 |
|
|
|
| Microsoft Windows Explorercode execution | | Published: |  | 09.07.2008 | | Source: |  | MICROSOFT | | SecurityVulns ID: |  | 9134 | | Type: |  | client | | Level: |  | 7/10 | | Description: |  | Problem while parsing saved search files .search-ms. |
Microsoft Windows DNS server and DNS client DNS reply spoofing
updated since 14.11.2007 | | Published: | | 09.07.2008 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 8336 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Weak pseudo-random generator is used to generate DNS request ID. |
| F5 FirePass SNMP DoS | | Published: | | 09.07.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 9138 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Crash on 1.3.6.1.2.1.25.6 traversing. |
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 09.07.2008 | | Published: | | 09.07.2008 | | Source: | | | | SecurityVulns ID: | | 9140 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
RavenNuke: CAPTCHA bypass. |
| HP OpenView Network Node Manager multiple security vulnerabilities | | Published: | | 09.07.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 9141 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Unauthorized access, code execution. |
| Affected: |  | HP : OpenView Network Node Manager 7.51 | | CVE: |  | CVE-2008-1697 (Stack-based buffer overflow in ovwparser.dll in HP OpenView Network Node Manager (OV NNM) 7.51 allows remote attackers to execute arbitrary code via a long URI in an HTTP request processed by ovas.exe, as demonstrated by a certain topology/homeBaseView request. NOTE: some of these details are obtained from third party information.) | | | | CVE-2008-0068 |
libpoppler library uninitialized pointer
updated since 09.07.2008 | | Published: | | 10.07.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 9139 | | Type: | | library | | Level: | | 6/10 | | Description: | | Uninitialized pointer dereference on PDF parsing. |
| Affected: | | POPPLER : poppler 0.8 | | CVE: | | CVE-2008-2950 (The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document.) |
Microsoft SQL Server multiple security vulnerabilities
updated since 09.07.2008 | | Published: | | 10.07.2008 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 9136 | | Type: | | local | | Level: | | 6/10 | | Description: | | Buffer overflows, memorry corruptions, information leak. |
| Affected: | | MICROSOFT : SQL Server 7.0 | | | | MICROSOFT : SQL Server 2000 | | | | MICROSOFT : SQL Server 2005 | | CVE: | | CVE-2008-0107 (Integer underflow in SQL Server 7.0 SP4, 2000 SP4, 2005 SP1 and SP2, 2000 Desktop Engine (MSDE 2000) SP4, 2005 Express Edition SP1 and SP2, and 2000 Desktop Engine (WMSDE); Microsoft Data Engine (MSDE) 1.0 SP4; and Internal Database (WYukon) SP2 allows remote authenticated users to execute arbitrary code via a (1) SMB or (2) WebDAV pathname for an on-disk file (aka stored backup file) with a crafted record size value, which triggers a heap-based buffer overflow, aka "SQL Server Memory Corruption Vulnerability.") | | | | CVE-2008-0106 (Buffer overflow in Microsoft SQL Server 2005 SP1 and SP2, and 2005 Express Edition SP1 and SP2, allows remote authenticated users to execute arbitrary code via a crafted insert statement.) | | | | CVE-2008-0086 (Buffer overflow in the convert function in Microsoft SQL Server 2000 SP4, 2000 Desktop Engine (MSDE 2000) SP4, and 2000 Desktop Engine (WMSDE) allows remote authenticated users to execute arbitrary code via a crafted SQL expression.) | | | | CVE-2008-0085 (SQL Server 7.0 SP4, 2000 SP4, 2005 SP1 and SP2, 2000 Desktop Engine (MSDE 2000) SP4, 2005 Express Edition SP1 and SP2, and 2000 Desktop Engine (WMSDE); Microsoft Data Engine (MSDE) 1.0 SP4; and Internal Database (WYukon) SP2 does not initialize memory pages when reallocating memory, which allows database operators to obtain sensitive information (database contents) via unknown vectors related to memory page reuse.) |
Microsoft Outlook Web Access crossite scripting
updated since 09.07.2008 | | Published: | | 12.07.2008 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 9135 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Crossite scripting on different pages. |
Microsoft Access ActiveX file download
updated since 09.07.2008 | | Published: | | 12.08.2008 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 9137 | | Type: | | client | | Level: | | 7/10 | | Description: | | SnapShot Viewer ActiveX allows file download to any location. |
| Affected: | | MICROSOFT : Office 2000 | | | | MICROSOFT : Office XP | | | | MICROSOFT : Office 2003 | | | | MICROSOFT : Office 2007 | | CVE: | | CVE-2008-2463 (The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message, probably involving use of the SnapshotPath and CompressedPath properties and the PrintSnapshot method. NOTE: this can be leveraged for code execution by writing to a Startup folder.) |
|
|
|
|
|
|
|
|
