Microsoft Windows Logon Process Remote Buffer Overflow Vulnerability

Description Microsoft Windows logon process 'winlogon' is prone to a remote buffer-overflow vulnerability. The issue occurs when the vulnerable host is a member of an Active Directory domain. When processing logon information, the logon process reads data from the Active Directory. This read call...

Microsoft Negotiate SSP Remote Buffer Overflow Vulnerability

Description The Microsoft Negotiate Security Software Provider SSP interface is prone to a remote buffer overflow vulnerability. In most cases, exploitation would result in a denial of service, but arbitrary code execution is possible. Technologies Affected Avaya DefinityOne Media Servers Avaya...

Microsoft ASN.1 Library Double Free Memory Corruption Vulnerability

Description It has been reported that Microsoft ASN.1 library is prone to a double free heap memory corruption vulnerability that may allow a remote attacker to execute arbitrary code on a vulnerable system. Exploitation of this issue is likely to cause a denial of service condition due to the...

Microsoft Windows Local Descriptor Table Local Privilege Escalation Vulnerability

Description Microsoft Windows Local Descriptor Table programming interface is prone to a privilege-escalation vulnerability. A local attacker may be able to create a malicious entry in the Local Descriptor Table. This entry may point into protected memory. Since this memory space is reserved for...

Microsoft Windows Utility Manager Local Privilege Escalation Vulnerability

Description Microsoft Utility Manager is prone to a local privilege-escalation vulnerability that may allow a local attacker to execute arbitrary code with SYSTEM privileges. Technologies Affected Avaya DefinityOne Media Servers Avaya IP600 Media Servers Avaya S3400 Message Application Server Ava...

Microsoft Windows Help And Support Center URI Validation Code Execution Vulnerability

Description Microsoft has reported a vulnerability in the Help and Support Center that is related to how HCP URIs are validated. This issue could reportedly be exploited via a malicious web page or HTML e-mail to execute arbitrary code on a client system. The issue may permit an attacker to injec...

Microsoft Windows RPCSS Service Remote Denial Of Service Vulnerability

Description It has been reported that a denial of service condition exists in the RPCSS service. This issue is due to a failure of the application to properly handle malformed network messages. Successful exploitation of this issue may allow a remote attacker to cause the affected server to crash...

Microsoft Virtual DOS Machine Local Privilege Escalation Vulnerability

Description A problem exists in the Virtual DOS Machine VDM that may allow a local user to elevate their privilege level. The issue exists because an attacker may use the VDM to write arbitrary code to protected kernel memory locations. Technologies Affected Avaya DefinityOne Media Servers Avaya...

Microsoft Windows Management Local Privilege Escalation Vulnerability

Description Microsoft Windows Management is prone to a local privilege-escalation vulnerability that may allow a local attacker to execute arbitrary attacker-supplied code with SYSTEM privileges. Technologies Affected Avaya DefinityOne Media Servers Avaya IP600 Media Servers Avaya S3400 Message...

Microsoft Windows LSASS Buffer Overrun Vulnerability

Description Microsoft Windows LSASS Local Security Authority Subsystem Service is prone to a remotely exploitable buffer overrun vulnerability. The specific vulnerable system component is LSASRV.DLL. Successful exploitation of this issue could allow a remote attacker to execute malicious code on ...

Microsoft Windows 2000 Domain Controller LDAP Denial Of Service Vulnerability

Description A denial of service vulnerability has been reported in Microsoft Windows 2000 Server systems that are acting as Domain Controllers. This issue may be triggered by sending a malformed LDAP query to an affected Windows 2000 Domain Controller. This will cause a reboot in the Domain...

Microsoft Windows Private Communications Transport Protocol Buffer Overrun Vulnerability

Description Various Microsoft Windows operating systems are prone to a remotely exploitable stack-based buffer overrun via the PCT Private Communications Transport protocol. Successful exploitation of this issue could allow a remote attacker to execute malicious code on a vulnerable system,...

