CA BrightStor ARCServe BackUp is an overall data backup solution. The RPC interface of CA BrightStor ARCServe BackUp does not handle user's input exactly that allows anonymous attacker to inject any command, a remote code execution attack may achieved through this way. Details are provided. CA BrightStor ARCServe BackUp version R11.5 is affected.
f8d09baffc323cebdb0ee128fa1a375f7483be296775677fead1555e2c71a4beA remote illegal access vulnerability exists in Microsoft Windows Live Messenger. A vicious attacker can control the Live Messenger via constructing a malicious web page.
e193b70a2907428a643a20891cf651e8fda5c7bc6903f72feb2aa3e7972221e4An illegal resource reference vulnerability exists in the ActiveX Control of RealNetworks RealPlayer versions 10.6 and below.
423bff66229af94c5f8a3315e4534ec11eb00ed6c35d612209ce516a07fe4709A parameter injection vulnerability exists in Akamai Download Manager. By exploiting this vulnerability, the remote attacker can make the users to download arbitrary file, and save it to arbitrary location while they are visiting a vicious web page. It means an attacker who successfully exploits this vulnerability can run arbitrary code on the affected system. Akamai Download Manager ActiveX control version 2.2.3.5 is affected.
902f16a639acb0caf6e7858f4b2ecb43999eac24dfc531821022e19dc957cfc0A memory corruption vulnerability exists in Microsoft Office Publisher when it is parsing a PUB file. An attacker who successfully exploits this vulnerability can execute arbitrary code on the affected system.
1dea31de8469b51947a7547a1b68e247e6bf90f70e87403dcaf46d41bdcac46aA design error vulnerability exists in Adobe Reader and Adobe Acrobat Professional. A remote attacker who successfully exploit this vulnerability can control the printer without user's permission. Affected software versions include Adobe Reader 8.1.1 and below and Adobe Acrobat Professional 8.1.1 and below. This is an updated advisory.
2cbd1fa58213bb05a1302dcd79477d4bf94dbb3a84581019cd11a86426875dffTwo critical vulnerabilities exist in the javascript API of Adobe Acrobat Professional 7. A remote attacker who successfully exploits these vulnerabilities can execute restricted functions and arbitrary codes on the affected system. Adobe Acrobat Professional version 7.0.9 is affected.
2439aa2322600b477cca7a6d1e36624932b620e1d197bf4f3031537110a4ef00A design error vulnerability exists in Adobe Reader and Adobe Acrobat Professional. A remote attacker who successfully exploit this vulnerability can control the printer without user's permission. Affected software versions include Adobe Reader 8.1.1 and below and Adobe Acrobat Professional 8.1.1 and below.
2e19644bffa577bd8701a1948a0501cf5426c7953565f785203c1835fdf9c479CA Security Advisory - Multiple vulnerabilities exist in BrightStor ARCserve Backup that can allow a remote attacker to cause a denial of service, execute arbitrary code, or take privileged action.
eeb6c53417ccc26b912aa3b7ee71b7c4d770d635ec4f613ec8a5036d63014596A remote code execute vulnerability exists in Microsoft Jet Engine. A remote attacker who successfully exploit this vulnerability can execute arbitrary code on the affected system.
e7cf4a85bcd939e834d499ef01e0e78a9ddf18bbaa3e0157ef12c45a4ee602f0A remote stack overflow vulnerability exist in the RPC interface of CA BrightStor ARCServe BackUp. An arbitrary anonymous attacker can execute arbitrary code on the affected system by exploiting this vulnerability.
239e57e4163b68e8237af400d6a05c05dcfeb8f43d3b3ed722f445a675062281The ActiveX control BaiduBar.dll in Baidu Soba suffers from a remote code execution vulnerability
9d91ed039b728626957ad527f1076bc0acd0698b180e56c3a5ec4168d6456cc8Multiple remote buffer overflow vulnerabilities exist in the ActiveX Control named "SiteManager.Dll" of McAfee ePolicy Orchestrator. A remote attacker who successfully exploit these vulnerabilities can completely take control of the affected system. Affected software versions include McAfee ePolicy Orchestrator 3.6.1 and McAfee ePolicy Orchestrator 3.5 patch 6.
4b174ebb4697c892ceb808c2a52b50e9578cce6ea4f3cca20ebcac7ec23fc274Demonstration exploit for a remote code execution vulnerability in Alipay's password input control "pta.dll".
8f3a0ae3fc3e5c1705315ff8dbc5dd8f8346ab8d35e84c9e90bdb2227a8ce770A remote code execution vulnerability in Alipay's password input control "pta.dll" allows a remote attacker the ability to take complete control of the affected system.
53a11841b90cc60be21d85cb1e923255a3f54b83a76ff9ef3a462057f7747e9cMicrosoft Windows Wkssvc NetrJoinDomain2 stack overflow exploit that works against the vulnerability described in MS06-070. Fixed by S A Stevens.
62779cfe53ca1f084826667abf8b472343327f839ff012becfc0af25416c3f80Microsoft Windows Wkssvc NetrJoinDomain2 stack overflow exploit that works against the vulnerability described in MS06-070.
13641e3cc338d4d93cf646f8124f402f3a5400b71465e1773c54a6e526d6c0a1Microsoft SRV.SYS Mailslot Ring0 memory corruption denial of service exploit. Takes advantage of the vulnerability discussed in MS06-035.
ef948b25077f0bacfddf3f7571a4d02fcea7abd9f1ee34de56e347327398f209Microsoft Windows GRE is susceptible to multiple overrun vulnerabilities when rendering WMF files.
99e7080b68914b9fcd47bd045150c25a09dec39ddec8ecb67a9f63234b4c6d47A design flaw in SoftICE Driver Suite version 2.7 allows for authentication bypass.
bbb2b29b8f7a2e08256dab7b3f070789b67e4bb444e1d4d920580511426b4b2e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed