Apple Mac OS X Archive Metadata Command Execution Vulnerability

Description Apple Mac OS X is prone to an arbitrary command-execution vulnerability when processing metadata in archive files. Commands would be executed in the context of the user opening the archive file. Attackers can reportedly use Safari and Apple Mail as exploitation vectors for this...

Microsoft Windows Web Client Buffer Overflow Vulnerability

Description Microsoft Windows Web Client is prone to a buffer overflow. Successful exploitation could allow arbitrary code execution with System privileges. Technologies Affected Microsoft Windows Server 2003 Datacenter Edition Microsoft Windows Server 2003 Datacenter Edition Itanium Microsoft...

Microsoft Windows IGMPv3 Denial of Service Vulnerability

Description A vulnerability in the handling of IGMPv3 Internet Group Management Protocol packets could result in a denial of service. An attacker can exploit this issue through a broadcast attack to cause vulnerable computers on the subnet to become unresponsive, effectively denying service to...

Microsoft Windows Media Player Bitmap Handling Buffer Overflow Vulnerability

Description Microsoft Windows Media Player is prone to a remote buffer-overflow vulnerability. The vulnerability arises when the application handles a skin file containing a specially crafted bitmap image. This issue can also be triggered by just supplying a malicious bitmap to the application...

Microsoft Windows Media Player Plugin Buffer Overflow Vulnerability

Description The Microsoft Windows Media Player plugin for non-Microsoft browsers is prone to a buffer-overflow vulnerability. The application fails to do proper boundary checks on user-supplied data before using it in a finite-sized buffer. An attacker can exploit this issue to execute arbitrary...

Microsoft Windows Korean Input Method Editor Privilege Escalation Vulnerability

Description Microsoft Windows Korean Input Method Editor is prone to a local privilege-escalation vulnerability. Successful exploitation can allow local attackers to completely compromise a vulnerable computer. Technologies Affected Microsoft Office 2003 Microsoft Office 2003 SP1 Microsoft Office...

Microsoft PowerPoint 2000 Remote Information Disclosure Vulnerability

Description Microsoft PowerPoint 2000 is prone to a remote information-disclosure vulnerability. Information gathered may be used to launch further attacks against a vulnerable computer. Technologies Affected Microsoft PowerPoint 2000 SP3 Recommendations Do not follow links provided by unknown or...

Symantec Sygate Management Server: SMS Authentication Servlet SQL Injection

SUMMARY A SQL injection vulnerability in Symantec's Sygate Management Server SMS version 4.1, build 1417 and earlier could potentially allow a remote or local attacker to gain administrative privileges to the SMS server. Risk Impact High Remote Access | Yes ---|--- Local Access | Yes Authenticati...

Microsoft Windows Embedded Web Font Buffer Overflow Vulnerability

Description Microsoft Windows is susceptible to a remotely exploitable buffer-overflow vulnerability. This issue is due to the software's failure to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. This issue allows remote attackers to execute...

Microsoft Outlook / Microsoft Exchange TNEF Decoding Remote Code Execution Vulnerability

Description Microsoft Exchange Server and Outlook email clients are prone to a remote code-execution vulnerability. This vulnerability presents itself when the applications decode a message containing a specially crafted TNEF MIME attachment. Successful exploitation may result in arbitrary code...

Microsoft Internet Explorer WMF Image Parsing Memory Corruption Vulnerability

Description Microsoft Internet Explorer is affected by an WMF image-parsing memory-corruption vulnerability. This issue is allegedly due to an integer-overflow flaw that leads to corrupted heap memory. This problem presents itself when a user views a malicious WMF-formatted file containing...

Microsoft Windows Graphics Rendering Engine WMF SetAbortProc Code Execution Vulnerability

Description Microsoft Windows WMF graphics rendering engine is affected by a remote code-execution vulnerability. This issue affects the 'SetAbortProc' function. The problem presents itself when a user views a malicious WMF formatted file, triggering the vulnerability when the engine attempts to...

