• Skip to main content
  • Skip to footer

Audit My PC - Free Internet Security Audit

Firewall Test and web tools to check your security and privacy

  • Firewall Test
  • Anti Spam
  • Internet Speed Test
  • Sitemap Generator
  • Whats My IP

Microsoft IE FolderItem Object NULL Dereference

Network Security News – Monday, July 17, 2006 Events

Microsoft IE FolderItem Object NULL Dereference

Internet Explorer contains a flaw that may allow a remote attacker to crash the browser. The issue is triggered when accessing the object reference of the FolderItem controls causing a NULL dereference and crashing the browser.. Read more at osvdb.org/27059

Microsoft IE MHTMLFile Multiple Property NULL Dereference

Internet explorer contains a flaw that may allow a remote denial of service. The issue is triggered when setting the "location" property of the 'MHTMLFile' ActiveX object occurs, causing a NULL dereference. This will result in loss of availability for the browser.. Read more at osvdb.org/27108

AdPlug s3m.cpp S3M File Processing Overflow

A local overflow exists in AdPlug . AdPlug fails to handle specialy crafted S3M files when unpacking them resulting in an heap overflow. A length value read directly in the header of the S3M file is not properly checked or sanitized when being used to allocate a buffer. A heap overflow could occur while unpacking the file allowing for the execution of arbitrary code.. Read more at osvdb.org/27046

Photocycle photocycle Script phpage Variable XSS

Photocycle contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'phpage' variable upon submission to the 'photocycle' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/27093

AdPlug u6m.cpp U6M File Unpacking Overflow

A local overflow exists in AdPlug . AdPlug fails to handle specialy crafted U6M files when unpacking them resulting in an heap overflow. A length value read directly in the header of the U6M file is not properly checked or sanitized when being used to allocate a buffer. A heap overflow could occur while unpacking the file allowing for the execution of arbitrary code.. Read more at osvdb.org/27047

AdPlug mtk.cpp MTK File Unpacking Overflow

A local overflow exists in AdPlug . AdPlug fails to handle specialy crafted MTK files when unpacking them resulting in an heap overflow. A length value read directly in the header of the MTK file is not properly checked or sanitized when being used to allocate a buffer. A heap overflow could occur while unpacking the file allowing for the execution of arbitrary code.. Read more at osvdb.org/27043

AdPlug dmo.cpp DMO File Unpacking Overflow

A local overflow exists in AdPlug . AdPlug fails to handle specialy crafted DMO files when unpacking them resulting in an heap overflow. A length value read directly in the header of the DMO file is not properly checked or sanitized when being used to allocate a buffer. A heap overflow could occur while unpacking the file allowing for the execution of arbitrary code.. Read more at osvdb.org/27044

AdPlug cff.cpp CFF File Unpacking Overflow

A local overflow exists in AdPlug . AdPlug fails to handle specialy crafted CFF files when unpacking them resulting in an heap overflow. A length value read directly in the header of the CFF file is not properly checked or sanitized when being used to allocate a buffer. A heap overflow could occur while unpacking the CFF file allowing for the execution of arbitrary code.. Read more at osvdb.org/27042

Actinic Catalog Unspecified .pl Files XSS

Actinic Catalog contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate unspecified variable(s) upon submission to unspecified Perl script(s). This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/27095

Actinic Catalog ss000007.pl PRODREF Variable XSS

Actinic Catalog contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'PRODREF' variable upon submission to the ss000007.pl script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/27097

Vuln: Buddy Zone Multiple HTML Injection Vulnerabilities

Buddy Zone Multiple HTML Injection Vulnerabilities. Read more at securityfocus.com/bid/18759

Reader Interactions

Leave a Reply

Your email address will not be published. Required fields are marked *

Footer

Miscellaneous

  • Free Address Finder
  • HTML Encoder Decoder
  • Website Monitoring
  • Whats My IP Address?
  • Yes or No

Copyright © 2001-2021 Audit My PC .com All Rights Reserved. Our Privacy Policy and TOS

  • About
  • Acronyms
  • DLL Files
  • Ports
  • Computer Security News
  • Email Scams & Spam
  • Internet Safety
  • Free Software