CVE-2012-0834
Cross-site scripting (XSS) vulnerability in lib/QueryRender.php in phpLDAPadmin 1.2.2 and ea ...
CVE-2012-0452
Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Thunderbird 10.x before 10.0.1, ...
CVE-2012-0840
tables/apr_hash.c in the Apache Portable Runtime (APR) library through 1.4.5 computes hash v ...
CVE-2012-0831
PHP before 5.3.10 does not properly perform a temporary change to the magic_quotes_gpc directive dur ...
CVE-2011-4534
ZenSysSrv.exe in Ing. Punzenberger COPA-DATA zenon 6.51 SP0 allows remote attackers to cause a denia ...
CVE-2011-4533
zenAdminSrv.exe in Ing. Punzenberger COPA-DATA zenon 6.51 SP0 allows remote attackers to cause a den ...
CVE-2011-4039
Invensys Wonderware HMI Reports 3.42.835.0304 and earlier, as used in Ocean Data Systems Dream Repor ...
CVE-2011-4038
Cross-site scripting (XSS) vulnerability in Invensys Wonderware HMI Reports 3.42.835.0304 an ...
CVE-2012-1046
Cross-site scripting (XSS) vulnerability in TM1 Web in IBM Cognos TM1 9.5.2 FP1 allows remot ...
CVE-2011-3972
The shader translator implementation in Google Chrome before 17.0.963.46 allows remote attackers to ...
Óâåäîìëåíèÿ 460 - 474 of 729
First | Prev. | 26 27 28 29 30 31 32 33 34 35 36 | Next | Last
(MS06-042) Cumulative Security Update for Internet Explorer (918899)
If a user is logged on with administrative user rights, a malicious user who successfully exploited the most severe of these vulnerabilities, could take complete control of an affected system. A malicious user could then install programs; view, change, or delete data; or create new accounts with full user rights.
MS06-040) Vulnerability in Server Service Could Allow Remote Code Execution
This vulnerability can be exploited by crafting a specially crafted message, which can cause code execution to an affected system. Workstations and servers are affected by this issue, however, Windows 2000 systems are primarily at risk because of this vulnerability's unique characteristics and affected code path.
(MS06-043) Vulnerability in Microsoft Windows Could Allow Remote Code Execution
This vulnerability is due to the way Windows incorrectly parses the MHTML protocol. An attacker can exploit this vulnerability by hosting a specially crafted Web site or an HTML email message. The said Web site can also be sent as a link in email messages or Instant Messaging applications. The malicious user will have to employ social engineering techniques to persuade the user to click on the said links to visit the mentioned Web sites.
(MS06-045) Vulnerability in Windows Explorer Could Allow Remote Code Execution
A remote code execution vulnerability exists in Windows Explorer because of the way that Windows Explorer handles Drag and Drop events.
(MS06-047) Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution
Microsoft VBA is a development technology for developing client desktop packaged applications which are then integrated into existing data and systems. Microsoft VBA is based on the Microsoft Visual Basic development system. Microsoft Office products include VBA and make use of VBA to perform certain functions.
(MS06-048) Vulnerabilities in Microsoft Office Could Allow Remote Code Execution
This security advisory addresses a remote code execution vulnerability that exists in PowerPoint which could be exploited when a file containing a malformed shape container is parsed by PowerPoint. This malformed shape properties record causes a buffer overflow in PowerPoint which can potentially lead to arbitrary remote code execution.
(MS06-051) Vulnerability in Windows Kernel Could Result in Remote Code Execution
To exploit this vulnerability, an attacker would first have to log on to the target system. An attacker could then place a specially crafted .DLL file within their User Profile folder and then restart the computer. After the restart and subsequent re-logon by the attacker, the malicious .DLL file would execute a code that could exploit the vulnerability and allow the attacker to gain complete control over the affected system.
(MS06-041) Vulnerability in DNS Resolution Could Allow Remote Code Execution (920683)
The update resolves several newly discovered vulnerabilities. A malicious user who successfully exploits these vulnerabilities could very well take complete control over an affected system by installing programs or viewing, changing, or deleting data. It is also possible to create new accounts with full user rights.
(MS06-044) Vulnerability in Microsoft Management Console Could Allow Remote Code Execution (917008)
This update resolves a newly discovered vulnerability. A malicious user who successfully exploits this vulnerability can take absolute control over the affected system. The attacker could then install programs, view, change, or delete data or create new accounts with full user rights.
(MS06-046) Vulnerability in HTML Help Could Allow Remote Code Execution (922616)
On vulnerable versions of Microsoft Windows, if a certain user is logged on a system with administrative rights, the malicious user who is able to successfully exploit this vulnerability could take complete control of the client workstation.
(MS06-049) Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958)
There is a privilege elevation vulnerability in Windows 2000 caused by an unchecked buffer in the Windows 2000 Kernel. This could allow a malicious user, currently logged on, to take complete control of the system.
(MS06-050) Vulnerabilities in Microsoft Windows Hyperlink Object Library Could Allow Remote Code Execution (920670)
a user is logged on with administrative user rights, a malicious user who successfully exploited this vulnerability could take complete control of an affected system by installing programs; viewing, changing, or deleting data; or creating new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
(MS06-033) Vulnerability in ASP.NET Could Allow Information Disclosure
ASP.NET is collection of technologies within the .NET Framework that enable developers to build Web applications and XML Web Services.
(MS06-037) Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (917285)
When MS Excel opens a specially-crafted Excel file that results to the processing of malformed SELECTION, COLINFO or OBJECT records, which may corrupt system memory in such a way that an attacker could execute arbitrary code.
(MS06-036) Vulnerability in DHCP Client Service Could Allow Remote Code Execution (914388)
This vulnerability affects the Dynamic Host Configuration Protocol (DHCP), which is an IP standard designed to reduce the complexity of administering network addresses.
Óâåäîìëåíèÿ 460 - 474 of 729
First | Prev. | -11 -10 -9 -8 -7 -6 -5 -4 -3 -2 -1 0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 | Next | Last