Microsoft Windows H.323 Remote Buffer Overflow Vulnerability

Description The Microsoft Windows H.323 protocol implementation is prone to a remote buffer overflow. Successful exploitation could allow for execution of arbitrary code. This vulnerability could only be exploited if an H.323 application such as NetMeeting were running on the system. Technologies...

Microsoft Jet Database Engine Remote Code Execution Vulnerability

Description It has been reported that Microsoft Jet Database Engine Jet is prone to a remote code execution vulnerability that that may allow remote attackers to execute arbitrary code in order to gain unauthorized access to a vulnerable system. This issue presents itself when a specially crafted...

Microsoft Windows Object Identity Network Communication Vulnerability

Description It has been reported that Microsoft Windows is prone to a vulnerability in the method of creation of object identities that may allow unauthorized network communication. This issue is due to a design error that causes the process to be carried out insecurely. This issue may be leverag...

Microsoft Windows SSL Library Denial of Service Vulnerability

Description Microsoft Windows SSL library is reported to be prone to a denial of service vulnerability. It has been reported that an attacker could trigger this issue by sending a specially crafted TCP message that causes the protocol to fail resulting in a denial of service. Successful...

Microsoft Windows COM Internet Service/RPC Over HTTP Remote Denial Of Service Vulnerability

Description It has been reported that a denial of service condition exists in the COM Internet Service and RPC over HTTP services. This issue is due to a failure of the services to properly handle malformed network responses. Successful exploitation of this issue may allow a remote attacker to...

Microsoft Windows WMF/EMF Image Formats Remote Buffer Overflow Vulnerability

Description It has been reported that Windows may be prone to a remote buffer overflow vulnerability when rendering WMF/EMF image files. An attacker could create a malicious WMF or EMF file and entice a user to view the file via an application that supports the WMF and EMF formats. Immediate...

Microsoft Outlook Mailto Parameter Quoting Zone Bypass Vulnerability

Description Microsoft Outlook is prone to a vulnerability that may permit execution of arbitrary code on client systems. This issue is exposed through Outlook, but will reportedly cause Internet Explorer to load malicious content in the Local Zone. This is related to how mailto URIs are handled b...

Microsoft Windows Media Services Remote Denial of Service Vulnerability

Description It has been reported that Microsoft Windows Media Services is prone to a remote denial of service vulnerability. This may allow an attacker to cause the services to effectively deny access to legitimate users by sending specially crafted TCP/IP packets on TCP ports 7007 and/or 7778...

Microsoft MSN Messenger Information Disclosure Vulnerability

Description Microsoft MSN Messenger is prone to an information disclosure vulnerability. When a malformed file transfer request is initiated by a remote user, they may be able to view the contents of files on the remote system. Technologies Affected Microsoft MSN Messenger Service 6.0 Microsoft M...

Microsoft ASN.1 Library Multiple Stack-Based Buffer Overflow Vulnerabilities

Description It has been reported that Microsoft ASN.1 library may be prone to multiple stack-based buffer overflow vulnerabilities that could allow an attacker to execute arbitrary code leading to unauthorized access to a vulnerable system. The issues have been identified in ASN1BERDecDouble and...

Microsoft ASN.1 Library Length Integer Mishandling Memory Corruption Vulnerability

Description A vulnerability has been reported in the Microsoft ASN.1 library. This issue is related to insufficient checking of data supplied via an externally supplied length field in ASN.1 BER encoded data. This could result in an excessive value being used in a heap allocation routine, allowin...

Microsoft Virtual PC For Mac Temporary File Privilege Escalation Vulnerability

Description Microsoft has reported an issue in Virtual PC for Mac that may permit a local attacker to gain elevated privileges on a system hosting the software. This is due to insecure handling of temporary files by the setuid root VirtualPCServices binary, potentially permitting a malicious loca...

Microsoft Windows Internet Naming Service Buffer Overflow Vulnerability

Description The Microsoft Windows Internet Name Service WINS is prone to a remotely exploitable buffer overflow condition. Sending a series of specially crafted packets to the service could cause it to fail. On some Windows platforms, this could also lead to execution of arbitrary code...

