|
|
| |
 |
|
 |
|
|
|
 |
Microsoft Windows "MsgBox()" HLP File Execution Vulnerability  |
| |
(05 March 2010) |
| |
Maurycy Prodeus has discovered a vulnerability in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to the VBScript "MsgBox()" function allowing the execution of arbitrary HLP files. This can be exploited to execute an HLP file from e.g. an SMB share by tricking a user into pressing F1 when viewing a specially crafted website.
Successful exploitation allows execution of arbitrary commands via HLP macros.
The vulnerability is confirmed with Internet Explorer 7 on a fully patched Windows XP SP3, and additionally reported in Windows 2000 and Windows Server 2003.
Click here to read more |
| |
|
 |
Google Picasa JPEG Processing Integer Overflow Vulnerability |
| |
(26 February 2010) |
| |
Tielei Wang has discovered a vulnerability in Google Picasa, which can be exploited by malicious people to potentially compromise a user's system.
The vulnerability is caused due to an integer overflow error in
PicasaPhotoViewer.exe when processing JPEG files. This can be exploited to cause a heap-based buffer overflow by tricking a user into opening a specially crafted JPEG file and e.g. zooming in.
Successful exploitation may allow execution of arbitrary code.
The vulnerability is confirmed in PicasaPhotoViewer.exe version 3.6.95.25, included in Google Picasa 3.6 build 95.25. Prior versions may also be affected.
Click here to read more
|
| |
|
| |
more... |
| |
|
|
|
|
News & Events |
| |
|
|
| |
|
| |
|
|
Virus Alert |
|
|
|