Vulns: Microsoft Windows DCOM RPC Interface Buffer Overrun Vulnerability
Grok Headline matches for Vulns: Microsoft Windows DCOM RPC Interface Buffer Overrun Vulnerability
Vulns: Microsoft Windows LSASS Buffer
Overrun Vulnerability
Vulns: Microsoft Windows LSASS Buffer
Overrun Vulnerability
04/17/2004 07:25 PMSecurityFocus Apr 17 2004 11:12PM GMT
Vulns: Microsoft Windows Private
Communications Transport Protocol Buffer
Overrun Vulnerability
Vulns: Microsoft Windows Private
Communications Transport Protocol Buffer
Overrun Vulnerability
06/12/2004 08:35 PMSecurityFocus Jun 12 2004 11:12PM GMT
Vulns: Microsoft Windows Program Group
Converter Filename Local Buffer Overrun
Vulnerability
Vulns: Microsoft Windows Program Group
Converter Filename Local Buffer Overrun
Vulnerability
07/10/2004 10:05 PMSecurityFocus Jul 11 2004 2:07AM GMT
Vulns: HP Distributed Computing
Environment Buffer Overrun Vulnerability
Vulns: HP Distributed Computing
Environment Buffer Overrun Vulnerability
07/17/2004 04:33 PMSecurityFocus Jul 17 2004 8:07PM GMT
Vulns: Microsoft Windows Workstation
Service Remote Buffer Overflow
Vulnerability
Vulns: Microsoft Windows Workstation
Service Remote Buffer Overflow
Vulnerability
05/23/2004 10:51 AMSecurityFocus May 23 2004 2:55PM GMT
Vulns: Microsoft Windows POSIX Subsystem
Buffer Overflow Local Privilege
Escalation Vulnerability
Vulns: Microsoft Windows POSIX Subsystem
Buffer Overflow Local Privilege
Escalation Vulnerability
07/19/2004 06:36 PMSecurityFocus Jul 19 2004 11:06PM GMT
Vulns: Microsoft Exchange Server Buffer
Overflow Vulnerability
Vulns: Microsoft Exchange Server Buffer
Overflow Vulnerability
04/16/2004 11:40 PMSecurityFocus Apr 17 2004 2:51AM GMT
Vulns: Microsoft UPnP NOTIFY Buffer
Overflow Vulnerability
Vulns: Microsoft UPnP NOTIFY Buffer
Overflow Vulnerability
05/20/2004 04:12 AMSecurityFocus May 20 2004 8:54AM GMT
Vulns: Microsoft WordPerfect Converter
Remote Buffer Overflow Vulnerability
Vulns: Microsoft WordPerfect Converter
Remote Buffer Overflow Vulnerability
09/17/2004 10:22 PMSecurityFocus Sep 18 2004 2:43AM GMT
Cisco Security Advisory: Buffer Overrun
in Microsoft Windows 2000 Workstation
Service (MS03-049)
Cisco Security Advisory: Buffer Overrun
in Microsoft Windows 2000 Workstation
Service (MS03-049)
01/01/2005 04:54 AMCisco Systems Product Security Incident Response Team (Jan 29 2004)
Real Player Buffer Overrun Vulnerability
Real Player Buffer Overrun Vulnerability
05/27/2004 09:24 PM?RealNetworks Inc. has recently been made aware of a security
vulnerability that could potentially allow an attacker to run
arbitrary code on a user?s machine. The specific exploit was: To
fashion an R3T media file to create a “Buffer Overrun” error. While we
have not received reports of anyone actually being attacked with this
exploit and though the percentage of players with this plug-in is very
small, all security vulnerabilities are taken very seriously by
RealNetworks Inc. Real has found and fixed the problem?.To ensure that
your Player is protected, we recommend installing the update available
which will remove the vulnerable plug-in.?
