presentation software vulnerabilities
vulnerabilities.aspcode.net
Searching presentation software vulnerabilities
RealOne player allows remote attackers to execu
demonstrated
|
presentation
|
references
|
previously
|
arbitrary
|
scripting
|
attackers
|
Computer"
|
executed
|
security
|
protocol
|
RealOne
|
execute
|
context
|
script
|
remote
|
allows
|
player
|
loaded
|
using
|
which
|
zone
|
SMIL
|
"My
|
URL
|
via
|
RealOne player allows remote attackers to execute arbitrary script in the "My Computer" zone via a SMIL presentation with a URL that references a scripting protocol, which is executed in the security context of the previously loaded URL, as demonstrated using a "javascript:" URL in the area tag.
Citrix Program Neighborhood Agent for Win32 8.0
Neighborhood
|
Program
|
Citrix
|
Win32
|
Agent
|
Citrix Program Neighborhood Agent for Win32 8.00.24737 and earlier and MetaFrame Presentation Server client for WinCE before 8.33 allows remote servers to create arbitrary shortcuts on the client via a full UNC path in the AppInStartmenu directive.
Stack-based buffer overflow in the client for C
Neighborhood
|
Stack-based
|
overflow
|
Program
|
Citrix
|
buffer
|
client
|
Win32
|
Agent
|
Stack-based buffer overflow in the client for Citrix Program Neighborhood Agent for Win32 8.00.24737 and earlier and Citrix MetaFrame Presentation Server client for WinCE before 8.33 allows remote attackers to execute arbitrary code via a long cached icon filename in the InName XML element.
RealOne player 6.0.11.868 allows remote attacke
RealOne
|
player
|
RealOne player 6.0.11.868 allows remote attackers to execute arbitrary script in the "My Computer" zone via a Synchronized Multimedia Integration Language (SMIL) presentation with a "file:javascript:" URL, which is executed in the security context of the previously loaded URL, a different vulnerability than CVE-2003-0726.
Apple Keynote 2.0 and 2.0.1 allows remote attac
Keynote
|
Apple
|
Apple Keynote 2.0 and 2.0.1 allows remote attackers to read arbitrary files via the keynote: URI handler in a crafted Keynote presentation.
Multiple buffer overflows in the (1) SIP, (2) C
overflows
|
Multiple
|
buffer
|
Multiple buffer overflows in the (1) SIP, (2) CMIP, (3) CMP, (4) CMS, (5) CRMF, (6) ESS, (7) OCSP, (8) X.509, (9) ISIS, (10) DISTCC, (11) FCELS, (12) Q.931, (13) NCP, (14) TCAP, (15) ISUP, (16) MEGACO, (17) PKIX1Explitit, (18) PKIX_Qualified, (19) Presentation dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code.
Citrix Metaframe Presentation Server 3.0 and 4.
Presentation
|
restrictions
|
downloading
|
launchica
|
attackers
|
Metaframe
|
changing
|
device
|
client
|
Citrix
|
allows
|
Server
|
policy
|
bypass
|
remote
|
name
|
file
|
Citrix Metaframe Presentation Server 3.0 and 4.0 allows remote attackers to bypass policy restrictions by downloading the launch.ica file and changing the client device name (ClientName).
Microsoft PowerPoint 2000 in Office 2000 SP3 ha
PowerPoint
|
Microsoft
|
Microsoft PowerPoint 2000 in Office 2000 SP3 has an interaction with Internet Explorer that allows remote attackers to obtain sensitive information via a PowerPoint presentation that attempts to access objects in the Temporary Internet Files Folder (TIFF).
