Rafe 7 Insecure Library Loading Vulnerability



A vulnerability has been discovered in Rafe 7, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to the application loading libraries in an insecure manner.
Libraries list called is as follows:
? idapi32.dll
? idbat32.dll
? idr20009.dll
? idsql32.dll
? odbc32.dll
This can be exploited to load arbitrary libraries by tricking a user into e.g. opening a HTML file located on a remote WebDAV or SMB share.
Successful exploitation allows execution of arbitrary code.
The vulnerability is confirmed in Rafeh version 7 for Microsoft Windows XP Service Pack 3.
Other versions may also be affected.



Relevant Pages

  • Sahar Money Manager Insecure Library Loading Vulnerability
    ... A vulnerability has been discovered in Sahar Money Manager, which can be exploited by malicious people to compromise a user's system. ... The vulnerability is caused due to the application loading libraries in an insecure manner. ... This can be exploited to load arbitrary libraries by tricking a user into e.g. opening a HTML file located on a remote WebDAV or SMB share. ... Successful exploitation allows execution of arbitrary code. ...
    (Bugtraq)
  • WinMerge Insecure Library Loading Vulnerability
    ... A vulnerability has been discovered in WinMerge,which can be exploited by malicious people to compromise a user's system. ... The vulnerability is caused due to the application loading libraries in an insecure manner. ... This can be exploited to load arbitrary libraries by tricking a user into e.g. opening a HTML file located on a remote WebDAV or SMB share. ... Successful exploitation allows execution of arbitrary code. ...
    (Bugtraq)
  • [NT] Ipswitch IMail IMAP Vulnerabilities (Multiple Buffer Overflow, Multiple DoS, Directory Traversa
    ... A directory Traversal vulnerability also was found, ... attackers to remotely view files on the server. ... Remote exploitation of a denial of service vulnerability in Ipswitch ...
    (Securiteam)
  • [NEWS] OpenSSH Challenge-Response Buffer Overflow (Update)
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... the platforms on which this vulnerability may be exploited. ... their platforms invulnerable to exploitation. ... Mandrake Secure Linux: ...
    (Securiteam)
  • Re: [Full-disclosure] [CVE-2014-1860] PHP object insertion / possible RCE in Contao CMS
    ... just because his PHP exploitation skills are better ... apologies for doubting about the validity of your report. ... Since conclusively proving that a vulnerability is 100% not exploitable ... Input::xssCleanmethod because she can also use a string like this: ...
    (Full-Disclosure)