Primary
Vendor — Product |
Description |
|
CVSS Score |
Source & Patch Info |
activepdf — docconverter
Symantec — mail_security_appliance
IBM — Lotus Notes
Autonomy — KeyView
Symantec — Mail Security |
Multiple buffer overflows in kpagrdr.dll 2.0.0.2 and 10.3.0.0 in the Applix Presents reader in Autonomy (formerly Verity) KeyView, as used by IBM Lotus Notes, Symantec Mail Security, and activePDF DocConverter, allow remote attackers to execute arbitrary code via a .ag file with (1) a long ENCODING attribute in a *BEGIN tag, (2) a long token, or (3) the initial *BEGIN tag. |
|
9.3 |
CVE-2007-5405
OTHER-REF
OTHER-REF
OTHER-REF
OTHER-REF
OTHER-REF
OTHER-REF
BID
FRSIRT
FRSIRT
FRSIRT
SECTRACK
SECUNIA
SECUNIA
SECUNIA
SECUNIA
SECUNIA |
activepdf — docconverter
Symantec — mail_security_appliance
IBM — Lotus Notes
Autonomy — KeyView
Symantec — Mail Security |
Multiple stack-based buffer overflows in foliosr.dll in the Folio Flat File speed reader in Autonomy (formerly Verity) KeyView 10.3.0.0, as used by IBM Lotus Notes, Symantec Mail Security, and activePDF DocConverter, allow remote attackers to execute arbitrary code via a long attribute value in a (1) DI, (2) FD, (3) FT, (4) JD, (5) JL, (6) LE, (7) OB, (8) OD, (9) OL, (10) PN, (11) PS, (12) PW, (13) RD, (14) QL, or (15) TS tag in a .fff file. |
|
9.3 |
CVE-2007-6020
OTHER-REF
OTHER-REF
OTHER-REF
OTHER-REF
OTHER-REF
OTHER-REF
BID
FRSIRT
FRSIRT
FRSIRT
SECTRACK
SECUNIA
SECUNIA
SECUNIA
SECUNIA
SECUNIA |
Adobe — Flex
Adobe — AIR
Adobe — Flash Player |
Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via an SWF file with a modified DeclareFunction2 Actionscript tag, which prevents an object from being instantiated properly. |
|
9.3 |
CVE-2007-6019
BUGTRAQ
OTHER-REF
OTHER-REF
REDHAT
BID
SECTRACK |
| Adobe — ColdFusion |
Adobe ColdFusion 8 and 8.0.1 does not properly implement the public access level for CFC methods, which allows remote attackers to invoke these methods via Flex 2 remoting, a different vulnerability than CVE-2006-4725. |
|
7.5 |
CVE-2008-1656
OTHER-REF
FRSIRT
SECTRACK
SECUNIA |
CA — threat_manager_for_the_enterprise
CA — Anti-Virus for the Enterprise
CA — BrightStor ARCserve Backup |
Multiple stack-based buffer overflows in Computer Associates (CA) Alert Notification Service (Alert.exe) 8.1.586.0, 8.0.450.0, and 7.1.758.0, as used in multiple CA products including Anti-Virus for the Enterprise 7.1 through r11.1 and Threat Manager for the Enterprise 8.1 and r8, allow remote authenticated users to execute arbitrary code via crafted RPC requests. |
|
9.0 |
CVE-2007-4620
IDEFENSE
BUGTRAQ
OTHER-REF
BID
XF
SECTRACK
SECTRACK |
Computer Associates — Desktop Management Suite
Computer Associates — arcserve_backup_laptops_and_desktops |
Buffer overflow in the LGServer service in CA ARCserve Backup for Laptops and Desktops r11.0 through r11.5, and Suite 11.1 and 11.2, allows remote attackers to execute arbitrary code via unspecified “command arguments.” |
|
9.3 |
CVE-2008-1328
BUGTRAQ
OTHER-REF
BID
XF
SECTRACK |
Computer Associates — Desktop Management Suite
Computer Associates — arcserve_backup_laptops_and_desktops |
Unspecified vulnerability in the NetBackup service in CA ARCserve Backup for Laptops and Desktops r11.0 through r11.5, and Suite 11.1 and 11.2, allows remote attackers to execute arbitrary commands, related to “insufficient verification of file uploads.” |
|
10.0 |
CVE-2008-1329
BUGTRAQ
OTHER-REF
BID
XF
SECTRACK |
| desiquintans — writers_block_cms |