Vulns: IBM OEM Microsoft Windows XP And
Windows XP SP1 Default Administration
Account Vulnerability
Vulns: IBM OEM Microsoft Windows XP And
Windows XP SP1 Default Administration
Account Vulnerability
09/18/2004 10:13 PMSecurityFocus Sep 19 2004 2:14AM GMT
Vulns: Microsoft Windows HTML Help Heap
Overflow Vulnerability
Vulns: Microsoft Windows HTML Help Heap
Overflow Vulnerability
07/19/2004 06:36 PMSecurityFocus Jul 19 2004 11:04PM GMT
Vulns: Microsoft Windows SSL Library
Denial of Service Vulnerability
Vulns: Microsoft Windows SSL Library
Denial of Service Vulnerability
04/17/2004 04:41 PMSecurityFocus Apr 17 2004 8:26PM GMT
Vulns: Microsoft Windows Object Identity
Network Communication Vulnerability
Vulns: Microsoft Windows Object Identity
Network Communication Vulnerability
04/17/2004 04:41 PMSecurityFocus Apr 17 2004 8:26PM GMT
Vulns: Microsoft Windows SMTP Service
Authorization Bypass Vulnerability
Vulns: Microsoft Windows SMTP Service
Authorization Bypass Vulnerability
04/16/2004 11:40 PMSecurityFocus Apr 17 2004 2:51AM GMT
Vulns: Microsoft Windows Shell CLSID
File Extension Misrepresentation
Vulnerability
Vulns: Microsoft Windows Shell CLSID
File Extension Misrepresentation
Vulnerability
07/19/2004 06:36 PMSecurityFocus Jul 19 2004 11:04PM GMT
Vulns: Microsoft Windows Utility Manager
Local Privilege Escalation Vulnerability
Vulns: Microsoft Windows Utility Manager
Local Privilege Escalation Vulnerability
04/18/2004 01:39 PMSecurityFocus Apr 18 2004 5:22PM GMT
Vulns: Microsoft Windows Remote Desktop
Protocol Server Key Verification
Vulnerability
Vulns: Microsoft Windows Remote Desktop
Protocol Server Key Verification
Vulnerability
06/20/2004 12:43 PMSecurityFocus Jun 20 2004 5:09PM GMT
Vulns: Microsoft Windows RPCSS
Multi-thread Race Condition
Vulnerability
Vulns: Microsoft Windows RPCSS
Multi-thread Race Condition
Vulnerability
04/16/2004 11:40 PMSecurityFocus Apr 17 2004 2:51AM GMT
Buffer Overrun in Microsoft FrontPage
Server Extensions
Buffer Overrun in Microsoft FrontPage
Server Extensions
11/11/2003 05:38 PMMicrosoft Security Bulletin MS03-051:
Buffer Overrun in Microsoft FrontPage
Server Extensions Could Allow Code
Execution (813360)
Microsoft Security Bulletin MS03-051:
Buffer Overrun in Microsoft FrontPage
Server Extensions Could Allow Code
Execution (813360)
11/13/2003 12:36 AMThis bulletin addresses two new security vulnerabilities in Microsoft
FrontPage Server Extensions, the most serious of which could enable an
attacker to run arbitrary code on a user's system.
Vulns: Microsoft Windows Local
Descriptor Table Local Privilege
Escalation Vulnerability
Vulns: Microsoft Windows Local
Descriptor Table Local Privilege
Escalation Vulnerability
07/18/2004 04:53 PMSecurityFocus Jul 18 2004 8:13PM GMT
Vulns: Microsoft Windows COM Internet
Service/RPC Over HTTP Remote Denial Of
Service Vulnerability
Vulns: Microsoft Windows COM Internet
Service/RPC Over HTTP Remote Denial Of
Service Vulnerability
04/24/2004 10:39 PMSecurityFocus Apr 25 2004 2:15AM GMT
Microsoft Security Bulletin MS03-049:
Buffer Overrun in the Workstation
Service Could Allow Code Execution
(828749)
Microsoft Security Bulletin MS03-049:
Buffer Overrun in the Workstation
Service Could Allow Code Execution
(828749)
11/13/2003 12:36 AMA security vulnerability exists in the Workstation service that could
allow remote code execution on an affected system. This vulnerability
results because of an unchecked buffer in the Workstation service.
If exploited, an attacker could gain System privileges on an affected
system, or could cause the Workstation service to fail. An attacker
could take any action on the system, including installing programs,
viewing data, changing data, or deleting data, or creating new
accounts with full privileges.
Microsoft Security Bulletin MS04-028:
Buffer Overrun in JPEG Processing (GDI+)
Could Allow Code Execution (833987)
Microsoft Security Bulletin MS04-028:
Buffer Overrun in JPEG Processing (GDI+)
Could Allow Code Execution (833987)
09/15/2004 01:56 AMThis update resolves a newly-discovered, privately reported
vulnerability. A buffer overrun vulnerability exists in the processing
of JPEG image formats that could allow remote code execution on an
affected system. The vulnerability is documented in this bulletin in
its own section.
If a user is logged on with administrator privileges, an attacker who
successfully exploited this vulnerability could take complete control
of an affected system, including installing programs; viewing,
changing, or deleting data; or creating new accounts with full
privileges. Users whose accounts are configured to have fewer
privileges on the system would be at less risk than users who operate
with administrative privileges.
