[CLOSE] OSVDB ID : 83903 - Disclosed: 2012-07-17

Description:

Oracle Outside In Technology is prone to an overflow condition. The JP2 stream filter (vsjp2.dll) fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted JPEG2000 file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 83904 - Disclosed: 2012-07-17

Description:

Oracle Outside In Technology is prone to an overflow condition. The LWPAPIN.DLL module fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted Lotus WordPro file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 83905 - Disclosed: 2012-07-17

Description:

Oracle Outside In Technology is prone to an overflow condition. The Outside In Filters subcomponent fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted ODG file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 83906 - Disclosed: 2012-07-17

Description:

Oracle Outside In Technology is prone to an overflow condition. The Outside In Filters subcomponent fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted PCX file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 83907 - Disclosed: 2012-07-17

Description:

Oracle Outside In Technology is prone to an overflow condition. The Outside In Filters subcomponent fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted PDF file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 83944 - Disclosed: 2012-07-17

Description:

Oracle Outside In Technology is prone to an overflow condition. The Outside In Filters subcomponent fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted SAM file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 83908 - Disclosed: 2012-07-17

Description:

Oracle Outside In Technology is prone to an overflow condition. The Outside In Filters subcomponent fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted SXD file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 83909 - Disclosed: 2012-07-17

Description:

Oracle Outside In Technology is prone to an overflow condition. The Outside In Filters subcomponent fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted SXI file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 83910 - Disclosed: 2012-07-17

Description:

Oracle Outside In Technology is prone to an overflow condition. The Outside In Filters subcomponent fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted VSD file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 83911 - Disclosed: 2012-07-17

Description:

Oracle Outside In Technology is prone to an overflow condition. The Outside In Filters subcomponent fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted WSD file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 83657 - Disclosed: 2012-07-10

Description:

Microsoft Windows contains a flaw that may allow an attacker to execute arbitrary code. The issue is due to the way Microsoft Data Access Components access an object in memory that has not been properly initialized, related to ADO Cachesize management. An attacker could lure a victim to a site with a specially crafted web page, where the issue can be exploited via browser.

[CLOSE] OSVDB ID : 83654 - Disclosed: 2012-07-10

Description:

Microsoft Office for Mac contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered due to the installation folder having weak permissions, allowing a local attacker to replace binaries with malicious copies. When a user or administrator executes the alternate binary, the attacker's code will run with the same privileges as the user executing the program. This can be leveraged to take control of a system.

[CLOSE] OSVDB ID : 83656 - Disclosed: 2012-07-10

Description:

Microsoft Windows contains a flaw related to the handling of file and directory names. The issue is triggered when a user is tricked into opening a specially crafted file or directory name, which may lead to arbitrary code execution. No further details have been provided.

[CLOSE] OSVDB ID : 83660 - Disclosed: 2012-07-10

Description:

Microsoft Windows contains a flaw related to the Transport Layer Security (TLS) Handshake Protocol when the Cipher-block chaining (CBC) mode of operation is used. This flaw may allow a remote attacker to gain access to decrypted traffic (e.g. HTTPS-based transmissions between web server and web browser). No further details have been provided. Note: This vulnerability affects the TLS protocol itself and is not specific to the Windows operating system.

[CLOSE] OSVDB ID : 83653 - Disclosed: 2012-07-10

Description:

Microsoft IE contains a flaw that may allow a context-dependent attacker to execute arbitrary code. The issue is due to how MSIE handles cached objects that have been deleted. Using a specially crafted web page, if an attacker lures a victim to a web site, arbitrary code can be executed in the context of the victim's web browser (typically SYSTEM privileges).

[CLOSE] OSVDB ID : 83652 - Disclosed: 2012-07-10

Description:

Microsoft Internet Explorer contains a flaw that may allow a context-dependent attacker to execute arbitrary code. The issue is due to how MSIE handles attribute removal of deleted objects. Using a specially crafted web page, if an attacker lures a victim to a web site, arbitrary code can be executed in the context of the victim's web browser (typically SYSTEM privileges).

[CLOSE] OSVDB ID : 83659 - Disclosed: 2012-07-10

Description:

Microsoft Windows contains a flaw related to the win32k.sys kernel-mode driver. The issue is due to the handling of keyboard layouts. This may allow a local attacker to execute arbitrary code in the context of another user or administrator, resulting in full control of the Windows system.

[CLOSE] OSVDB ID : 83650 - Disclosed: 2012-07-10

Description:

Microsoft SharePoint contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate unspecified parameters upon submission to the scriptesx.ashx script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 83649 - Disclosed: 2012-07-10

Description:

Microsoft SharePoint contains a flaw that may lead to an unauthorized information disclosure. The issue is related to the way SharePoint stores search scopes. Through unspecified means, an attacker could view or manipulate other users' search scope. No further details have been provided.

[CLOSE] OSVDB ID : 83647 - Disclosed: 2012-07-10

Description:

Microsoft SharePoint (also shipped with other products) contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the Username upon submission to the server or unspecified script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 83648 - Disclosed: 2012-07-10

Description:

Microsoft SharePoint contains a flaw that allows a remote cross site redirection attack. This flaw exists because the application does not validate an unspecified parameter upon submission to an unspecified script. This could allow a user to create a specially crafted URL, that if clicked, would redirect a victim from the intended legitimate web site to an arbitrary web site of the attacker's choosing. Such attacks are useful as the crafted URL initially appear to be a web page of a trusted site. This could be leveraged to direct an unsuspecting user to a web page containing attacks that target client side software such as a web browser or document rendering programs.