SQL injection vulnerability in permalink.php in Desi Quintans Writer’s Block CMS 3.8a allows remote attackers to execute arbitrary SQL commands via the PostID parameter. |
|
7.5 |
CVE-2008-1699
BUGTRAQ
BID
SECUNIA |
| GNU — m4 |
The (1) maketemp and (2) mkstemp builtin functions in GNU m4 before 1.4.11 do not quote their output when a file is created, which might allow context-dependent attackers to trigger a macro expansion, leading to unspecified use of an incorrect filename. |
|
7.5 |
CVE-2008-1687
MLIST
MLIST
MLIST
MLIST
SLACKWARE
SECUNIA
SECUNIA |
| GNU — m4 |
Unspecified vulnerability in GNU m4 before 1.4.11 might allow context-dependent attackers to execute arbitrary code, related to improper handling of filenames specified with the -F option. NOTE: it is not clear when this issue crosses privilege boundaries. |
|
7.5 |
CVE-2008-1688
MLIST
MLIST
SLACKWARE
SECUNIA
SECUNIA |
HP — rx6600
HP — rx2660
HP — bl860c
HP — rx3600 |
Unspecified vulnerability in the embedded management console in HP iLO-2 Management Processors (iLO-2 MP), as used in Integrity Servers rx2660, rx3600, and rx6600, and Integrity Blade Server model bl860c, allows remote attackers to cause a denial of service via unknown vectors. |
|
7.8 |
CVE-2008-0711
BUGTRAQ
HP
BID
FRSIRT
SECUNIA
SECTRACK |
| HP — OpenView Network Node Manager |
Stack-based buffer overflow in ovwparser.dll in HP OpenView Network Node Manager (OV NNM) 7.51 allows remote attackers to execute arbitrary code via a long URI in an HTTP request processed by ovas.exe, as demonstrated by a certain topology/homeBaseView request. NOTE: some of these details are obtained from third party information. |
|
10.0 |
CVE-2008-1697
MILW0RM
OTHER-REF
BID
SECUNIA
XF |
IBM — Lotus Notes
Autonomy — KeyView |
Multiple heap-based buffer overflows in emlsr.dll in the EML reader in Autonomy (formerly Verity) KeyView 10.3.0.0, as used by IBM Lotus Notes, allow remote attackers to execute arbitrary code via a long (1) To, (2) Cc, (3) Bcc, (4) From, (5) Date, (6) Subject, (7) Priority, (8) Importance, or (9) X-MSMail-Priority header; (10) a long string at the beginning of an RFC2047 encoded-word in a header; (11) a long text string in an RFC2047 encoded-word in a header; or (12) a long Subject header, related to creation of an associated filename. |
|
9.3 |
CVE-2007-5399
OTHER-REF
OTHER-REF
OTHER-REF
BID
FRSIRT
FRSIRT
SECUNIA
SECUNIA |
IBM — Lotus Notes
Autonomy — KeyView |
Multiple buffer overflows in htmsr.dll in the HTML speed reader in Autonomy (formerly Verity) KeyView, as used by IBM Lotus Notes 7.0.2 and 7.0.3, allow remote attackers to execute arbitrary code via an HTML document with (1) “large chunks of data,” or a long URL in the (2) BACKGROUND attribute of a BODY element or (3) SRC attribute of an IMG element. |
|
9.3 |
CVE-2008-0066
OTHER-REF
OTHER-REF
BID
FRSIRT
FRSIRT
SECUNIA
SECUNIA
SECUNIA |
IBM — Lotus Notes
Autonomy — KeyView |
Buffer overflow in kvdocve.dll in the KeyView document viewing engine in Autonomy (formerly Verity) KeyView, as used by IBM Lotus Notes 7.0.2 and 7.0.3, allows remote attackers to execute arbitrary code via a long pathname, as demonstrated by a long SRC attribute of an IMG element in an HTML document. |
|
9.3 |
CVE-2008-1101
OTHER-REF
OTHER-REF
BID
FRSIRT
FRSIRT
SECUNIA
SECUNIA
SECUNIA |
| IBM — AIX |
Untrusted search path vulnerability in chnfsmnt in IBM AIX 6.1 allows local users to gain privileges via a modified PATH environment variable. |
|
7.2 |
CVE-2008-1710
AIXAPAR
FRSIRT
SECTRACK |
IBM — Lotus Notes
Autonomy — KeyView |