Microsoft Windows ASN.1 Library Bit String Processing Integer Handling Vulnerability

Description Microsoft ASN.1 handling library has been reported prone to an integer overflow vulnerability that may result in arbitrary heap-based memory corruption. The issue presents itself in the ASN.1 BER decoding/encoding routines. Exploitation of this issue will result in the corruption of...

Microsoft Exchange Server 2003 Outlook Web Access Random Mailbox Access Vulnerability

Description A vulnerability has been reported in Exchange Server 2003 with Outlook Web Access OWA configured. Exploitation of this vulnerability could allow an authenticated OWA user to connect to another user's OWA mailbox. Technologies Affected Microsoft Exchange Server 2003 Recommendations Blo...

Microsoft MDAC Function Broadcast Response Buffer Overrun Vulnerability

Description Microsoft has released an advisory reporting a buffer overrun vulnerability in an MDAC function. This issue is exposed when an application makes a broadcast request to query for SQL Servers on the network and malformed data is returned in the broadcast response. Successful exploitatio...

Microsoft ISA Server 2000 H.323 Filter Remote Buffer Overflow Vulnerability

Description It has been reported that the H.323 filter used by Microsoft ISA Server 2000 is prone to a remote buffer overflow vulnerability. The condition presents itself due to insufficient boundary checks performed by the Microsoft Firewall Service on specially crafted H.323 traffic. Successful...

Linux Kernel do_mremap Function Boundary Condition Vulnerability

Description A vulnerability involving the domremap system function has been reported in the Linux kernel, allowing for local privilege escalation. Due to a bounds checking issue within the function, it is possible for local attackers to disrupt the operation of the kernel. Attack vectors also exi...

Openwares.org Internet Explorer Patch Buffer Overflow Vulnerability

Description It has been reported that the Internet Explorer patch supplied by Openwares.org for the Multiple Browser URI Display Obfuscation Weakness BID 9182 may be prone to a buffer overflow condition that may allow an attacker to execute arbitrary code on a vulnerable system in order to gain...

RSync Daemon Mode Undisclosed Remote Heap Overflow Vulnerability

Description rsync has been reported prone to an undisclosed heap overflow vulnerability when running in daemon mode. The issue has been reported to be remotely exploitable and will provide for an execution of arbitrary code. Technologies Affected Apple Mac OS X 10.2.8 Apple Mac OS X 10.3.2 Apple...

Yahoo! Messenger YAuto.DLL Open Buffer Overflow Vulnerability

Description A problem has been identified in the handling of some types of requests by ActiveX controls installed with Yahoo! Messenger, exposing a remotely exploitable buffer overrun. Because of this, it may be possible for an attacker to execute arbitrary code on a vulnerable host. Technologies...

Microsoft Outlook Express MHTML Forced File Execution Vulnerability

Description A vulnerability has been discovered in Microsoft Outlook Express when handling MHTML file and res URIs that could lead to an unexpected file being downloaded and executed. The problem occurs due to the component failing to securely handle MHTML file URIs that reference a non-existent...

Microsoft Internet Explorer Mouse Click Event Hijacking Vulnerability

Description A vulnerability exists in Internet Explorer when handling specific DHTML events, allowing a malicious Web page to intercept mouse click events to perform unintended drag and drop operations. In particular, it is possible to simulate a mouse drag and drop event through use of the moveB...

Microsoft Internet Explorer XML Object Zone Restriction Bypass Vulnerability

Description Microsoft has announced that a vulnerability exists in Internet Explorer when handling malicious XML objects. The problem is said to occur due to Internet Explorer failing to validate a supplied path when binding local data to the XML document. As a result, a malicious HTML containing...

Microsoft Excel XLM Macro Security Level Bypass Vulnerability

Description A vulnerability has been reported to affect Microsoft Excel that could be exploited by an attacker to execute an XLM macro regardless of the macro security level. The issue has been reported to present itself due to a failure by Excel to sufficiently scan a malicious spreadsheet file...

