CVE-2015-6929

Multiple cross-site scripting XSS vulnerabilities in Nokia Networks formerly Nokia Solutions and Networks and Nokia Siemens Networks @vantage Commander allow remote attackers to inject arbitrary web script or HTML via the 1 idFilter or 2 nameFilter parameter to cftraces/filter/flcopy.jsp; the 3...

CVE-2015-6929

Technical details (affected products/versions, root cause, impact, or fixes) are not publicly available in the provided connected documents. Monitor for updates from official advisories and vendor notices to confirm scope and remediation.

Total Commander 8.52 - SEH Overwrite Buffer Overflow Exploit

Exploit for windows platform in category local exploits ''' Exploit Title: Total Commander 32bit SEH Overwrite. Date: 8/27/2015 Exploit Author: UnN0n Software Vendor: http://www.ghisler.com/ Software Link: http://www.ghisler.com/download.htm Version: 8.52 Tested on: Windows 8 x6464 BIT Info: EAX...

Total Commander 8.52 - Overwrite Buffer Overflow (SEH)

''' Exploit Title: Total Commander 32bit SEH Overwrite. Date: 8/27/2015 Exploit Author: UnN0n Software Vendor: http://www.ghisler.com/ Software Link: http://www.ghisler.com/download.htm Version: 8.52 Tested on: Windows 8 x6464 BIT Info: EAX 00106541 ECX FFFFFEFA EDX 0031E941 EBX 04921F64 ESP...

Total Commander 8.52 - Overwrite Buffer Overflow (SEH)

Total Commander 8.52 - Overwrite Buffer Overflow SEH ''' Exploit Title: Total Commander 32bit SEH Overwrite. Date: 8/27/2015 Exploit Author: UnN0n Software Vendor: http://www.ghisler.com/ Software Link: http://www.ghisler.com/download.htm Version: 8.52 Tested on: Windows 8 x6464 BIT Info: EAX...

Mpxplay MultiMedia Commander 2.00a - .m3u Stack Buffer Overflow (PoC)

Mpxplay MultiMedia Commander 2.00a - .m3u Stack Buffer Overflow PoC Exploit Title: Mpxplay Multimedia Commander Stack-based BOF Date: 9/1/2015 Exploit Author: UnN0n Software Link: http://sourceforge.net/p/mpxplay/activity?source=projectactivity Version: V2.00a Tested on: Windows 7 x8632 BIT Steps...

Mpxplay MultiMedia Commander 2.00a - '.m3u' Stack Buffer Overflow (PoC)

Exploit Title: Mpxplay Multimedia Commander Stack-based BOF Date: 9/1/2015 Exploit Author: UnN0n Software Link: http://sourceforge.net/p/mpxplay/activity?source=projectactivity Version: V2.00a Tested on: Windows 7 x8632 BIT Steps to Produce the Crash: 1- open 'mpxpmmc.exe'. 2- Browser Crash.m3u i...

FTP Commander 8.02 Buffer Overflow

Exploit Title: FTP Commander 'Costum Command' SEH Over-WriteBuffer Overflow. Date: 8/17/2015 Exploit Author: UnN0n Software Vendor : http://www.internet-soft.com/ Software Link: http://www.internet-soft.com/ftpcomm.htm Version: 8.02 Tested on: Windows 7 x3232 BIT Steps to Produce the Crash: 1- op...

FTP Commander 8.02 - Overwrite (SEH)

FTP Commander 8.02 - Overwrite SEH Exploit Title: FTP Commander 'Costum Command' SEH Over-WriteBuffer Overflow. Date: 8/17/2015 Exploit Author: UnN0n Software Vendor : http://www.internet-soft.com/ Software Link: http://www.internet-soft.com/ftpcomm.htm Version: 8.02 Tested on: Windows 7 x3232 BI...

FTP Commander 8.02 - Overwrite (SEH)

Exploit Title: FTP Commander 'Costum Command' SEH Over-WriteBuffer Overflow. Date: 8/17/2015 Exploit Author: UnN0n Software Vendor : http://www.internet-soft.com/ Software Link: http://www.internet-soft.com/ftpcomm.htm Version: 8.02 Tested on: Windows 7 x3232 BIT Steps to Produce the Crash: 1- op...

Ghisler Total Commander FileInfo plugin Denial of Service Vulnerability

Ghisler Total Commander formerly Windows Commander is a suite of disk file management software from the Swiss company Ghisler that replaces Explorer.File Info is one of the file information plug-ins. A security vulnerability exists in the Ghisler Total Commander File Info plug-in. A remote attack...

Out-of-bounds

The FileInfo plugin before 2.22 for Ghisler Total Commander allows remote attackers to cause a denial of service out-of-bounds read and application crash via 1 a large Size value in the Archive Member Header of a COFF Archive Library file, 2 a large Number Of Symbols value in the 1st Linker Membe...

CVE-2015-2869

The FileInfo plugin before 2.22 for Ghisler Total Commander allows remote attackers to cause a denial of service out-of-bounds read and application crash via 1 a large Size value in the Archive Member Header of a COFF Archive Library file, 2 a large Number Of Symbols value in the 1st Linker Membe...

CVE-2015-2869

The FileInfo plugin before 2.22 for Ghisler Total Commander allows remote attackers to cause a denial of service out-of-bounds read and application crash via 1 a large Size value in the Archive Member Header of a COFF Archive Library file, 2 a large Number Of Symbols value in the 1st Linker Membe...

CVE-2015-2869

Affected software: Total Commander FileInfo plugin (version 2.21 affected, fixed in 2.22 per TALOS report). Vulnerability type: Out‑of‑bounds read leading to denial of service and possible application termination. Root cause: Attacker-controlled fields in COFF Archive and LE structures (Archive M...

Total Commander File Info plugin vulnerable to denial of service via an out-of-bounds read

Overview Total Commander's File Info plugin version 2.21 attempts an out-of-bounds read when reading a file carefully crafted by an attacker. Description CWE-125: Out-of-bounds Read - CVE-2015-2869An attacker that can control the contents of certain file types may be able to cause an out-of-bound...

Total Commander FileInfo Plugin Multiple Denial of Service Vulnerabilities

Talos Vulnerability Report TALOS-2015-0024 Total Commander FileInfo Plugin Multiple Denial of Service Vulnerabilities July 16, 2015 CVE Number CVE-2015-2869 Description Multiple exploitable denial of service vulnerabilities exist in the FileInfo Plugin for Total Commander. An attacker who can...

Memory Corruption Vulnerability in Ashampoo Photo Commander's BMP Image Processing

Ashampoo Photo Commander Free is a photo management software from Germany. A memory corruption vulnerability exists in Ashampoo Photo Commander's handling of BMP images, allowing attackers to exploit the vulnerability to parse malformed programs and cause the application to crash...

Memory Corruption Vulnerability in Ashampoo Photo Commander's Handling of ICO Images

Ashampoo Photo Commander Free is a photo management software from Germany. Ashampoo Photo Commander handles ICO images with logical errors that allow attackers to exploit vulnerabilities to parse malformed programs and cause the application to crash...

Memory Corruption Vulnerability in Ashampoo Photo Commander's PCX Image Processing

Ashampoo Photo Commander Free is a photo management software from Germany. A memory corruption vulnerability exists in Ashampoo Photo Commander's logic for handling PCX images, which allows attackers to exploit the vulnerability to parse malformed pcx samples and cause the application to crash...