92 matches found
Easy File Sharing FTP Server 3.5 Buffer Overflow
!/usr/bin/env python Exploit Title: Easy File Sharing FTP Server 3.5 stack buffer overflow Date: 27 May 2014 Exploit Author: superkojiman - http://www.techorganic.com Vulnerability discovered by: h07 CVE: CVE-2006-3952 OSVDB: 27646 Vendor Homepage: http://www.efssoft.com Software Link:...
Easy File Sharing FTP Server 3.5 - Remote Stack Buffer Overflow
!/usr/bin/env python Exploit Title: Easy File Sharing FTP Server 3.5 stack buffer overflow Date: 27 May 2014 Exploit Author: superkojiman - http://www.techorganic.com Vulnerability discovered by: h07 CVE: CVE-2006-3952 OSVDB: 27646 Vendor Homepage: http://www.efssoft.com Software Link:...
CVE-2013-3952
The CVE affects Apple Mac OS X 10.8.x, specifically the XNU kernel’s fill_pipeinfo in bsd/kern/sys_pipe.c. The vulnerability allows local users to defeat KASLR by abusing the PROC_PIDFDPIPEINFO option to the proc_info system call on a kernel pipe handle. Potential impact is exposure of kernel add...
Gentoo Security Advisory GLSA 201210-06 (libav)
The remote host is missing updates announced in advisory GLSA 201210-06. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
CVE-2011-3952
The decodeinit function in kmvc.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a large palette size...
CVE-2011-3952
CVE-2011-3952 affects FFmpeg libavcodec KMVC decoding (decode_init in kmvc.c). According to the initial description, the issue allows a remote attacker to cause a crash (DoS) and possibly execute arbitrary code via a large KMVC palette in a KMVC-encoded file, affecting FFmpeg up to pre-0.10 and L...
Multiple Vulnerabilities in phpList
Advisory ID: HTB23100 Product: phpList Vendor: phpList Ltd Vulnerable Versions: 2.10.18 and probably prior Tested Version: 2.10.18 Vendor Notification: July 11, 2012 Public Disclosure: August 8, 2012 Vulnerability Type: Cross-Site Scripting CWE-79, SQL Injection CWE-89 CVE References:...
CVE-2012-3952
CVE-2012-3952 is an XSS vulnerability in phpList 2.10.18 and earlier, occurring in admin/index.php when the unconfirmed parameter is used (page=user). Exploitation can cause arbitrary HTML/script execution in an administrator’s browser. The related advisory confirms a fixed vendor patch: upgrade ...
phpList 2.10.18 Cross Site Scripting / SQL Injection Vulnerability
Exploit for php platform in category web applications Vendor: phpList Ltd Vulnerable Versions: 2.10.18 and probably prior Tested Version: 2.10.18 Vendor Notification: July 11, 2012 Public Disclosure: August 8, 2012 Vulnerability Type: Cross-Site Scripting CWE-79, SQL Injection CWE-89 CVE...
phpList 2.10.18 Cross Site Scripting / SQL Injection
Advisory ID: HTB23100 Product: phpList Vendor: phpList Ltd Vulnerable Versions: 2.10.18 and probably prior Tested Version: 2.10.18 Vendor Notification: July 11, 2012 Public Disclosure: August 8, 2012 Vulnerability Type: Cross-Site Scripting CWE-79, SQL Injection CWE-89 CVE References:...
CVE-2012-3952
creationtimestamp| type| source ---|---|--- 2012-08-08 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/37590...
Ubuntu Update for ffmpeg USN-1479-1
Ubuntu Update for Linux kernel vulnerabilities USN-1479-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN14791.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for ffmpeg USN-1479-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...
Secunia Research: Microsoft Office FlashPix Tile Data Two Buffer Overflows
====================================================================== Secunia Research 14/12/2010 - Microsoft Office Two FlashPix Tile Data Buffer Overflows - ====================================================================== Table of Contents Affected...
CVE-2010-3952
CVE-2010-3952 : The FlashPix image converter in the Microsoft Office XP SP3 graphics filters and Office Converter Pack is vulnerable to remote code execution/DoS via a crafted FlashPix image in an Office document, caused by a heap memory corruption in the FPX parsing. Impact is arbitrary code exe...
Easy File Sharing FTP Server 2.0 - PASS Overflow (Metasploit)
$Id: easyfilesharingpass.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
CVE-2006-3952
creationtimestamp| type| source ---|---|--- 2010-05-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16742 2014-05-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/33538 2018-05-29 15:50:33+00:00| seen|...
CVE-2009-3952
Adobe Illustrator CVE-2009-3952 is a buffer overflow vulnerability affecting Illustrator CS3 (13.0.3 and earlier) and CS4 (14.0.0). The flaw allows arbitrary code execution through an overflow in handling specific content, with vectors not publicly specified in the provided docs. Public reference...
CVE-2009-3952
Buffer overflow in Adobe Illustrator CS3 13.0.3 and earlier and Illustrator CS4 14.0.0 allows attackers to execute arbitrary code via unspecified vectors...
Secunia Research: Adobe Illustrator Encapsulated Postscript Parsing Vulnerability
====================================================================== Secunia Research 08/01/2010 - Adobe Illustrator Encapsulated Postscript Parsing Vulnerability - ====================================================================== Table of Contents Affected...
Easy File Sharing FTP Server 2.0 PASS Overflow
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Easy File...