Buffer overflow in mimesr.dll in Autonomy (formerly Verity) KeyView, as used in IBM Lotus Notes before 8.0, might allow user-assisted remote attackers to execute arbitrary code via an e-mail message with a crafted Text mail (MIME) attachment. |
|
9.3 |
CVE-2008-1718
OTHER-REF |
| interwoven — worksite_web |
Double free vulnerability in Web TransferCtrl Class 8,2,1,4 (iManFile.cab), as used in WorkSite Web 8.2 before SP1 P2, allows remote attackers to execute arbitrary code via JavaScript that sets the Server property to a string, then sets the string to null. |
|
9.3 |
CVE-2008-1617
OTHER-REF
BID
FRSIRT
SECUNIA |
| interwoven — worksite_web |
The Web TransferCtrl Class 8,2,1,4 (iManFile.cab), as used in WorkSite Web 8.2 before SP1 P2, allows remote attackers to cause a denial of service (memory consumption) via a large number of SendNrlLink directives, which opens a separate window for each directive. |
|
9.3 |
CVE-2008-1700
OTHER-REF |
| Microsoft — windows-nt |
The (1) VBScript (VBScript.dll) and (2) JScript (JScript.dll) scripting engines 5.1 and 5.6, as used in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2, does not properly decode script, which allows remote attackers to execute arbitrary code via unknown vectors. |
|
9.3 |
CVE-2008-0083
MS
BID
FRSIRT
SECTRACK
SECUNIA |
| Microsoft — windows-nt |
The DNS client in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, and Vista uses predictable DNS transaction IDs, which allows remote attackers to spoof DNS responses. |
|
8.8 |
CVE-2008-0087
MS
BID
FRSIRT
SECTRACK
SECUNIA |
| Microsoft — windows-nt |
Heap-based buffer overflow in GDI in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Vista, and Server 2008 allows remote attackers to execute arbitrary code via an EMF or WMF image file with a malformed header that triggers improper “integer calculations,” aka “GDI Heap Overflow Vulnerability.” |
|
9.3 |
CVE-2008-1083
MS
BID
FRSIRT
SECTRACK
SECUNIA
XF |
| Microsoft — windows-nt |
Unspecified vulnerability in the kernel in Microsoft Windows 200 SP4, XP SP2, Server 2003 SP1 and SP2, Vista SP1, and Server 2008 allows local users to execute arbitrary code via unknown vectors related to improper input validation. |
|
7.2 |
CVE-2008-1084
MS
BID
FRSIRT
SECTRACK
SECUNIA |
| Microsoft — Internet Explorer |
Use after free vulnerability in Microsoft Internet Explorer 5.01 SP4, 6 through SP1, and 7 allows remote attackers to execute arbitrary code via a crafted data stream that triggers memory corruption, as demonstrated using an invalid MIME-type that does not have a registered handler. |
|
9.3 |
CVE-2008-1085
MS
OTHER-REF
BID
FRSIRT
SECTRACK
SECUNIA |
Microsoft — Internet Explorer
Microsoft — windows-nt |
The HxTocCtrl ActiveX control (hxvz.dll), as used in Microsoft Internet Explorer 5.01 SP4 and 6 SP1, in Windows XP SP2, Server 2003 SP1 and SP2, Vista SP1, and Server 2008, allows remote attackers to execute arbitrary code via malformed arguments, which triggers memory corruption. |
|
9.3 |
CVE-2008-1086
MS
BID
FRSIRT
SECTRACK
SECUNIA
XF |
| Microsoft — windows-nt |
Stack-based buffer overflow in GDI in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Vista, and Server 2008 allows remote attackers to execute arbitrary code via an EMF image file with crafted filename parameters, aka “GDI Stack Overflow Vulnerability.” |
|
9.3 |
CVE-2008-1087
MS
BID
FRSIRT
SECTRACK
SECUNIA |
| Microsoft — Project |
Microsoft Project 2000 Service Release 1, 2002 SP1, and 2003 SP2 allows user-assisted remote attackers to execute arbitrary code via a crafted Project file, related to improper validation of “memory resource allocations.” |
