Skip to main content

Security Bulletin

Filter by:

RISK: Medium Risk

Medium Risk

Microsoft PowerPoint Multiple Vulnerabilities( 13 August 2008 )

1. Memory Allocation VulnerabilityA remote code execution vulnerability exists in the way that Microsoft Office PowerPoint Viewer 2003 handles specially crafted PowerPoint files. An attacker could exploit the vulnerability by creating a specially crafted PowerPoint file that could be included as an e-mail attachment, or...
Last Update Date: 28 Jan 2011 Release Date: 13 Aug 2008 5478 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows Event System Vulnerability( 13 August 2008 )

1. Event System VulnerabilityA remote code execution vulnerability exists because the Microsoft Windows Event System does not correctly validate user subscriptions requests when created. The vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could take complete control of an affected system. ...
Last Update Date: 28 Jan 2011 Release Date: 13 Aug 2008 5433 Views

RISK: Medium Risk

Medium Risk

Microsoft Office Filters Multiple Vulnerabilities( 13 August 2008 )

1. Microsoft Malformed EPS Filter VulnerabilityA remote code execution vulnerability exists in the way that a Microsoft Office filter handles a malformed graphics image. An attacker could exploit the vulnerability by constructing a specially crafted Encapsulated PostScript (EPS) file that could allow remote code execution if...
Last Update Date: 28 Jan 2011 Release Date: 13 Aug 2008 5490 Views

RISK: Medium Risk

Medium Risk

Microsoft Outlook Express and Windows Mail URL Parsing Cross-Domain Information Disclosure Vulnerability( 13 August 2008 )

An information disclosure vulnerability exists in Outlook Express and Windows Mail because the MHTML protocol handler incorrectly interprets MHTML URL redirections that could potentially bypass Internet Explorer domain restrictions when returning MHTML content. An attacker could exploit the vulnerability by constructing a specially crafted Web page. If the...
Last Update Date: 28 Jan 2011 Release Date: 13 Aug 2008 5457 Views

RISK: Medium Risk

Medium Risk

Microsoft Access Snapshot Viewer Arbitrary File Download Vulnerability( 13 August 2008 )

A remote code execution vulnerability exists in the ActiveX control for the Snapshot Viewer for Microsoft Access. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker...
Last Update Date: 28 Jan 2011 Release Date: 13 Aug 2008 5639 Views

RISK: Medium Risk

Medium Risk

Microsoft Excel Multiple Vulnerabilities( 13 August 2008 )

1. Excel Indexing Validation VulnerabilityA remote code execution vulnerability exists in the way Excel processes index values when loading Excel files into memory. An attacker could exploit the vulnerability by opening a specially crafted file which could be hosted on a Web site, or included as an...
Last Update Date: 28 Jan 2011 Release Date: 13 Aug 2008 5536 Views

RISK: Medium Risk

Medium Risk

Microsoft Internet Explorer Multiple Vulnerabilities( 13 August 2008 )

1. HTML Objects Memory Corruption VulnerabilityA remote code execution vulnerability exists in Internet Explorer due to attempts to access uninitialized memory in certain situations. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability...
Last Update Date: 28 Jan 2011 Release Date: 13 Aug 2008 5507 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows Messenger Information Disclosure Vulnerability( 13 August 2008 )

An information disclosure vulnerability exists in supported versions of Windows Messenger. Scripting of a particular ActiveX control, Messenger.UIAutomation.1, could allow information disclosure from these programs in the context of the logged-on user. An attacker could change state, get contact...
Last Update Date: 28 Jan 2011 Release Date: 13 Aug 2008 5582 Views

RISK: Medium Risk

Medium Risk

Sun Solaris "snoop" Utility Remote Command Execution Vulnerability

A vulnerability has been identified in Sun Solaris, which could be exploited by remote attackers to compromise a vulnerable system. This issue is caused by unspecified errors in the "snoop" network utility when displaying SMB traffic, which may allow a remote attacker to execute arbitrary...
Last Update Date: 28 Jan 2011 Release Date: 7 Aug 2008 5815 Views

RISK: Medium Risk

Medium Risk

CA ARCserve Backup LGServer Service Vulnerability

A vulnerability has been identified in CA ARCserve Backup for Laptops and Desktops, CA Desktop Management Suite and CA Protection Suites, which could be exploited by attackers to cause a denial of service or compromise a vulnerable system. This issue is caused by an integer underflow error...
Last Update Date: 28 Jan 2011 Release Date: 5 Aug 2008 5742 Views