Zahir Enterprise Plus 6 Stack Buffer Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Zahir Enterprise Plus 6 Stack Buffer Overflow", 'Description' = %q This module exploits a stack buffer overflow in Zahir Enterprise Plus version ...

Zahir Enterprise Plus 6 Stack Buffer Overflow

This module exploits a stack buffer overflow in Zahir Enterprise Plus version 6 build 10b and below. The vulnerability is triggered when opening a CSV file containing CR/LF and overly long string characters via Import from other File. This results in overwriting a structured exception handler...

Allok Video to DVD Burner Buffer Overflow (SEH) Vulnerability

Allok Video to DVD Burner is a simple and professional DVD authoring software that allows you to convert all your favorite movies to DVD movies and burn them to DVD discs, then watch them on your home DVD player, car DVD player or any other portable DVD player. A buffer overflow SEH vulnerability...

CVE-2017-9544

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/easychatserverseh.rb 2025-10-23 21:12:58+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...

CVE-2018-10655

DLPnpAuditor.exe in DeviceLock Plug and Play Auditor freeware 5.72 has a Unicode Buffer Overflow SEH...

LCDS - Leão Consultoria e Desenvolvimento de Sistemas Ltda ME LAquis SCADA

1. EXECUTIVE SUMMARY CVSS v3 7.0 Vendor : LCDS - Leão Consultoria e Desenvolvimento de Sistemas LTDA ME Equipment : LAquis SCADA Vulnerability : Improper Check or Handling of Exceptional Conditions 2. RISK EVALUATION Successful exploitation of this vulnerability could cause the device an attacker...

Windows Kernel 64-bit stack memory disclosure in nt!KiDispatchException(CVE-2018-0897)

We have discovered a new Windows kernel memory disclosure vulnerability in the creation and copying of a EXCEPTIONRECORD structure to user-mode memory while passing execution to a user-mode exception handler. The vulnerability affects 64-bit versions of Windows 7 to 10. The leak was originally...

Intel Content Protection HECI Service - Type Confusion Privilege Escalation Exploit

Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1358 Intel Content Protection HECI Service Type Confusion EoP Platform: Tested on Windows 10, service version 9.0.2.117 Class: Elevation of Privilege Summary: The Intel Content...

FreeBSD : phpmailer -- XSS in code example and default exeception handler (c5d79773-8801-11e7-93f7-d43d7e971a1b)

PHPMailer reports : Fix XSS vulnerability in one of the code examples, CVE-2017-11503. The codegenerator.phps example did not filter user input prior to output. This file is distributed with a .phps extension, so it it not normally executable unless it is explicitly renamed, so it is safe by...

phpmailer -- XSS in code example and default exeception handler

PHPMailer reports: Fix XSS vulnerability in one of the code examples, CVE-2017-11503. The codegenerator.phps example did not filter user input prior to output. This file is distributed with a .phps extension, so it it not normally executable unless it is explicitly renamed, so it is safe by...

XSS vulnerability in code example

SECURITY Fix XSS vulnerability in one of the code examples, CVE-2017-11503. The codegenerator.phps example did not filter user input prior to output. This file is distributed with a .phps extension, so it it not normally executable unless it is explicitly renamed, so it is safe by default. There...

UBUNTU-CVE-2016-6347

Cross-site scripting XSS vulnerability in the default exception handler in RESTEasy allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2016-6347

It was found that the default exception handler in RESTEasy did not properly validate user input. An attacker could use this flaw to launch a relected XSS attack...

Stack Buffer Overflow Vulnerability in PhotoLine's Handling of GIF Images

PhotoLine is a professional image editing software from Germany. The software suffers from a stack buffer overflow vulnerability when processing the GIF format. An attacker can exploit the vulnerability to flood the SEH chain table, resulting in arbitrary code execution...

Adobe Flash - textfield Constructor Type Confusion

Adobe Flash - textfield Constructor Type Confusion Source: https://code.google.com/p/google-security-research/issues/detail?id=701 There is a type confusion vulnerability in the TextField constructor in AS3. When a TextField is constructed, a generic backing object is created and reused when...

LanSpy 2.0.0.155 - Buffer Overflow Exploit

Exploit for windows platform in category dos / poc ''' + Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-LANSPY-BUFFER-OVERFLOW-10052015.txt Vendor: ================================ www.lantricks.com Product:...

Filezilla Client - SEH Buffer Overflow Vulnerability

FileZilla Client is a free FTP client software. A buffer overflow vulnerability exists in Filezilla Client - SEH. An attacker can exploit the vulnerability to perform a task vulnerability...

Buffer Overflow in My Wifi Router Software

Hi there, I have seen a buffer overflow in My Wifi Router software version 1.0 The link of the software is available :- http://mywifirouter.software.informer.com/1.0/ Exploit :- After running the software you will see two places to enter details i.e "Hotspot Name" and "Password". To exploit this...

CCMPlayer-1.5-Stack-based

Exploit: CCMPlayer 1.5 Stack based Buffer Overflow SEH Exploit .m3u Date: 30 Nov 2011 Author: Rh0 Software: CCMPlayer 1.5 m3u = "C:\" shellcode m3u p/p/r m3u Songs - Add - Files of type: m3u - msf.m3u = exploit filecreatem3u...

RM Downloader .m3u BOF (SEH)

No description provided by source. !/usr/bin/perl -w Author: Jacky Version: 3.0.2.1 Tested on: Windows XP SP2 RM Downloader m3u Buffer Overflow SEH Perl Edition Discovered by :: Peter Van Eeckhoutte VERY BIG GREETZ TO HIM ;- Written by Jacky All Greetz for Peter Van Eeckhoutte and Corelan Team !!...