BaoFeng Storm MPS.DLL ActiveX Control Multiple Remote Buffer Overflow Vulnerabilities

Description BaoFeng Storm ActiveX control is prone to multiple buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied data. Successfully exploiting these issues allows remote attackers to execute arbitrary code in the context of the application using...

Symantec SYMTDI.SYS Device Driver Local Denial of Service

SUMMARY Some versions of Symantecs device driver SYMTDI.SYS contain a vulnerability which, if successfully exploited, could allow a local attacker to cause the system to crash. Risk Impact Low Remote Access | No ---|--- Local Access | Yes Authentication Required | Yes, to the local system Exploit...

PPStream PowerPlayer.DLL ActiveX Control Buffer Overflow Vulnerability

Description PPStream PowerPlayer ActiveX control is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application using the...

Microsoft MSN Messenger Video Conversation Buffer Overflow Vulnerability

Description Microsoft MSN Messenger is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application. Failed exploit attemp...

Mercury Mail Transport System AUTH CRAM-MD5 Buffer Overflow Vulnerability

Description Mercury Mail Transport System is prone to a remote stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks when handling AUTH CRAM-MD5 requests. Attackers can exploit this issue to execute arbitrary code with the privileges of the user running th...

Lhaz Unspecified Remote Code Execution Vulnerability

Description Lhaz is prone to an unspecified remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. This issue affects Lhaz 1.33; other versions may also be affected. Technologies Affected Lhaz Lhaz 1.33...

Symantec Enterprise Firewall and Symantec Gateway Security Username Enumeration

SUMMARY Symantec Enterprise Firewall username information can be verified through an exposure in the login interface. Severity Low Remote Access | Yes ---|--- Local Access | No Authentication Required | No Exploit publicly available | No AFFECTED PRODUCTS Product | Version | Build | Solutions...

2Wire Routers Cross-Site Request Forgery Vulnerability

Description Multiple 2Wire routers are prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to execute arbitrary actions on an affected device. Technologies Affected 2Wire 1701HG 3.17.5 2Wire 1701HG 3.7.1 2Wire 1701HG 5.29.51 2Wire 1800HW 3.17.5...

Microsoft Windows Media Player Remote Skin Decompression Code Execution Vulnerability

Description Microsoft Windows Media Player is prone to a remote code-execution vulnerability when handling specially crafted compressed skin files. Attackers exploit this issue by coercing unsuspecting users to download and open Windows Media Player skin files WMZ or WMD files. Successful exploit...

Microsoft Windows Media Player Remote Skin Header Code Execution Vulnerability

Description Microsoft Windows Media Player is prone to a remote code-execution vulnerability when handling specially crafted skin files. Attackers exploit this issue by coercing unsuspecting users to download and open Windows Media Player skin files WMZ or WMD files. Note that users must attempt ...

Microsoft Excel Worksheet Index Value Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers may exploit this issue by enticing victims into opening a maliciously crafted Excel file .xls. Successful exploits may allow attackers to execute arbitrary code with the privileges of the user running the...

Microsoft Windows GDI Metafiles AttemptWrite Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability because it fails to properly bounds-check user-supplied metafile data. Successfully exploiting this issue allows remote attackers to execute arbitrary machine code in the context of users viewing malicious files. This...

Microsoft OLE Automation SubstringData Function Integer Overflow Vulnerability

Description Microsoft OLE Automation is prone to an integer-overflow vulnerability. this issue occurs because the application fails to ensure that integer values are not overrun. Successfully exploiting this issue allows remote attackers to corrupt heap memory and execute arbitrary in the context...

Microsoft Internet Explorer CSS Strings Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability because the application fails to properly handle certain CSS data. An attacker may exploit this issue by enticing victims into opening a maliciously crafted HTML document. Successful exploits may allow an...

Microsoft XML Core Services SubstringData Integer Overflow Vulnerability

Description Microsoft XML Core Services is prone to an integer-overflow vulnerability because the application fails to ensure that integer values are not overrun. Attackers can exploit this issue by enticing unsuspecting users to view malicious web content. Specially crafted scripts could issue...

Microsoft Internet Explorer Vector Markup Language VGX.DLL Remote Buffer Overflow Vulnerability

Description Microsoft Internet Explorer is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. This issue occurs when rendering VML Vector Markup Language graphics. Attackers can leverage this issue to execute arbitrary code in the...

Microsoft Virtual PC and Virtual Server Heap Overflow Vulnerability

Description Microsoft Virtual PC and Virtual Server are prone to a local heap-overflow vulnerability. To exploit this issue, attackers must have administrative privileges for the guest operating system. Attackers may exploit this issue to execute arbitrary code in the context of the host operatin...

