaza
Integer overflows were found in Shareaza. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed packet. Original advisories - Related products Shareaza CVE list CVE-2006-0474 high Solution Update to lates...
KLA10088 ACE vulnerability in BitComet
A buffer overflow was found in the BitComet. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed publisher URI. Original advisories - Related products BitComet-Client CVE list CVE-2006-0339 high...
KLA10133 ACE vulnerabilities in IBM DB2
Multiple buffer overflows was found in the IBM DB2. By using this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally via a specially designed libname, environment variable or parameter. Original advisories - Related products DB2-Universal-Databas...
KLA10373 Vulnerability in TuxPaint
Insecure files creation was found in TuxPaint. By exploiting this vulnerability malicious users can cause unknown impact via unspecified vectors. Original advisories - Related products Tux-Paint-tuxpaint/ CVE list CVE-2005-3340 high Solution Update to latest version Impacts SB Security bypass...
KLA10295 Vulnerability in Pocket Controller
An unspecified vulnerability was found in Pocket Controller. By exploiting this vulnerability malicious users can turn off, reboot or reset PDA. This vulnerability can be exploited remotely. Original advisories - Related products Pocket-Controller-Professional CVE list CVE-2005-4152 high Solution...
KLA10231 DoS vulnerability in browser
An unspecified vulnerability was found in the browsers. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed web site. Original advisories - Related products Mozilla-Firefox K-Meleon Netscape CVE list...
KLA10171 Multiple vulnerabilities in Gadu-Gadu
Multiple serious vulnerabilities have been found in Gadu-Gadu. Malicious can use these vulnerabilities to obtain sensitive information or cause denial of service Below is a complete list of vulnerabilities 1. Vectors related to Easycall can be exploited remotely via outgoing calls; 2. A buffer...
KLA10399 Multiple vulnerabilities in Winmail
Multiple serious vulnerabilities have been found in Winmail Server. Malicious users can exploit these vulnerabilities to inject scripts or overwrite local files. Below is a complete list of vulnerabilities 1. A directory traversal can be exploited remotely via a side parameter; 2. An XSS...
KLA10379 ACE vulnerability in Veritas NetBackup Enterprise Server
A buffer overflow was found in Veritas NetBackup Enterprise Server. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed packet. Original advisories Symantec bulletin Related products...
KLA10134 DoS vulnerability in IBM DB2
An unspecified vulnerability was found in the IBM DB2 Universal Database. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to INSO services or db2fmp processes. Original advisories - Related...
KLA10410 ACE vulnerability in ZipGenius
Buffer overflows were found in ZipGenius. By exploiting these vulnerabilities malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed ZIP & ACE archives or UUE, XXE or MIM files with specially designed filenames. Original advisories...
KLA10380 ACE vulnerability in Veritas Storage
A buffer overflow was found in Veritas Storage. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at points related to DCOM server components. Original advisories Symantec bulletin Related products VERITAS-Storage-Exec...
KLA10083 ACE vulnerability in AutoMate
A buffer overflow vulnerability was found in AutoMate. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely with user assistance via a specially designed ACE archive. Original advisories - Related products AutoMate CVE list...
KLA10311 ACE vulnerability in multiple software
A buffer overflow was found in the WinACE compression utility, which is used in multiple products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ACE filename. Original advisories - Related product...
KLA10377 WLF vulnerability in Veritas Backup Exec
An insecure auth was found in Veritas Backup Exec. By exploiting this vulnerability malicious users can read & write arbitrary code. This vulnerability can be exploited remotely at a point related to NDMP agent. Original advisories Symantec bulletin Related products VERITAS-Backup-Exec CVE list...
KLA10391 CI vulnerability in WebInspect
An XAS vulnerability was found in WebInspect. By exploiting this vulnerability malicious users can inject from one application to another. This vulnerability can be exploited remotely. Original advisories - Related products WebInspect CVE list CVE-2005-2442 warning Solution Update to latest versi...
KLA10228 ACE vulnerability in WhatsUp Professional
An SQL injection vulnerability was found in WhatsUp Professional. By exploiting this vulnerability malicious users can execute arbitrary SQL commands. This vulnerability can be exploited remotely at points related to the logon screen. Original advisories - Related products...
