A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then in ...
The host is installed with Adobe Shockwave Player before 12.3.1.201 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could lead to remote code execution.
The host is installed with NetMechanica NetDecision before 4.6.1 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a long URL in an HTTP request. Successful exploitation could allow attackers to crash the service.
The host is installed with IBM Personal Communications 5.9.x before 5.9.8 or 6.0.x before 6.0.4 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a long profile string in a WorkStation (aka .ws) file. Successful exploitation could allow attackers to execute arbitrary code.
The host is installed with Internet Explorer 6 through 9, or 10 Consumer Preview and is prone to multiple unspecified vulnerabilities. The flaws are present in the applications, which fails to handle vectors related browser's protected mode. Successful exploitation could allow attackers to bypass protected mode or cause a denial of service (memory corruption).
The host is installed with IrfanView FlashPix PlugIn before 4.3.4.0 and is prone to a heap based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a crafted FlashPix image during decompression. Successful exploitation could allow attackers to execute arbitrary code.
The host is installed with Progea Movicon before 11.3 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle a crafted HTTP request. Successful exploitation allows remote attackers to cause out-of-bounds read and memory corruption.
The host is installed with PHP 5.4.3 or earlier and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to handle crafted arguments that trigger incorrect handling of COM object VARIANT types. Successful exploitation allows remote attackers to execute arbitrary code.
The host is installed with SkinCrafter 3.0 and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers. Successful exploitation allows remote attackers to execute arbitrary code.
The host is installed with xArrow before 3.4.1 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to do proper boundary checks. Successful exploitation allows remote attackers to execute arbitrary code via packets that trigger an invalid free operation.