Altiris Deployment Solution Elevation of Privilege

SUMMARY Symantecs Altiris Deployment Solution is vulnerable to an elevation of privilege attack. Severity Medium Remote Access | No ---|--- Local Access | Yes Authentication Required | Yes Exploit publicly available | No AFFECTED PRODUCTS Product | Version | Build | Solutions ---|---|---|---...

JustSystem Ichitaro Unspecified Code Execution Vulnerability

Description Ichitaro is prone to an unspecified remotely exploitable code-execution vulnerability. Remote attackers may exploit this issue to execute arbitrary code within the context of the currently logged in user. This issue is being exploited in the wild by Trojan.Tarodrop.D. Few details are...

Symantec Discovery Insecure File Permissions

SUMMARY Insecure default directory and file permissions may allow local users to gain escalated privileges. Severity Low Remote Access | Local network access required ---|--- Local Access | Yes Authentication Required | Yes Exploit publicly available | No AFFECTED PRODUCTS Affected Products Produ...

Symantec AntiVirus Malformed RAR and CAB Compression Type Bypass

SUMMARY Two vulnerabilities have been identified in the Symantec Decomposer component used to decompose some types of archive content while scanning for malicious content. Risk Impact High Remote Access | Yes ---|--- Local Access | No Authentication Required | No Exploit publicly available | No...

Symantec Client Security Internet E-mail Auto-Protect Stack Overflow

SUMMARY A stack overflow in Symantec Anti-Virus Corporate Editions Internet Email Auto-Protect feature could potentially crash the Internet Email scanning feature. Severity Low Remote Access | No ---|--- Local Access | Yes Authentication Required | Yes Exploit publicly available | No AFFECTED...

Symantec AntiVirus Corporate Edition Local Elevation of Privilege

SUMMARY A notification window displayed by Symantecs Real-Time protection service could be exploited by a local user to gain elevated privileges on the local system. Risk Impact Medium Remote Access | No ---|--- Local Access | Yes Authentication Required | Yes Exploit available | No AFFECTED...

Symantec SYMTDI.SYS Device Driver Local Elevation of Privilege

SUMMARY Some versions of Symantecs device driver SYMTDI.SYS contain a vulnerability which, if successfully exploited, could allow a local attacker to execute arbitrary code with system level privileges. Risk Impact Medium Remote Access | No ---|--- Local Access | Yes Authentication Required | Yes...

Symantec AntiVirus Malformed CAB and RAR Compression Remote Vulnerabilities

Description Symantec AntiVirus products that include the Symantec Decomposer are prone to multiple remote vulnerabilities related to the handling of CAB and RAR archives. These issues include a denial-of-service vulnerability and a buffer-overflow vulnerability. Successfully exploiting these issu...

Microsoft Windows Active Directory LDAP Request Validation Remote Denial Of Service Vulnerability

Description Microsoft Windows is prone to a remote denial-of-service vulnerability because Microsoft Active Directory fails to handle specially crafted Lightweight Directory Access Protocol LDAP requests. An attacker can exploit this issue to cause the affected application to stop responding,...

Microsoft Windows Vista Teredo Interface Firewall Bypass Vulnerability

Description Windows Firewall for Windows Vista is prone to a vulnerability that may permit a bypass of existing firewall rules. An attacker may trigger this vulnerability by sending malicious network data through the Teredo network transport system to obtain sensitive information; other attacks a...

Microsoft Windows Active Directory LDAP Request Validation Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability because Microsoft Active Directory fails to handle specially crafted user-supplied Lightweight Directory Access Protocol LDAP requests. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level...

Microsoft .NET Framework PE Loader Remote Buffer Overflow Vulnerability

Description Microsoft .NET Framework is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code in the context of a user running the application. Successful exploits ca...

Microsoft Excel Unspecified Security Vulnerability

Description Microsoft Excel is prone to an unspecified security vulnerability. Very little information is currently available regarding this issue. We will update this BID as more information emerges. Technologies Affected Microsoft Excel 2000 Microsoft Excel 2000 SP2 Microsoft Excel 2000 SP3...

Microsoft Internet Explorer and Mozilla Firefox URI Handler Command Injection Vulnerability

Description Microsoft Internet Explorer, Mozilla Firefox and Netscape Navigator are prone to a vulnerability that lets attackers inject commands through the 'firefoxurl' and 'navigatorurl' protocol handlers. Exploiting these issues allows remote attackers to pass and execute arbitrary commands an...

Microsoft .NET Framework JIT Compiler Remote Buffer Overflow Vulnerability

Description Microsoft .NET Framework is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code in the context of a user running the application. Successful exploits ca...

Microsoft Excel Workspace Designation Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers may exploit this issue by enticing victims into opening a maliciously crafted Excel file .xls. Successful exploits may allow attackers to execute arbitrary code with the privileges of the user running the...

