CVE-2012-2112

Cross-site scripting XSS vulnerability in the Exception Handler in TYPO3 4.4.x before 4.4.15, 4.5.x before 4.5.15, 4.6.x before 4.6.8, and 4.7 allows remote attackers to inject arbitrary web script or HTML via exception messages...

Cross site scripting

Cross-site scripting XSS vulnerability in the Exception Handler in TYPO3 4.4.x before 4.4.15, 4.5.x before 4.5.15, 4.6.x before 4.6.8, and 4.7 allows remote attackers to inject arbitrary web script or HTML via exception messages...

FreeBSD : typo -- XSS (67516177-88ec-11e1-9a10-0023ae8e59f0)

Typo Security Team reports : Failing to properly encode the output, the default TYPO3 Exception Handler is susceptible to Cross-Site Scripting. We are not aware of a possibility to exploit this vulnerability without third party extensions being installed that put user input in exception messages...

CyberLink Power2Go - name Attribute (p2g) Stack Buffer Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'CyberLink Power2Go name attribute p2g...

typo -- Cross-Site Scripting

Typo Security Team reports: Failing to properly encode the output, the default TYPO3 Exception Handler is susceptible to Cross-Site Scripting. We are not aware of a possibility to exploit this vulnerability without third party extensions being installed that put user input in exception messages...

Reverse Engineering SEHOP Chain Validation

Reverse Engineering code of SEHOP Chain Validation by x90c [email protected] -- sehopchainvalidation.c -- typedef struct EXCEPTIONREGISTRATIONRECORD struct EXCEPTIONREGISTRATIONRECORD Next; PEXCEPTIONROUTINE Handler; EXCEPTIONREGISTRATIONRECORD, PEXCEPTIONREGISTRATIONRECORD; / first ER struct o...

StreamDown 6.8.0 Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'StreamDown 6.8.0...

CCMPlayer 1.5 Stack based Buffer Overflow (.m3u)

Exploit: CCMPlayer 1.5 Stack based Buffer Overflow SEH Exploit .m3u Date: 30 Nov 2011 Author: Rh0 Software: CCMPlayer 1.5 Tested on: Windows XP SP3 32-Bit EN VirtualBox require 'msf/core' class Metasploit3 'CCMPlayer 1.5 Stack based Buffer Overflow .m3u', 'Description' = %q This module exploits a...

Exploit writing tutorial part 3 - SEH Based Exploits [RUS by p(eaZ]

Автор: Peter Van Eeckhoutte corelanc0d3r Перевод: peaZ 8/2011 В первых двух частях данного руководства, мы обсудили, как происходят классические переполнения буфера в стеке, и каким образом можно создать надежный эксплойт с использованием различных методик перехода к шеллкоду. Пример, который мы...

CVE-2011-1854

Use-after-free vulnerability in HP Intelligent Management Center IMC 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a long syslog packet, related to an exception handler...

Design/Logic Flaw

Use-after-free vulnerability in HP Intelligent Management Center IMC 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a long syslog packet, related to an exception handler...

CVE-2011-1854

CVE-2011-1854 is an HP IMC 5.0 vulnerability (before E0101L02) in the imcsyslogdm.exe component, where processing oversized syslog packets triggers a use-after-free and remote code execution. The issue is documented by multiple sources (NVD entry, Red Hat advisory, Nessus plugin HP_IMC_MULTIPLE_C...

CVE-2011-1854

Use-after-free vulnerability in HP Intelligent Management Center IMC 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a long syslog packet, related to an exception handler...

HP 3COM/H3C Intelligent Management Center imcsyslogdm Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP 3com/H3C Intelligent Management Center. Authentication is not required to exploit this vulnerability. The flaw exists within the imcsyslogdm.exe component which listens by default on UDP port 51...

Memory corruption

The LZW stream decompression functionality in ORMELEMS.DLL in Microsoft Visio 2002 SP2, 2003 SP3, and 2007 SP2 allows remote attackers to execute arbitrary code via a Visio file with a malformed VisioDocument stream that triggers an exception handler that accesses an object that has not been full...

Foxit PDF Reader 4.1.1 - Title Stack Buffer Overflow (Metasploit)

$Id: foxittitlebof.rb 11353 2010-12-16 20:11:01Z egypt $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

Race River Integard Home/Pro - LoginAdmin Password Stack Buffer Overflow (Metasploit)

$Id: integardpasswordbof.rb 11344 2010-12-15 19:49:40Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Xion Audio Player 1.0.126 Unicode Stack Buffer Overflow

$Id: xionm3usehbof.rb 11183 2010-11-30 23:07:00Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Foxit PDF Reader v4.1.1 Title Stack Buffer Overflow

$Id: foxittitlebof.rb 11096 2010-11-22 17:43:42Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

FTP Synchronizer Professional 4.0.73.274 - Remote Stack Buffer Overflow (Metasploit)

$Id: ftpsynchlistreply.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...