97 matches found
Microsoft Internet Explorer 5.0.1 Content Advisor File Handling Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13117/info Microsoft Internet Explorer is prone to a remote buffer overflow vulnerability when handling malformed Content Advisor files. An attacker can exploit this issue by crafting a Content Advisor file with excessive...
bsnes 0.87 - Local Denial of Service
No description provided by source. ?php bsnes v0.87 Local Daniel Of Service Tested on Windows 7 64Bit Software Site: http://byuu.org/bsnes/ Software Download: http://www.emulator-zone.com/download.php/emulators/snes/bsnes/bsnesv087-64bit.7z Author: Pr0T3cT10n bsnes v0.87 is vulnerable to local...
Eznet 3.5.0 - Remote Stack Overflow and Denial of Service Exploit
No description provided by source. !/usr/bin/perl -w Stack Overflow in eZnet.exe - Remote Exploit Will download a trojan from any address which you provide on the target system, then will execute the trojan. For this exploit I have tried several strategies to increase reliability and performance:...
bsnes 0.87 - Local Denial of Service
bsnes 0.87 - Local Denial of Service 'Load NES Catridge' that contains 9999 chars 'A', so bsnes should crash. PoC / Code: $buffer = strrepeat'A', 9999; Create 9999 chars'A'.. iffileputcontents'crash.nes', $buffer echo"File created successfuly.\r\bsnes should crash when you open the file with...
Dolphin 2.0 (.elf) Local Daniel Of Service
Exploit for windows platform in category dos / poc ========================================== Dolphin 2.0 .elf Local Daniel Of Service ========================================== Site: http://www.nullbyte.org.il Dolphin 2.0 is vulnerable to local denial of service attack. When we try to open a fil...
Unfixed XSS vulnerability at www.normateneo.unibo.it
Security researcher trueliarx, has submitted on 18/04/2010 a cross-site-scripting XSS vulnerability affecting www.normateneo.unibo.it, which at the time of submission ranked 9999 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/07/2010. It is...
MySQL MaxDB WebDBM Server Buffer Overflow (CVE-2006-4305)
MaxDB is an open source database application suite developed by MySQL AB that is available for various operating systems. The software bundles an HTTP server component, named Webtool, to provide a web-based application interface. Clients can connect to the Webtool with a web browser and access...
SAPDB Cross Site Scripting
Digital Security Research Group DSecRG Advisory DSECRG-09-016 !!! original advisory !!! http://dsecrg.com/pages/vul/DSECRG-09-016.html Application: SAPDB Versions Affected: Last Vendor URL: http://SAP.com Bugs: XSS Exploits: YES Reported: 20.11.2008 Vendor response: 20.11.2008 Date of Public...
PHP popen()函数缓冲区溢出漏洞
BUGTRAQ ID: 33216 PHP是广泛使用的通用目的脚本语言,特别适合于Web开发,可嵌入到HTML中。 PHP的Popen函数用创建管道的方式启动进程,并调用shell。在打开管道时Popen函数会fork指定的命令参数: popen string $commandtoexecute , string $mode 如果第二个参数超长的话,就可能触发缓冲区溢出,导致执行任意代码。 PHP PHP 5.2.8 PHP PHP 4.2.1 PHP PHP 4.2.0 厂商补丁: PHP ---...
SAP SAPDB (WEB DBM) XSS Vulnerability
Application: SAPDB Versions Affected: Last Vendor URL: Bugs: XSS Exploits: YES Reported: 20.11.2008 Vendor response: 20.11.2008 Date of Public Advisory: 31.03.2009 Description SAP MaxDB Web Database engine which listens port 9999 has a Linked XSS security vulnerability. Business Risk An attacker...
mod_jk2 v2.0.2 for Apache 2.0 Remote Buffer Overflow Exploit (win32)
Exploit for unknown platform in category remote exploits ==================================================================== modjk2 v2.0.2 for Apache 2.0 Remote Buffer Overflow Exploit win32 ==================================================================== / Dreatica-FXP crew...
Apache 2.0 mod_jk2 2.0.2 (Windows x86) - Remote Buffer Overflow
Apache 2.0 modjk2 2.0.2 Windows x86 - Remote Buffer Overflow / Dreatica-FXP crew ---------------------------------------- Target : modjk2 v2.0.2 for Apache 2.0 Win32 Found by : IOActive Security Advisory ---------------------------------------- Exploit : modjk2 v2.0.2 Buffer Overflow Exploit win3...
SAP DB Web server buffer overflow
Buffer overflow in enclosured Web server TCP/9999...
eIQNetworks Enterprise Security Analyzer Monitoring.exe多个缓冲区溢出漏洞
eIQnetworks Enterprise Security Analyzer(ESA)是一款企业级的安全管理平台。 ESA的Monitoring.exe进程中存在两个缓冲区溢出漏洞,远程攻击者可能利用此漏洞在服务器上执行任意指令。 第一个漏洞存在于Monitoring.exe中负责处理TCP 9999端口上用户数据的例程中。如果连接到这个端口,用户就会立即被提示输入口令。这时可以发送HELP命令获得各种命令帮助: --------------------------------------------------------- Usage: QUERYMONITOR: to fetc...
Dabber Worm Detection
W32.Dabber propagates by exploiting a vulnerability in the FTP server component of W32.Sasser.Worm and its variants. It installs a backdoor on infected hosts and tries to listen on port 9898. If the attempt fails, W32Dabber.A tries to listen on ports 9899 through 9999 in sequence until it finds a...
iDEFENSE Security Advisory 04.26.05: MySQL MaxDB Webtool Remote 'If' Stack Overflow Vulnerability
MySQL MaxDB Webtool Remote 'If' Stack Overflow Vulnerability iDEFENSE Security Advisory 04.26.05 www.idefense.com/application/poi/display?id=236&type=vulnerabilities April 26, 2005 I. BACKGROUND MaxDB by MySQL is a re-branded and enhanced version of SAP DB, SAP AG's open source database. MaxDB is...
CVE-2004-9999
...