Opera 10.63 - SVG Animation Element Denial of Service

Exploit Title: Opera Denial of Service by SVG Element Date: 16, October 2010 Author: fla Software Link: http://www.opera.com/ Version: 10.63 and previous Tested on: Ubuntu 10.10 x64, Windows 7 x64...

Fedora Update for lib3ds FEDORA-2010-14644

Check for the Version of lib3ds OpenVAS Vulnerability Test Fedora Update for lib3ds FEDORA-2010-14644 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

Mandriva Update for kdegraphics MDVSA-2010:182 (kdegraphics)

Check for the Version of kdegraphics OpenVAS Vulnerability Test Mandriva Update for kdegraphics MDVSA-2010:182 kdegraphics Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Mandriva Linux Security Advisory : kdegraphics (MDVSA-2010:182)

A vulnerability has been found and corrected in kdegraphics ksvg : Use-after-free vulnerability in the garbage-collection implementation in WebCore in WebKit in Apple Safari before 4.0 allows remote attackers to execute arbitrary code or cause a denial of service heap corruption and application...

Microsoft Windows Live Messenger 14.0.8117 - Animation Remote Denial of Service

Microsoft Windows Live Messenger 14.0.8117 - Animation Remote Denial of Service Exploit Title: Windows Live Messenger for the msnlib library / Original msnbot example that I modded = Description: Windows Live Messenger is prone to a Denial of Service attack. By sending specially crafted messages...

Windows Live Messenger <= 14.0.8117 Animation Remote Denial of Service

Exploit for windows platform in category dos / poc ====================================================================== Windows Live Messenger for the msnlib library / Original msnbot example that I modded = Description: Windows Live Messenger is prone to a Denial of Service attack. By sending...

Microsoft Windows Live Messenger 14.0.8117 - Animation Remote Denial of Service

Exploit Title: Windows Live Messenger for the msnlib library / Original msnbot example that I modded = Description: Windows Live Messenger is prone to a Denial of Service attack. By sending specially crafted messages that contain a large number of animations "Smileys", it is possible to make WLM...

Apple QuickTime FLIC Animation File Buffer Overflow (CVE-2006-4384)

Apple QuickTime is a multimedia player that supports a wide range of media formats. The software supports parsing and displaying picture files as well as numerous audio and video formats. One of the supported video formats is the Autodesk Animator and/or Autodesk Animator Pro format, known as FLI...

Adobe InDesign CS3 INDD File Handling Buffer Overflow

!/usr/bin/perl Adobe InDesign CS3 INDD File Handling Buffer Overflow Vulnerability Vendor: Adobe Systems Inc. Product Web Page: http://www.adobe.com Version tested: CS3 10.0 Summary: Adobe® InDesign® CS3 software provides precise control over typography and built-in creative tools for designing,...

iClone - SQL Injection

1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : iClone SQLi Vulnerability Date : june, 9 2010 Vendor url :http://www.reallusion.com/iclone/ Platform: Windows Price:$199 Author : Sid3^effects aKa HaRi special...

iClone - SQL Injection

iClone - SQL Injection 1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : iClone SQLi Vulnerability Date : june, 9 2010 Vendor url :http://www.reallusion.com/iclone/ Platform: Windows Price:$199 Author :...

iClone SQL Injection Vulnerability

Exploit for php platform in category web applications ================================== iClone SQL Injection Vulnerability ================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1...

Mozilla Firefox libpr0n imgContainer Bits-Per-Pixel Change Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the libpr0n...

Design/Logic Flaw

Use-after-free vulnerability in the imgContainer::InternalAddFrameHelper function in src/imgContainer.cpp in libpr0n in Mozilla Firefox 3.6 before 3.6.2 allows remote attackers to cause a denial of service heap memory corruption and application crash or possibly execute arbitrary code via a...

Blender: Untrusted search path

Background Blender is a 3D Creation/Animation/Publishing System. Description Steffen Joeris reported that Blender's BPYinterface calls PySysSetArgv in such a way that Python prepends sys.path with an empty string. Impact A local attacker could entice a user to run "blender" from a directory...

Western Digital ODAY through the kill vulnerability-vulnerability warning-the black bar safety net

Western Digital ODAY through the kill vulnerability Speak directly to use of the method. In the registered members,“the applicant name in Chinese”here written on the "Chinese',utype='1 1 1 1 1 1"Note, does not include outside of the double quotation marks. Else as usual, and then register...

Internet Explorer Daxctle.OCX KeyFrame Method Heap Buffer Overflow Vulnerability

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3...

Autodesk Maya脚本节点文件远程代码执行漏洞

BUGTRAQ ID: 36636 CVE ID: CVE-2009-3578 Maya是一款高端的3D计算机图形和3D建模软件包。 Maya提供了被称为“脚本节点”的方式用于使用MEL（Maya的专有编程语言）和Python对动画行为进行编程。脚本节点保存为.mb和.ma文件格式。通过使用嵌入有脚本节点的特制文件，用户打开恶意的场景文件后就会无需任何干涉便可执行任意命令。 Autodesk Maya 8.5 Autodesk Maya 8.0 Autodesk Maya 2010 Autodesk Maya 2009 Autodesk Maya 2008 临时解决方法：...

Autodesk Maya Script - Nodes Arbitrary Command Execution

Autodesk Maya Script - Nodes Arbitrary Command Execution -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Autodesk Maya Script Nodes Arbitrary Command Execution 1. Advisory Information Title: Autodesk Maya Script...

Microsoft Silverlight Detection

A version of Microsoft's Silverlight is installed on this host. Microsoft Silverlight is a web application framework that provides functionalities similar to those in Adobe Flash, integrating multimedia, graphics, animations and interactivity into a single runtime environment. C Tenable Network...