Searching visual software vulnerabilities

Internet Explorer 4.x or 5.x with Word 97 allow

executable | execution | arbitrary | malicious | programs | template | contains | Internet | Explorer | doesn't | Outlook | message | content | applies | through | Visual | client | allows | views | email | which | Basic | Word | Also | user | warn |

Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doesn't warn the user that the template contains executable content. Also applies to Outlook when the client views a malicious email message.


IIS allows local users to cause a denial of ser

expressions | service | invalid | regular | allows | Visual | script | denial | Basic | cause | users | local | page | ASP | IIS | via |

IIS allows local users to cause a denial of service via invalid regular expressions in a Visual Basic script in an ASP page.


Heap-based buffer overflow in VBE.DLL and VBE6.

Applications | Heap-based | Microsoft | overflow | VBE6DLL | buffer | Visual | VBEDLL | Basic |

Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications (VBA) SDK 5.0 through 6.3 allows remote attackers to execute arbitrary code via a document with a long ID parameter.


Mozilla allows remote attackers to cause a deni

attackers | Mozilla | service | denial | allows | remote | cause |

Mozilla allows remote attackers to cause a denial of service (application crash from invalid memory access) via an "unusual combination of visual elements," including several large MARQUEE tags with large height parameters, as demonstrated by mangleme.


Visual truncation vulnerability in Gadu-Gadu al

vulnerability | transmitted | truncation | displayed | attackers | Gadu-Gadu | extension | followed | filename | number | spaces | allows | Visual | remote | dialog | which | files | spoof | large | file | real | box | via | not |

Visual truncation vulnerability in Gadu-Gadu allows remote attackers to spoof the file extension on transmitted files via a filename with a large number of spaces followed by the real extension, which is not displayed in the dialog box.


By design, Microsoft Visual Studio 2005 automat

Microsoft | Studio | Visual | design |

By design, Microsoft Visual Studio 2005 automatically executes code in the Load event of a user-defined control (UserControl1_Load function), which allows user-assisted attackers to execute arbitrary code by tricking the user into opening a malicious Visual Studio project file.


PHP remote file inclusion vulnerability in cale

vulnerability | calendarphp | inclusion | parameter | arbitrary | attackers | Calendar | execute | cfg_dir | remote | Visual | allows | Events | code | file | PHP | via | URL |

PHP remote file inclusion vulnerability in calendar.php in Visual Events Calendar 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the cfg_dir parameter.


SQL injection vulnerability in headeruserdata.p

headeruserdataphp | vulnerability | ezContents | injection | Shapers | Visual | SQL |

SQL injection vulnerability in headeruserdata.php in Visual Shapers ezContents 2.0.3 allows remote attackers to execute arbitrary SQL commands via the groupname parameter.


Cross-site scripting (XSS) vulnerability in log

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in loginreq2.php in Visual Shapers ezContents 2.0.3 allows remote attackers to inject arbitrary web script or HTML via the subgroupname parameter.


Microsoft Visual Studio 6.0 allows remote attac

attackers | Microsoft | service | denial | remote | Studio | Visual | allows | cause |

Microsoft Visual Studio 6.0 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code by instantiating certain Visual Studio 6.0 ActiveX COM Objects in Internet Explorer, including (1) tcprops.dll, (2) fp30wec.dll, (3) mdt2db.dll, (4) mdt2qd.dll, and (5) vi30aut.dll.


Unspecified vulnerability in Microsoft Visual B

vulnerability | Unspecified | Microsoft | Visual | Basic |

Unspecified vulnerability in Microsoft Visual Basic (VB) 6 has an unknown impact ("overflow") via a project that contains a certain Click event procedure, as demonstrated using the msgbox function and the VB.Label object.


Stack-based buffer overflow in Visual Studio Cr

Stack-based | Microsoft | overflow | Crystal | Reports | buffer | Visual | Studio | NET |

Stack-based buffer overflow in Visual Studio Crystal Reports for Microsoft Visual Studio .NET 2002 and 2002 SP1, .NET 2003 and 2003 SP1, and 2005 and 2005 SP1 (formerly Business Objects Crystal Reports XI Professional) allows user-assisted remote attackers to execute arbitrary code via a crafted RPT file.


Stack-based buffer overflow in rcdll.dll in msd

Stack-based | rcdlldll | msdevexe | overflow | Visual | buffer | C++ |

Stack-based buffer overflow in rcdll.dll in msdev.exe in Visual C++ (MSVC) in Microsoft Visual Studio 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a long file path in the "1 TYPELIB MOVEABLE PURE" option in an RC file.


Multiple stack-based buffer overflows in Micros

user-assisted | stack-based | Microsoft | overflows | attackers | Multiple | service | remote | buffer | Visual | denial | cause | Basic | allow |

Multiple stack-based buffer overflows in Microsoft Visual Basic 6 allow user-assisted remote attackers to cause a denial of service (CPU consumption) or execute arbitrary code via a Visual Basic Project (vbp) file with a long (1) Description or (2) Company Name (VersionCompanyName) field.


The NotSafe function in the MSVDTDatabaseDesign

MSVDTDatabaseDesigner7 | Microsoft | VDT70DLL | function | Database | NotSafe | ActiveX | control | Visual | Tools |

The NotSafe function in the MSVDTDatabaseDesigner7 ActiveX control in VDT70.DLL in Microsoft Visual Database Tools (MSVDT) Database Designer 7.0 allows remote attackers to cause a denial of service (Internet Explorer 6 crash) via a long argument.


Stack-based buffer overflow in Visual IRC (ViRC

Stack-based | overflow | Visual | buffer | IRC |

Stack-based buffer overflow in Visual IRC (ViRC) 2.0 allows remote IRC servers to execute arbitrary code via a long response to a JOIN command.


Visual truncation vulnerability in KDE Konquero

vulnerability | truncation | Konqueror | Visual | KDE |

Visual truncation vulnerability in KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar via an http URI with a large amount of whitespace in the user/password portion.


Stack-based buffer overflow in a certain Active

Stack-based | attackers | Microsoft | arbitrary | argument | Database | Designer | overflow | VDT70DLL | certain | execute | NotSafe | ActiveX | control | method | Visual | buffer | Studio | remote | allows | Tools | code | long | via |

Stack-based buffer overflow in a certain ActiveX control in VDT70.DLL in Microsoft Visual Database Tools Database Designer 7.0 for Microsoft Visual Studio 6 allows remote attackers to execute arbitrary code via a long argument to the NotSafe method. NOTE: this may overlap CVE-2007-2885 or CVE-2005-2127.


Buffer overflow in Microsoft Visual Basic 6.0 a

user-assisted | Enterprise | attackers | arbitrary | Microsoft | overflow | Edition | project | execute | remote | Visual | Buffer | allows | Basic | code | SP6 | via |

Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a Visual Basic project (vbp) file containing a long Reference line, related to VBP_Open and OLE. NOTE: there are limited usage scenarios under which this would be a vulnerability.


The FPOLE.OCX 6.0.8450.0 ActiveX control in Mic

FPOLEOCX |

The FPOLE.OCX 6.0.8450.0 ActiveX control in Microsoft Visual FoxPro 6.0 allows remote attackers to execute arbitrary programs by specifying them as an argument to the FoxDoCmd function.


Software vulnerabilities results 1 to 20 of 47     
Page: 123