 |
|
|
|
MS Internet Explorer CHM files and ms-its handler code execution
updated since 09.04.2004 | | Published: |  | 14.04.2004 | | Source: |  | CERT | | SecurityVulns ID: |  | 3590 | | Type: |  | client | | Level: |  | 8/10 | | Description: |  | HTTP redirection to ms-its (and few others) protocol exploiting directory traversal bug cause CHM file to be saved to known location. With another directory traversal bug HTML from CHM file can be executed in local zone. |
Windows NT/2000/XP/2003 RPC buffer overflow
updated since 17.07.2003 | | Published: | | 14.04.2004 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 2988 | | Type: | | remote | | Level: | | 10/10 | | Description: | | Multiple buffer overflows during RPC request parsing via TCP/135 and another RPC ports. |
| Original document |  | EEYE, [Full-Disclosure] EEYE: Microsoft DCOM RPC Memory Leak (14.04.2004) |
| | | EEYE, [Full-Disclosure] EEYE: Microsoft DCOM RPC Race Condition (14.04.2004) |
| | | MICROSOFT, Microsoft Security Bulletin MS04-012 (14.04.2004) |
| | | CORE SECURITY TECHNOLOGIES ADVISORIES, [CORE-2003-12-05] DCE RPC Vulnerabilities New Attack Vectors Analysis (11.12.2003) |
| | | 3APA3A, Bad news on RPC DCOM vulnerability (11.10.2003) |
| | | flashsky fangxing, The Analysis of RPC Long Filename Heap Overflow AND a Way to Write Universal Heap Overflow of Windows (22.09.2003) |
| | | EEYE, EEYE: Microsoft RPC Heap Corruption Vulnerability - Part II (11.09.2003) |
| | | Elv1S, [Full-Disclosure] MS03-039 - Exploit ... (11.09.2003) |
| | | NSFOCUS, NSFOCUS SA2003-06 : Microsoft Windows RPC DCOM Interface Heap Overflow Vulnerability (11.09.2003) |
| | | X-FORCE, ISS Security Brief: Multiple Vulnerabilities in Microsoft RPC Service (11.09.2003) |
| | | MICROSOFT, Microsoft Security Bulletin MS03-039: Buffer Overrun In RPCSS Service Could Allow Code Execution(824146) (11.09.2003) |
| | | CERT, CERT Advisory CA-2003-23 RPCSS Vulnerabilities in Microsoft Windows (11.09.2003) |
| | | LSD, [LSD] Critical security vulnerability in Microsoft Operating Systems (17.07.2003) |
| | | MICROSOFT, Microsoft Security Bulletin MS03-026: Buffer Overrun In RPC Interface Could Allow Code Execution(Q823980) (17.07.2003) |
Multiple linux kernel bugs
updated since 22.07.2003 | | Published: | | 14.04.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3002 | | Type: | | remote | | Level: | | 7/10 | | Description: | | /proc/tty/driver/serial kestroke counting information leak, multiple execve() problems, multiple STP problems, UDP port spoofing, forwarding table records spoofing. ISO9660 file system buffer overflow. |
| Zaep AntiSpam Cross Site Scripting | | Published: | | 14.04.2004 | | Source: | | SECURITEAM | | SecurityVulns ID: | | 3606 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Crossite scripting in /?key= parameter. |
| Outlook/Outlook Express NULL character DoS | | Published: | | 14.04.2004 | | Source: | | NTBUGTRAQ | | SecurityVulns ID: | | 3607 | | Type: | | client | | Level: | | 5/10 | | Description: | | Client hangs on POP3 receiving if message contains NULL character. |
| Eudora nested MIME DoS | | Published: | | 14.04.2004 | | Source: | | NTBUGTRAQ | | SecurityVulns ID: | | 3608 | | Type: | | client | | Level: | | 5/10 | | Description: | | Crash on deeply nested MIME attachment. |
| Microsoft Jet Database Engine buffer overflow | | Published: | | 14.04.2004 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 3603 | | Type: | | library | | Level: | | 6/10 | | Description: | | Request to database can cause buffer overflow. |
| ServerAlive weak encryption | | Published: | | 14.04.2004 | | Source: | | ROBILLARD | | SecurityVulns ID: | | 3604 | | Type: | | local | | Level: | | 5/10 | | Description: | | Passwords are stored in text file in base64 format. |
neon format string bugs and heap overflow
updated since 14.04.2004 | | Published: | | 19.05.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3605 | | Type: | | library | | Level: | | 5/10 | | Description: | | Format string bugs in few functions. |
Windows multiple bugs
updated since 14.04.2004 | | Published: | | 01.04.2005 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 3602 | | Type: | | remote | | Level: | | 10/10 | | Description: | | LSASSS buffer overflow, LDAP DoS, PCT buffer overflow, WinLogon buffer overflow, WMF/EMF parsing buffer overflow, HCP:// code execution, Utility Manager privilege escalation, WMI privilege escalation, LDT privilege escalation, H.323 buffer overflow, NTVDM privilege escalation, ASM.1 double free memory coruuption. |
| Original document | | liquid_(at)_cyberspace.org, WindowsXP malformed .wmf files DoS (01.04.2005) |
| | | MICROSOFT, Microsoft Security Bulletin MS04-019 Vulnerability in Utility Manager Could Allow Code Execution (842526) (14.07.2004) |
| | | Vivek Rathod (Application Security, Inc.), Microsoft Window Utility Manager Local Elevation of Privileges (14.07.2004) |
| | | Vivek Rathod (Application Security, Inc.), [VulnWatch] [SHATTER Team Security Alert] Microsoft Windows Utility Manager Vulnerability (15.04.2004) |
| | | Brett Moore, [Full-Disclosure] Utility Manager - Failure to drop system privileges (15.04.2004) |
| | | X-FORCE, ISS Security Brief: Microsoft SSL Library Remote Compromise Vulnerability (14.04.2004) |
| | | EEYE, [Full-Disclosure] EEYE: Windows VDM TIB Local Privilege Escalation (14.04.2004) |
| | | EEYE, [Full-Disclosure] EEYE: Windows Local Security Authority Service Remote Buffer Overflow (14.04.2004) |
| | | EEYE, [Full-Disclosure] EEYE: Windows Expand-Down Data Segment Local Privilege Escalation (14.04.2004) |
| | | Jouko Pynnonen, [Full-Disclosure] Microsoft Help and Support Center argument injection vulnerability (14.04.2004) |
| | | CERT, US-CERT Technical Cyber Security Alert TA04-104A -- Multiple Vulnerabilities in Microsoft Products (14.04.2004) |
| | | Nsfocus Security Team, [Full-Disclosure] NSFOCUS SA2004-01 : DoS Vulnerability in Microsoft Windows SPNEGO Protocol Decoding (14.04.2004) |
| | | MICROSOFT, Microsoft Security Bulletin MS04-011 (14.04.2004) |
|
|
|
|
|
|
|
|