Symantec AntiVirus Decomposition Buffer Overflow

SUMMARY Symantec is aware of a buffer overflow in its AntiVirus component used to decompose RAR Roshal Archive. A specially crafted RAR file could potentially cause this buffer overflow to occur and possibly execute hostile content from the RAR file on the targeted system. Risk Impact High Remote...

Microsoft Internet Explorer Dialog Manipulation Vulnerability

Description Internet Explorer is prone to a remote code-execution vulnerability through manipulation of custom dialog boxes. Keystrokes entered while one of these dialogs is displayed may be buffered and passed to a download dialog, allowing attacker-supplied code to be executed. Technologies...

Microsoft Internet Explorer COM Object Instantiation Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory corruption vulnerability that is related to the instantiation of COM objects. COM objects may corrupt system memory and facilitate arbitrary code execution in the context of the currently logged in user on the affected computer...

Microsoft Internet Explorer HTTPS Proxy Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to an information disclosure vulnerability when using an authenticating proxy server for HTTPS communications. Exploitation of this issue could result in an attacker gaining a user's authentication credentials. This issue only exists when the...

Microsoft Excel Malformed Range Memory Corruption Vulnerability

Description Microsoft Excel is susceptible to a remote code-execution vulnerability. This issue was originally disclosed through an eBay auction that has since been terminated. This issue is due to the application's failure to properly bounds-check user-supplied input data in the 'Named Range'...

Symantec pcAnywhere Denial of Service

SUMMARY A buffer overflow has been resolved in Symantec pcAnywhere that could lead to a Denial of Service. The buffer overflow occurs prior to authentication and can lead to termination of the pcAnywhere component. pcAnywhere must be restarted to function as designed. Risk Impact Medium Remote...

Symantec Dynamic VPN Services: ISAKMP Denial of Service

SUMMARY The NISCC National Infrastructure Security Co-ordination Centre a UK-sponsored inter-departmental agency has identified nearly five-thousand potential ISAKMP vulnerabilities. Test for these vulnerabilities were created by the NISCC and distributed to an unspecified number of vendors...

Cisco IPSec Unspecified IKE Traffic Denial Of Service Vulnerabilities

Description Various Cisco IOS, PIX Firewall, Firewall Services Module FWSM, VPN 3000 Series Concentrator, and MDS Series SanOS releases are prone to denial of service attacks. These issues are due to security flaws in Cisco's IPSec implementation. The vulnerabilities may be triggered by malformed...

Microsoft Windows Graphics Rendering Engine WMF Format Code Execution Vulnerability

Description Microsoft Windows WMF graphics rendering engine is affected by a remote code execution vulnerability. The problem presents itself when a user views a malicious WMF formatted file, triggering the vulnerability when the engine attempts to parse the file. A malicious file can cause an...

Microsoft Windows Graphics Rendering Engine WMF/EMF Format Code Execution Vulnerability

Description Microsoft Windows WMF/EMF graphics rendering engine is affected by a remote code execution vulnerability. The problem presents itself when a user views a malicious WMF or EMF formatted file causing the affected engine to attempt to parse it. Exploitation of this issue can trigger an...

Symantec Discovery Web Accounts Null Password

SUMMARY Risk Impact Medium Remote Access | Yes ---|--- Local Access | Yes Authentication Required | No Exploit publicly available | NA AFFECTED PRODUCTS Product | Version | Solution ---|---|--- ON Command Discovery Standard Edition | 4.5.x | Downloadable Updates ON Command Discovery Web Edition |...

Symantec LiveUpdate for Macintosh Local Privilege Escalation

SUMMARY Risk Impact Medium Remote Access | No ---|--- Local Access | Yes Authentication Required | Yes Exploit publicly available | No AFFECTED PRODUCTS Product | Version | Build | Language | Solution ---|---|---|---|--- LiveUpdate for Macintosh | 3.0.0 | All | All | Live Update Patch 3.0.1 | All...

Symantec Brightmail AntiSpam: Malformed MIME, Denial of Service

SUMMARY Risk Impact Low Remote Access | Yes incoming mail ---|--- Local Access | No Authentication Required | No Exploit publicly available | NA AFFECTED PRODUCTS Product | Version | Build | Solution ---|---|---|--- Symantec Brightmail AntiSpam | 6.0 | 1 | Update patch 162 Symantec Brightmail...

