Microsoft Windows Malformed RTF Handling Code Execution (MS07-011; CVE-2006-1311; CVE-2007-0025; CVE-2007-0026)

Rich Text Format RTF provides a format for text and graphics interchange that can be used with different operating systems. OLE is the technology that applications use to create and edit compound documents. By using OLE technology, an application can provide embedding and linking support. By...

perForms Mambo Component <= 1.0 Remote File Inclusion

No description provided by source. ------------------------------------------------------------------------ --- perForms = 1.0 mosConfigabsolutepath Remote File Inclusion ------------------------------------------------------------------------ --- Remote : Yes Critical Level : High Vuln founded i...

Microsoft HTML Help Workshop - .hhp Local Buffer Overflow (3)

Microsoft HTML Help Workshop - .hhp Local Buffer Overflow 3 / \ Windows HTML Help Workshop Index File Stack Overflow Exploit / by Darkeagle \ / http://eagle.blacksecurity.org \ / MS coders codes so secure code. Keep coding : \ / Original Advisory:...

DSA-911-1 gtk+2.0 - several

Bulletin has no description...

linux/SPARC connect back 216 bytes

Exploit for linux/sparc platform in category shellcode ================================== linux/SPARC connect back 216 bytes ================================== / linux sparc connect back shellcode, because someone had to evade those firewalls. sigh / / OS : Linux Architecture : Sparc Type : Conne...

ADVISORY: ASPDOTNETSTOREFRONT Improper Upload Validation

ASPDOTNETSTOREFRONT Improper Upload Validation Release Date: June 9, 2004 Severity: HIGH Vendor: AspDotNetStorefront.com A Division of Discovery Productions, Inc. Software: Tested on AspDotNetStorefront 3.3 Previous versions may also be affected. Remote: Remotely executed from any web browser...

DoS in Rsniff 1.0

Luigi Auriemma Application: RSniff Remote Sniff http://www.cse.sc.edu/madamanc/projects.html Versions: 1.0 Platforms: Linux Bug: Denial of Service Risk: low Exploitation: remote Date: 09 Apr 2004 Author: Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org 1 Introduction...

Uncommented shell characters in multiple IRC bots

No description provided...

Дырка в Prospero 1.3.5 CGI

Многочисленные локальные дырки, недостаточно длинные пин-коды и т.д...

Check Point Software Firewall-1 3.0/1 4.0/1 4.1 - Session Agent Dictionary Attack (1)

source: https://www.securityfocus.com/bid/1662/info A vulnerability exists in all versions of the Check Point Session Agent, part of Firewall-1. Session Agent works in such a way that the firewall will establish a connection back to the client machine. Upon doing so, it will prompt for a username...

imapd4r1 v12.264

Newest RH: OK nimue IMAP4rev1 v12.264 server ready 1 login lcamtuf test 1 OK LOGIN completed 1 list "" AAAAAAAAAAAAAAAAAAAAAAAAAAA...yes, a lot of 'A's ; Program received signal SIGSEGV, Segmentation fault. 0x41414141 in ?? sigh Privledges seems to be dropped, but, anyway, it's nice way to get...

Security Update for Microsoft Office XP (KB957797)

A security vulnerability exists in Microsoft Office XP that could allow arbitrary code to run when you visit a maliciously modified web page. This update resolves that vulnerability...