KLA10048 DoS vulnerability in AOL AIM
An integer underflow vulnerability was found in AIM. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to the GIF parser via a specially designed buddy icon. Original advisories vulnerability...
KLA10185 Multiple vulnerabilities in Groove
Multiple serious vulnerabilities have been found in Groove products. Malicious users can exploit these vulnerabilities to obtain sensitive information, inject web scripts, bypass security restrictions and spoof filenames. Below is a complete list of vulnerabilities 1. Improper file extension...
KLA10135 LPE vulnerability in DameWare
An unspecified vulnerability was found in DameWare products. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally. Original advisories DameWare bulletin Related products DameWare-Mini-Remote-Control DameWare-NT-Utilities CVE list...
KLA10215 DoS vulnerability in IDA pro
An unspecified vulnerability was found in IDA Pro. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed dll name. Original advisories - Related products IDA-Pro CVE li...
KLA10405 ACE vulnerability in Xpand Rally
A format string vulnerability was found in Xpand Rally. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially defined message. Original advisories - Related products Xpand-Rally CVE list CVE-2005-0729 high Solutio...
KLA10272 ACE vulnerability in NetTerm
A buffer overflow was found in NetTerm. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed command. Original advisories - Related products NetTerm CVE list CVE-2005-1323 high Solution Update to latest...
KLA10294 WLF vulnerability in Pine
A race condition was found in Pine. By exploiting this vulnerability malicious users can overwrite arbitrary files. This vulnerability can be exploited locally via a symlink attack. Original advisories - Related products Pine CVE list CVE-2005-1066 warning Solution Update to latest version Impact...
KLA10316 ACE vulnerability in Sacred
A buffer overflow was found in Sacred. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via unknown vectors. Original advisories - Related products Sacred CVE list CVE-2005-0906 high Solution Update to latest version Impacts...
KLA10270 OSI vulnerability in NetOp
An unspecified vulnerability was found in NetOp. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed request. Original advisories - Related products NetOp CVE list CVE-2004-0950 warning Solution...
KLA10419 WLF vulnerability in getmail
Unspecified vulnerabilities were found in getmail. By exploiting these vulnerabilities malicious users can overwrite arbitrary files in arbitrary directories. These vulnerabilities can be exploited locally via a symlink attack. Original advisories - Related products getmail CVE list CVE-2004-0881...
KLA10415 ACE vulnerability in multiple software
A buffer overflow was found in the DynaZip library, which is used in several pieces of software. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZIP file Original advisories - Related products DynaZ...
KLA10302 DoS vulnerability in Eudora
A buffer overflow was found in Eudora. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed e-mail message. Original advisories Release note Related products Qualcom-Eudora CVE list CVE-2004-2301 warnin...
KLA10053 DoS vulnerability in ActivePerl
An integer overflow vulnerability was found in ActivePerl. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited at a point related to the duplication operator via a large multiplier. Original advisories...
KLA10418 ACE vulnerability in eMule
A buffer overflow was found in eMule. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at a point related to IRC and web-server via a long string. Original advisories - Related products eMule CVE list CVE-2004-1892 high...
KLA10061 ACE vulnerability in Kazaa & Grokster
A buffer overflow vulnerability was found in Kazaa & Grokster. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to Altnet Download Manager via a specially designed bstrFilepath parameter. Original...
KLA10423 ACE vulnerability in SpamGuard
Buffer overflows were found in SpamGuard. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at points related to mail parsing and config loading. Original advisories - Related products spamGuard CVE list CVE-2004-2429 high...
KLA10264 LPE vulnerability in PsTools
An improper disconnection was found in PsTools. By exploiting this vulnerability malicious users can gain privileged access to shares. This vulnerability can be exploited locally. Original advisories - Related products Microsoft-PsSuspend Microsoft-PsExec Microsoft-PsInfo Microsoft-PsGetSid...
KLA10226 Multiple vulnerabilities in WahtsUp Gold
Multiple serious vulnerabilities have been found in WhatsUp Gold. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. Unknown vectors can be exploited remotely via a specially designed GET request; ...