Symantec Mail Security for SMTP Executable Attachment Parsing Denial of Service

SUMMARY A denial of service has been discovered in Symantec Mail Security for SMTP when parsing Executable Attachments. Risk Impact Low Remote Access | Yes ---|--- Local Access | No Authentication Required | No Exploit publicly available | No AFFECTED PRODUCTS Products | Versions | Solution...

Microsoft Windows Vista Permissive User Information Store ACLs Information Disclosure Vulnerability

Description Microsoft Windows Vista is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may allow them to gain unauthorized access to the affected computer. Technologies Affected Microsoft Windows Vista Microsoft...

Microsoft Visio Version Number Remote Code Execution Vulnerability

Description Microsoft Visio is prone to a remote code-execution vulnerability because it fails to adequately validate user-supplied data. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Failed attempts will result in denial-of-service...

Microsoft Windows CE .NET Compact Framework Components Multiple Vulnerabilities

Description Components of the .NET Compact Framework for Microsoft Windows CE are prone to multiple vulnerabilities. Exploiting these issues may allow remote attackers to cause denial-of-service conditions, corrupt memory, or execute arbitrary machine code in the context of the affected...

Microsoft Visio Packed Objects Remote Code Execution Vulnerability

Description Microsoft Visio is prone to a remote code-execution vulnerability because it fails to adequately handle user-supplied data. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Failed exploit attempts will result in a...

Microsoft Windows SChannel Security Remote Code Execution Vulnerability

Description The Microsoft Windows Schannel security package is prone to a remote code-execution vulnerability. This vulnerability occurs when processing and validating server-sent digital signatures by the client application. A remote attacker could exploit this issue by convincing a victim to...

Microsoft Internet Explorer URLMON.DLL COM Object Instantiation Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to remote code-execution vulnerability. A remote attacker can exploit this issue to execute arbitrary code in the context of the user running the vulnerable application. Technologies Affected Avaya CIE 1.0 Avaya Messaging Application Server Avaya...

Microsoft Internet Explorer Speech API 4 COM Object Instantiation Buffer Overflow Vulnerabilities

Description Microsoft Internet Explorer is prone to multiple buffer-overflow vulnerabilities when instantiating certain COM objects. An attacker may exploit these issues by enticing victims into opening a maliciously crafted webpage. Successfully exploiting these issues allows remote attackers to...

Microsoft Outlook Express Content Disposition Parsing Information Disclosure Vulnerability

Description Outlook Express is prone to a cross-domain information-disclosure vulnerability. This vulnerability may let a malicious website access properties of a site in an arbitrary external domain in the context of the victim's browser. Attackers could exploit this issue to access sensitive...

Microsoft Internet Explorer CSS Tag Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability because the application fails to properly handle certain CSS data. A remote attacker can exploit this issue to execute arbitrary code in the context of the user running the vulnerable application. Technologi...

Microsoft Internet Explorer Prototype Variable Uninitialized Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability when accessing objects that are improperly instantiated or deleted. An attacker may exploit this issue by enticing victims into opening a maliciously crafted webpage. Successfully exploiting this issue allows...

Microsoft Internet Explorer Language Pack Installation Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to remote code-execution vulnerability because of a race-condition in its language-pack installation support. A remote attacker can exploit this issue to execute arbitrary code in the context of the user running the vulnerable application...

Microsoft Outlook Express MHTML URL Parsing Information Disclosure Vulnerability

Description Outlook Express is prone to a cross-domain information-disclosure vulnerability. This vulnerability may let a malicious website access properties of a site in an arbitrary external domain in the context of the victim user's browser. Attackers could exploit this issue to gain access to...

Yahoo! Messenger Webcam Viewer ActiveX Control Buffer Overflow Vulnerability

Description Yahoo! Messenger Webcam Viewer ActiveX control is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of applications th...

Yahoo! Messenger Webcam Upload ActiveX Control Buffer Overflow Vulnerability

Description Yahoo! Messenger Webcam Upload ActiveX control is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue allows remote attackers to crash applications that use the affected control typical...

Symantec Reporting Server Elevation of Privilege

SUMMARY Files created by Reporting Server may be accessible to an unauthorized user. Risk Impact Medium Remote Access | Yes ---|--- Local Access | Yes Authentication Required | No Exploit publicly available | No AFFECTED PRODUCTS Product | Affected Version | Updated Version | Solution...

Multiple Symantec Ghost Solution Suite Vulnerabilities

SUMMARY Multiple denial of service vulnerabilities have been identified in Symantec Ghost Solution Suite. Risk Impact Medium Remote Access | Yes ---|--- Local Access | Yes Authentication Required | No Exploit publicly available | No AFFECTED PRODUCTS Product | Version ---|--- Symantec Ghost...