Interpretation conflict between Internet Explor
Interpretation
|
presentation
|
protection
|
mechanisms
|
characters
|
attackers
|
stripped
|
possibly
|
Explorer
|
Internet
|
browsers
|
conflict
|
content
|
legible
|
between
|
filters
|
Mozilla
|
Firefox
|
bypass
|
remote
|
visual
|
modify
|
render
|
Opera
|
which
|
using
|
could
|
ASCII
|
allow
|
might
|
pages
|
other
|
such
|
text
|
but
|
not
|
web
|
set
|
8th
|
via
|
bit
|
Interpretation conflict between Internet Explorer and other web browsers such as Mozilla, Opera, and Firefox might allow remote attackers to modify the visual presentation of web pages and possibly bypass protection mechanisms such as content filters via ASCII characters with the 8th bit set, which could be stripped by Internet Explorer to render legible text, but not when using other browsers. NOTE: there has been significant discussion about this issue, and as of Sunday, June 25, 2006, it is not clear where the responsibility for this issue lies, although it might be due to vagueness within the associated standards. NOTE: this might only be exploitable with certain encodings.
Heap-based buffer overflow in the IMA_SECURE_De
IMA_SECURE_DecryptData1
|
ImaSystemdll
|
Presentation
|
Architecture
|
Independent
|
Management
|
Heap-based
|
arbitrary
|
attackers
|
MetaFrame
|
requests
|
overflow
|
function
|
execute
|
Server
|
Citrix
|
buffer
|
allows
|
remote
|
code
|
via
|
Heap-based buffer overflow in the IMA_SECURE_DecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests to the Independent Management Architecture (IMA) service (ImaSrv.exe) with invalid size values that trigger the overflow during decryption.
The Independent Management Architecture (IMA) s
Architecture
|
Independent
|
Management
|
The Independent Management Architecture (IMA) service (ImaSrv.exe) in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service (service exit) via a crafted packet that causes the service to access an unmapped memory address and triggers an unhandled exception.
Heap-based buffer overflow in the SendChannelDa
SendChannelData
|
Presentation
|
Heap-based
|
wficaocx
|
function
|
overflow
|
Client
|
before
|
Server
|
Citrix
|
buffer
|
Heap-based buffer overflow in the SendChannelData function in wfica.ocx in Citrix Presentation Server Client before 9.230 for Windows allows remote malicious web sites to execute arbitrary code via a DataSize parameter that is less than the length of the Data buffer.
Stack-based buffer overflow in the print provid
Stack-based
|
provider
|
overflow
|
library
|
buffer
|
print
|
Stack-based buffer overflow in the print provider library (cpprov.dll) in Citrix Presentation Server 4.0, MetaFrame Presentation Server 3.0, and MetaFrame XP 1.0 allows local users and remote attackers to execute arbitrary code via long arguments to the (1) EnumPrintersW and (2) OpenPrinter functions.
Unspecified vulnerability in Citrix Presentatio
vulnerability
|
Presentation
|
Unspecified
|
Windows
|
before
|
Client
|
Citrix
|
Server
|
Unspecified vulnerability in Citrix Presentation Server Client for Windows before 10.0 allows remote web sites to execute arbitrary code via unspecified vectors, related to the implementation of ICA connectivity through proxy servers.
The Session Reliability Service (XTE) in Citrix
Reliability
|
Service
|
Session
|
The Session Reliability Service (XTE) in Citrix MetaFrame Presentation Server 3.0, Presentation Server 4.0, and Access Essentials 1.0 and 1.5, allows remote attackers to bypass network security policies and connect to arbitrary TCP ports via a modified address:port string.
The Program Neighborhood Agent in Citrix Presen
Presentation
|
Neighborhood
|
Program
|
Clients
|
Windows
|
before
|
32-bit
|
Citrix
|
Server
|
Agent
|
The Program Neighborhood Agent in Citrix Presentation Server Clients for 32-bit Windows before 10.100 allows remote attackers to cause a denial of service (agent exit) via a certain request that uses content redirection and a long pathname.
Unspecified vulnerability in the kernel in Micr
vulnerability
|
presentation
|
Unspecified
|
Microsoft
|
SyScan'07
|
vectors
|
Windows
|
impact
|
attack
|
kernel
|
remote
|
Vista
|
"0day
|
shown
|
IPO"
|
has
|
Unspecified vulnerability in the kernel in Microsoft Windows Vista has unspecified remote attack vectors and impact, as shown in the "0day IPO" presentation at SyScan'07.
Software vulnerabilities results 1 to 18 of 18
Page:
1