|
9.3 |
CVE-2008-1088
MS
CERT-VN
BID
FRSIRT
SECTRACK
SECUNIA
XF |
Microsoft — Visio
Microsoft — Office |
Unspecified vulnerability in Microsoft Visio 2002 SP2, 2003 SP2 and SP3, and 2007 up to SP1 allows user-assisted remote attackers to execute arbitrary code via a Visio file containing crafted object header data, aka “Visio Object Header Vulnerability.” |
|
9.3 |
CVE-2008-1089
MS
SECUNIA
BID
FRSIRT
SECTRACK
XF |
Microsoft — Visio
Microsoft — Office |
Unspecified vulnerability in Microsoft Visio 2002 SP2, 2003 SP2 and SP3, and 2007 up to SP1 allows user-assisted remote attackers to execute arbitrary code via a crafted .DXF file, aka “Visio Memory Validation Vulnerability.” |
|
9.3 |
CVE-2008-1090
MS
BID
SECUNIA
FRSIRT
SECTRACK
XF |
| Microsoft — Visual InterDev |
Buffer overflow in Microsoft Visual InterDev 6.0 (SP6) allows user-assisted attackers to execute arbitrary code via a Studio Solution (.SLN) file with a long malformed Project line beginning with a ‘Project(“{}”) =’ sequence, probably a different vector than CVE-2008-0250. |
|
9.3 |
CVE-2008-1709
MILW0RM |
| Python Software Foundation — Python |
Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow. |
|
7.5 |
CVE-2008-1721
BUGTRAQ
OTHER-REF
BID |
| Samba — rsync |
Buffer overflow in rsync 2.6.9 to 3.0.1, with extended attribute (xattr) support enabled, might allow remote attackers to execute arbitrary code via unknown vectors. |
|
7.5 |
CVE-2008-1720
OTHER-REF
OTHER-REF |
| Seattle Lab Software — SLMail Pro |
Stack consumption vulnerability in WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (daemon crash) via a long request header in an HTTP request to TCP port 801. NOTE: some of these details are obtained from third party information. |
|
7.5 |
CVE-2008-1689
OTHER-REF
OTHER-REF
BID
FRSIRT
SECUNIA
XF |
| Seattle Lab Software — SLMail Pro |
WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a long URI in HTTP requests to TCP port 801. NOTE: some of these details are obtained from third party information. |
|
10.0 |
CVE-2008-1690
OTHER-REF
BID
FRSIRT
SECUNIA
XF |
Symantec — norton_360
Symantec — Norton Internet Security
Symantec — Norton System Works
Symantec — Norton Antivirus |
Stack-based buffer overflow in the AutoFix Support Tool ActiveX control 2.7.0.1 in SYMADATA.DLL in multiple Symantec Norton products, including Norton 360 1.0, AntiVirus 2006 through 2008, Internet Security 2006 through 2008, and System Works 2006 through 2008, allows remote attackers to execute arbitrary code via a long argument to the GetEventLogInfo method. NOTE: some of these details are obtained from third party information. |
|
9.3 |
CVE-2008-0312
IDEFENSE
OTHER-REF
BID
FRSIRT
SECTRACK
SECTRACK
SECTRACK
SECUNIA |
Tibco — Enterprise Message Service
Tibco — iprocess_engine |
Multiple buffer overflows in TIBCO Software Enterprise Message Service (EMS) before 4.4.3, and iProcess Engine 10.6.0 through 10.6.1, allow remote attackers to execute arbitrary code via a crafted message to the EMS server. |
|
10.0 |
CVE-2008-1704
OTHER-REF
BID
SECUNIA |
| Tumbleweed — securetransport_server_app |
Stack-based buffer overflow in the IActiveXTransfer.FileTransfer method in the SecureTransport FileTransfer ActiveX control in vcst_en.dll 1.0.0.5 in Tumbleweed SecureTransport Server before 4.6.1 Hotfix 20 allows remote attackers to execute arbitrary code via a long remoteFile parameter. |
|
9.3 |
CVE-2008-1724
BUGTRAQ
MILW0RM
OTHER-REF
BID
FRSIRT
SECUNIA
XF |