"Microsoft Security Bulletin
MS04-028:
Buffer Overrun in JPEG
Processing (GDI+) Could Allow Code
Execution (833987)"
"Microsoft Security Bulletin
MS04-028:
Buffer Overrun in JPEG
Processing (GDI+) Could Allow Code
Execution (833987)"
09/15/2004 09:31 PMVulns: Microsoft Outlook Express URI
Obfuscation Vulnerability
Vulns: Microsoft Outlook Express URI
Obfuscation Vulnerability
05/16/2004 10:51 PMSecurityFocus May 17 2004 2:27AM GMT
Vulns: Microsoft Remote Procedure Call
Service DoS Vulnerability
Vulns: Microsoft Remote Procedure Call
Service DoS Vulnerability
04/16/2004 11:40 PMSecurityFocus Apr 17 2004 2:51AM GMT
Buffer Overrun in the Workstation
Service
Buffer Overrun in the Workstation
Service
11/11/2003 05:38 PMVulns: Microsoft Jet Database Engine
Remote Code Execution Vulnerability
Vulns: Microsoft Jet Database Engine
Remote Code Execution Vulnerability
04/24/2004 10:39 PMSecurityFocus Apr 25 2004 2:15AM GMT
Vulns: Microsoft JVM Cross-Domain Applet
Unauthorized Communication Vulnerability
Vulns: Microsoft JVM Cross-Domain Applet
Unauthorized Communication Vulnerability
07/24/2004 01:15 PMSecurityFocus Jul 24 2004 5:06PM GMT
Vulns: Microsoft ASP.NET Malformed HTTP
Request Information Disclosure
Vulnerability
Vulns: Microsoft ASP.NET Malformed HTTP
Request Information Disclosure
Vulnerability
05/09/2004 12:51 PMSecurityFocus May 9 2004 5:16PM GMT
Vulns: Microsoft Internet Explorer
JavaScript Desktop Spoofing
Vulnerability
Vulns: Microsoft Internet Explorer
JavaScript Desktop Spoofing
Vulnerability
07/15/2004 08:13 PMSecurityFocus Jul 16 2004 0:53AM GMT
Vulns: Microsoft Internet Explorer ITS
Protocol Zone Bypass Vulnerability
Vulns: Microsoft Internet Explorer ITS
Protocol Zone Bypass Vulnerability
04/11/2004 06:24 PMSecurityFocus Apr 11 2004 11:18PM GMT
MS04-028: Buffer Overrun in JPEG
Processing (GDI+)
MS04-028: Buffer Overrun in JPEG
Processing (GDI+)
09/15/2004 01:59 AMThanks to <b>xStainDx</b> for the heads up.
<b>Microsoft recommends that customers apply the update
immediately.</b>
This update resolves a newly-discovered, privately reported
vulnerability. A buffer overrun vulnerability exists in the processing
of JPEG image formats that could allow remote code execution on an
affected system. The vulnerability is documented in this bulletin in
its own section.
If a user is logged on with administrator privileges, an attacker who
successfully exploited this vulnerability could take complete control
of an affected system, including installing programs; viewing,
changing, or deleting data; or creating new accounts with full
privileges. Users whose accounts are configured to have fewer
privileges on the system would be at less risk than users who operate
with administrative privileges.
<u>Maximum Severity Rating</u>:
<b>Critical</b>
<u>Recommendation</u>: Customers should apply the update
immediately.
<u>Security Update Replacement</u>: None
View:
Microsoft TechnetRead full story...Vulns: Microsoft Exchange Outlook Web
Access HTTP Response Splitting
Vulnerability
Vulns: Microsoft Exchange Outlook Web
Access HTTP Response Splitting
Vulnerability
08/14/2004 10:12 AMSecurityFocus Aug 14 2004 2:09PM GMT
Vulns: Microsoft Outlook 2003 Media File
Script Execution Vulnerability
Vulns: Microsoft Outlook 2003 Media File
Script Execution Vulnerability
05/29/2004 12:27 PMSecurityFocus May 29 2004 5:06PM GMT
Vulns: Microsoft Systems Management
Server Remote Denial Of Service
Vulnerability
Vulns: Microsoft Systems Management
Server Remote Denial Of Service
Vulnerability
07/17/2004 07:29 PMSecurityFocus Jul 17 2004 11:07PM GMT
Grok Description matches for Vulns: Microsoft Windows DCOM RPC Interface Buffer Overrun Vulnerability
GrokA matches for Vulns: Microsoft Windows DCOM RPC Interface Buffer Overrun Vulnerability
Vulns: Microsoft Windows DCOM RPC Interface Buffer Overrun Vulnerability