[CLOSE] OSVDB ID : 83651 - Disclosed: 2012-07-10

Description:

Microsoft SharePoint contains a flaw that allows a remote reflected cross-site scripting (XSS) attack. This flaw exists because the application does not validate an unspecified list parameter upon submission to an unspecified script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 83658 - Disclosed: 2012-07-10

Description:

Microsoft Windows contains a flaw related to the win32k.sys kernel-mode driver. The issue is due to the handling of hook procedure creation and improperly validating parameters passed during the process. This may allow a local attacker to execute arbitrary code in the context of another user or administrator, resulting in full control of the Windows system.

[CLOSE] OSVDB ID : 83655 - Disclosed: 2012-07-10

Description:

Microsoft Visual Basic for Applications is prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows a local attacker to inject custom code that will be run with the privilege of the program or user executing the program. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source. This can be done by tricking a user into opening a .docx file from the local file system or a USB drive in some cases. This attack scenario is certainly possible, but rare.

[CLOSE] OSVDB ID : 82873 - Disclosed: 2012-06-13

Description:

A memory corruption flaw exists in Microsoft XML Core Services. The issue is due to MSXML attempting to access an object in memory that has not been initialized, resulting in memory corruption. With a specially crafted web page, a context dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 82862 - Disclosed: 2012-06-12

Description:

Microsoft Internet Explroer contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input when encoding EUC-JP characters. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82860 - Disclosed: 2012-06-12

Description:

A memory corruption flaw exists in Microsoft Internet Explorer. The program fails to sanitize user-supplied input when handling a center element, resulting in memory corruption. With a specially crafted web page which accesses a deleted object, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 82864 - Disclosed: 2012-06-12

Description:

A memory corruption flaw exists in Microsoft Internet Explorer. The developer toolbar fails to sanitize user-supplied input which accesses deleted objects, resulting in memory corruption. With a specially crafted web page, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 82872 - Disclosed: 2012-06-12

Description:

Microsoft Internet Explorer contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an error occurs during the handling of scrolling events, which will disclose information across security domains.

[CLOSE] OSVDB ID : 82859 - Disclosed: 2012-06-12

Description:

A memory corruption flaw exists in Microsoft .NET Framework. The framework fails to sanitize user-supplied input when handling function pointers resulting in memory corruption. With a specially crafted web page, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 82851 - Disclosed: 2012-06-12

Description:

Microsoft Windows contains a flaw that is triggered by the way the Remote Desktop Protocol handles memory objects that have been improperly initialized or deleted. This may allow a remote attacker to potentially execute arbitrary code.

[CLOSE] OSVDB ID : 82863 - Disclosed: 2012-06-12

Description:

Microsoft Internet Explorer contains a flaw that may lead to an unauthorized information disclosure. This issue is due to null byte handling and may allow a remote attacker to gain access to process memory. No further details have been provided.

[CLOSE] OSVDB ID : 82867 - Disclosed: 2012-06-12

Description:

A memory corruption flaw exists in Microsoft Internet Explorer. The program fails to sanitize user-supplied input when handling the Title element, resulting in memory corruption. With a specially crafted web page which accesses a deleted object, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 82868 - Disclosed: 2012-06-12

Description:

A memory corruption flaw exists in Microsoft Internet Explorer. The program fails to sanitize user-supplied input when handling the OnBeforeDeactivate event, resulting in memory corruption. With a specially crafted web page which accesses a deleted object, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 82869 - Disclosed: 2012-06-12

Description:

A memory corruption flaw exists in Microsoft Internet Explorer. The program fails to sanitize user-supplied input when handling insertAdjacentText elements, resulting in memory corruption. With a specially crafted web page which accesses a deleted object, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 82870 - Disclosed: 2012-06-12

Description:

A memory corruption flaw exists in Microsoft Internet Explorer. The program encounters a use-after-free error when handling insertRow elements, resulting in memory corruption. With a specially crafted web page which accesses a deleted object, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 82871 - Disclosed: 2012-06-12

Description:

A memory corruption flaw exists in Microsoft Internet Explorer. The program fails to sanitize user-supplied input when handling OnRowsInserted elements, resulting in memory corruption. With a specially crafted web page which accesses a deleted object, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 82855 - Disclosed: 2012-06-12

Description:

Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when an error occurs in win32k.sys when handling string atom class names, allowing a local attacker to gain elevated privileges. No further details have been provided.

[CLOSE] OSVDB ID : 82852 - Disclosed: 2012-06-12

Description:

Microsoft Lync is prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows a local attacker to inject custom code that will be run with the privilege of the program or user executing the program. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source. This can be done by tricking a user into opening an unspecified file from the local file system or a USB drive in some cases. This attack scenario is certainly possible, but rare.

[CLOSE] OSVDB ID : 82849 - Disclosed: 2012-06-12

Description:

Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered by an error in the way that BIOS memory is handled. This may allow a local attacker to execute arbitrary code with kernel-mode privileges.