Microsoft Windows MSDTC Memory Corruption Vulnerability

Description The Microsoft Windows MSDTC Microsoft Distribution Transaction Coordinator service is prone to a memory corruption vulnerability. This issue could allow for execution of arbitrary code in the context of the service. The vulnerability may be remotely exploitable in some circumstances,...

Microsoft Windows Client Service For Netware Buffer Overflow Vulnerability

Description Microsoft Client Service for Netware is prone to a buffer overflow vulnerability that could permit the execution of arbitrary remote code. A remote attacker can exploit this vulnerability to execute arbitrary code and completely compromise the computer. This issue could also be...

Microsoft Internet Explorer COM Object Instantiation Variant Vulnerability

Description Microsoft Internet Explorer is prone to a buffer overflow vulnerability that is related to instantiation of COM objects. Successful exploitation could let remote attackers execute arbitrary code in the context of the currently logged in user on the affected computer. This is a variant...

Microsoft MSDTC TIP Denial Of Service Vulnerability

Description The Microsoft Windows MSDTC Microsoft Distribution Transaction Coordinator service is prone to a denial of service vulnerability. The vulnerability exists in the TIP Transaction Internet Protocol functionality that is provided by MSDTC. This vulnerability may be exploited by a remote...

Microsoft MSDTC COM+ Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a vulnerability in the COM+ Component Object Model functionality of the MSDTC Microsoft Distribution Transaction Coordinator service. This issue may permit remote and local attackers to execute arbitrary code in the context of the service. This issue may ...

Microsoft Collaboration Data Objects Remote Buffer Overflow Vulnerability

Description Microsoft CDO is susceptible to a remote buffer overflow vulnerability. This issue is due to a failure of the library to properly bounds check user-supplied data prior to copying it to an insufficiently sized memory buffer. This issue presents itself when an attacker sends a...

Microsoft MSDTC TIP Distributed Denial Of Service Vulnerability

Description The Microsoft MSDTC Microsoft Distribution Transaction Coordinator service is prone to a vulnerability that may permit denial of service attacks against the service or facilitate distributed denial of service attacks against other computers. The vulnerability exists in the TIP...

Microsoft Windows Malicious Shortcut Handling Remote Code Execution Variant Vulnerability

Description Microsoft Windows is prone to a remote code execution vulnerability when handling a malicious shortcut .lnk file. An attacker can exploit this issue by crafting a malicious file and placing it on a Web site or sending it to a user through email followed by enticing them to open it and...

Microsoft Windows Plug And Play UMPNPMGR.DLL wsprintfW Buffer Overflow Vulnerability

Description Microsoft Windows Plug and Play is prone to a buffer overflow vulnerability. This issue is due to a failure of the service to properly bounds check user-supplied data prior to copying it to an insufficiently sized memory buffer. This issue takes place when the PnP service handles...

Microsoft Windows Explorer Web View Script Injection Vulnerability

Description Microsoft Windows Explorer Web View is affected by an arbitrary script injection vulnerability. An attacker can exploit this issue by crafting a malicious file and placing it on a Web site or sending it to a user through email followed by enticing them to preview it in Windows Explore...

Microsoft DirectX DirectShow AVI Processing Buffer Overflow Vulnerability

Description A buffer overflow vulnerability exists in the Microsoft Windows DirectX component. This issue is related to processing of .AVI Audio Visual Interleave media files. The specific vulnerability exists in DirectShow and could be exposed through applications that employ DirectShow to proce...

Microsoft Windows Malicious Shortcut Handling Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code execution vulnerability when handling a malicious shortcut .lnk file. An attacker can exploit this issue by crafting a malicious file and placing it on a Web site or sending it to a user through email followed by enticing them to open it and...

Symantec Antivirus Scan Engine: Web Service Administrative Interface Buffer Overflow

SUMMARY The remote exploitation of a buffer overflow vulnerability in the web-based Administrative Interface of the Symantec AntiVirus Scan Engine product could potentially allow remote attackers to execute arbitrary code on a targeted system Risk Impact HIGH Remote Access | Yes ---|--- Local...