Microsoft FrontPage Server Extensions Remote Debug Buffer Overrun Vulnerability

Description Microsoft FrontPage Server Extensions are prone to a remotely exploitable buffer overrun vulnerability that is exposed via remote debugging functionality. It is possible to trigger this condition with a chunked-encoded HTTP POST request. This could be exploited to execute arbitrary co...

Microsoft Windows Workstation Service Remote Buffer Overflow Vulnerability

Description It has been reported that Microsoft Windows Workstation WKSSVC.DLL service is prone to a vulnerability that may allow a remote attacker to gain unauthorized access to a vulnerable host. The problem is in the handling of requests by the Workstation Service. The Workstation Service does...

Microsoft FrontPage Server Extensions SmartHTML Interpreter Denial Of Service Vulnerability

Description A denial of service vulnerability has been reported in the SmartHTML interpreter component of FrontPage Server Extensions that may be exploited by remote attackers. This issue could be exploited to deny availability of CPU resources on the system, potentially causing a denial of servi...

Microsoft Internet Explorer Self Executing HTML Arbitrary Code Execution Vulnerability

...

Atrium Software Mercur Mailserver POP3 AUTH Remote Buffer Overflow Vulnerability

Description A problem has been reported in MERCUR Mailserver when handling the POP3 AUTH command. This problem may make it possible for an attacker crash the service on a vulnerable system, or gain unauthorized access. Technologies Affected Atrium Software MERCUR Mailserver 3.3.0 Atrium Software...

Microsoft Exchange Server Buffer Overflow Vulnerability

Description Microsoft has announced that Exchange Server is affected by a remotely exploitable buffer overflow condition. The overflow can be triggered remotely by unauthenticated SMTP clients. The source of the issue appears to be in how the XEXCH50 verb is handled by the server. Microsoft has...

Microsoft Windows Messenger Service Buffer Overrun Vulnerability

Description Microsoft Windows Messenger Service is prone to a remotely exploitable buffer overrun vulnerability. This is due to insufficient bounds checking of messages before they are passed to an internal buffer. Exploitation could result in a denial of service or in execution of malicious code...

Microsoft Windows RPCSS Multi-thread Race Condition Vulnerability

Description It has been reported that a variant attack in the RPCSS service of Microsoft Windows exists. Because of this, it may be possible for an attacker to mount denial of service attacks and execute arbitrary code on the affected system. The source of the issue is reportedly a multi-thread...

OpenSSL ASN.1 Parsing Vulnerabilities

Description Multiple vulnerabilities were reported in the ASN.1 parsing code in OpenSSL. Attackers could exploit these issues to cause a denial of service or to execute arbitrary code. Technologies Affected Apple Mac OS X 10.2.0 Apple Mac OS X 10.2.1 Apple Mac OS X 10.2.2 Apple Mac OS X 10.2.3...

Pam_SMB Remote Buffer Overflow Vulnerability

Description pamsmb has been reported prone to a buffer overflow vulnerability. It has been reported that systems using pamsmb to authenticate to a remotely accessible service may be vulnerable to a condition that could allow a remote attacker to supply and execute arbitrary code in the context of...

Microsoft Internet Explorer ADODB.Stream Object File Installation Weakness

Description Microsoft Internet Explorer is prone to a security weakness that may permit malicious HTML documents to create or overwrite files on a victim file system when interpreted from the Local Zone or other Security Zones with relaxed security restrictions, such as the Intranet Zone. This...

Microsoft Data Access Components ODBC Buffer Overflow Vulnerability

Description A buffer overflow vulnerability exists in Microsoft Data Access Components that may allow an attacker to run arbitrary code on a client machine. This vulnerability is exposed when a client or a SQL Server implementing the SQL-DMO library, sends a broadcast request for Microsoft SQL...

Multiple Oracle XDB FTP / HTTP Services Buffer Overflow Vulnerabilities

Description In a paper titled "Variations in exploit methods between Linux and Windows" presented at Blackhat 2003, David Litchfield has illustrated multiple vulnerabilities in the Oracle 9i XML Database XDB. Successful exploits may allow remote attackers to run arbitrary code in the security...