Symantec Brightmail AntiSpam: Nested Zip File, Denial of Service

SUMMARY Risk Impact Low Remote Access | Yes incoming mail ---|--- Local Access | No Authentication Required | No Exploit publicly available | NA AFFECTED PRODUCTS Product | Version | Build | Solution ---|---|---|--- Symantec Brightmail AntiSpam | 6.0 | 1 | Update Symantec Brightmail AntiSpam | 6....

Symantec Brightmail AntiSpam: winmail.dat File, Denial of Service

SUMMARY Risk Impact Low Remote Access | Yes incoming mail ---|--- Local Access | No Authentication Required | No Exploit publicly available | NA AFFECTED PRODUCTS Product | Version | Build | Platform | Solution ---|---|---|---|--- Symantec Brightmail AntiSpam | 6.0 | 1 | RedHat Linux | Update...

Cisco IOS Firewall Authentication Proxy Buffer Overflow Vulnerability

Description Cisco IOS Firewall Authentication Proxy is prone to a buffer overflow condition. Successful exploitation of this issue could cause a denial of service or potential execution of arbitrary code. This issue affects the FTP and Telnet protocols, but not HTTP. Technologies Affected Cisco I...

Local LiveUpdate server username / password information revealed by client

SUMMARY Risk Impact Medium Remote Access | Yes ---|--- Local Access | Yes Authentication Required | Yes Exploit publicly available | No AFFECTED PRODUCTS Product | Version | Build | Solution ---|---|---|--- LiveUpdate Client | 2.7 | 34 | LiveUpdate Client Update ADDITIONAL PRODUCT INFORMATION...

Symantec AntiVirus Corporate Edition 9.0 and Symantec Client Security 2.0 Help File Elevation of Pri

SUMMARY The Symantec AntiVirus Corporate Edition HTML client help function uses HTML help, the Windows help interface, to provide support to the client user. A non-privileged client user can manipulate the help function to access files on the system with local SYSTEM privileges. Risk Impact Mediu...

Microsoft Visual Studio .NET msdds.dll Remote Code Execution Vulnerability

...

Microsoft Windows Telephony Service Buffer Overflow Vulnerability

Description Microsoft Windows Telephony Service is prone to a buffer-overflow vulnerability. This issue is due to a failure in the application to perform proper bounds checking on user-supplied data. A successful attack can result in overflowing a finite-sized buffer, ultimately leading to...

Microsoft Windows Plug and Play Buffer Overflow Vulnerability

Description Microsoft Windows Plug and Play PnP is prone to a buffer-overflow vulnerability. This issue takes place when the PnP service handles malformed messages containing excessive data. This vulnerability may allow local attackers to escalate privileges and remote attackers to gain...

Microsoft Windows Kerberos PKINIT Man In The Middle Vulnerability

Description The PKINIT implementation in Microsoft Windows is susceptible to a man in the middle vulnerability. This issue is due to a failure of the software to properly validate network data. This issue is only exploitable by attackers that have access to valid logon credentials. Attackers...

Microsoft Internet Explorer COM Object Instantiation Buffer Overflow Vulnerability

Description Microsoft Internet Explorer is prone to a buffer-overflow vulnerability that is exposed when certain COM objects are instantiated as ActiveX controls. A malicious webpage could pass content to these objects to trigger memory corruption. Successful exploits could let remote attackers...

Microsoft Internet Explorer Web Folder Behaviors Cross-Domain Scripting Vulnerability

Description Microsoft Internet Explorer is prone to a security vulnerability that may let a Web page execute malicious script code in the context of an arbitrary domain or browser security zone. This issue is the result of a security flaw in the browser security model when handling URIs when a We...

Microsoft Windows Kerberos Denial Of Service Vulnerability

Description Microsoft Windows is susceptible to a remote Kerberos denial of service vulnerability. By sending unspecified packets to the Kerberos service on TCP or UDP port 88, attackers may cause the affected service to crash. This vulnerability allows remote attackers to crash the affected...