Outpost Firewall PRO 4.0 - Local Privilege Escalation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22069/info Outpost Firewall PRO is prone to a local privilege-escalation vulnerability because it fails to perform adequate SSDT System Service Descriptor Table hooking on files in its installation directory. A local...

Xenorate 2.50 - (.xpl) universal Local Buffer Overflow Exploit (SEH) (meta)

No description provided by source. require 'msf/core' class Metasploit3 Msf::Exploit::Remote include Msf::Exploit::FILEFORMAT include Msf::Exploit::Remote::Seh include Msf::Exploit::Egghunter def initializeinfo = superupdateinfoinfo, 'Name' = 'Xenorate 2.50.xpl universal Local Buffer Overflow...

microsoft office word 2007 - Multiple Vulnerabilities

No description provided by source. Mati Aharoni muts .@. offensive-security.com http://www.offensive-security.com My 7 line python fuzzer found several file format bugs in 3 hours. Quite alarming. No deep analysis was done, I leave that to the community. These are some of the results: file789-1.d...

Joomla Component JomSocial 1.6.288 Multiple XSS

No description provided by source. Software Link: http://jomsocial.com Version: 1.6.288 Since Sid3^effects published a single one of these 21 June 2010 - http://www.exploit-db.com/exploits/13955/ - I figured the cat's out of the bag... His exploit works even on 1.8RC1, however it gets sanitized...

magiciso 5.0 build 0166 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17725/info Reportedly, an attacker can carry out attacks using directory-traversal strings. These issues occur when the application processes malicious archives. A successful attack can allow the attacker to place...

Microsoft Organization Chart 2 - Remote Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31059/info Microsoft Organization Chart is prone to a remote code-execution vulnerability because of a memory-access violation. Remote attackers can exploit this issue by enticing victims into opening a maliciously crafte...

Online Job Board (Auth Bypass) SQL Injection Vulnerability

No description provided by source. '/ -.- --------------------oOO------OOo----------------------------- | Online Job Board Auth Bypass SQL Injection Vulnerability | | works only with magicquotesgpc = off | ---------------------------------------------------------------- ! Discovered: cr4wl3r...

World in Conflict 1.008 - NULL Pointer Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/29888/info World in Conflict is prone to a remote denial-of-service vulnerability because the application fails to handle exceptional conditions. An attacker could exploit this issue to crash the affected application,...

Xine-Lib 0.9/1 Remote Client-Side Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11969/info It is reported that the xine media library is affected by a remote buffer overflow vulnerability. This issue can allow a remote attacker to gain unauthorized access to a vulnerable computer. The overflow...

Raven Software Soldier Of Fortune 2 Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11735/info It is reported that Soldier of Fortune 2 is susceptible to a buffer overflow vulnerability. This issue is due to a failure of the application to perform sufficient bounds checking on user-supplied input prior t...

Microsoft Windows SeImpersonatePrivilege - Local Privilege Escalation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28833/info Microsoft Windows is prone to a privilege-escalation vulnerability. Successful exploits may allow authenticated users to elevate their privileges to NetworkService. This allows attackers to execute code with...

Clam AntiVirus <= 0.88.4 (rebuildpe) Remote Heap Overflow PoC

No description provided by source. Clam AntiVirus = 0.88.4 rebuildpe Remote Heap Overflow PoC Damian Put pucikatgazeta.pl [email protected] http://overflow.pl http://www.exploit-db.com/sploits/10172006-clampetiteheap.exe.bz2 milw0rm.com 2006-10-17...

PGP 5.x/6.x/7.0 ASCII Armor Parser Arbitrary File Creation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2556/info ASCII Armor is a text based encoding format used by PGP Pretty Good Privacy. While it is possible to encode any file using ASCII Armor, it is used by PGP to encode signature files and public keys to facilitate...

eDisplay Personal FTP server 1.0.0 - Multiple Post-Authentication Crash SEH (PoC)

No description provided by source. Title: eDisplay Personal FTP server 1.0.0 Multiple Post-Authentication Crash PoC From: The eh?-Team || The Great White Fuzz we're not sure yet Found by: loneferret Hat's off to dookie2000ca Disvovery date: 16/03/2010 Software link:...

Poppler 0.10.3 - Multiple Denial of Service Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/33749/info Poppler is prone to multiple denial-of-service vulnerabilities when handling malformed PDF files. Successfully exploiting this issue allows remote attackers to crash applications that use the vulnerable library...

Trend Micro Internet Security Pro 2010 ActiveX extSetOwner Remote Code Execution

No description provided by source. !-- | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 3 Binary Analysis | | | | || / \ || | | | || ||// \/|/ Title : Trend Micro Internet Security Pro 2010 ActiveX extSetOwner Remote Code Execution Version : UfPBCtrl.DLL...

FreeHost 1.00 - Upload Vulnerability

No description provided by source. ======================================================================================== | Title : FreeHost Version 1.00 Upload Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -0021377181886...

Cyclope Internet Filtering Proxy 4.0 - Stored XSS Vuln.

No description provided by source. !/usr/bin/python Title: Cyclope Internet Filtering Proxy 4.0 - Stored XSS Vuln. From: The eh?-Team || The Great White Fuzz we're not sure yet Found by: loneferret Software link: http://www.cyclope-series.com/download/index.aspx?p=2 Date Found: Oct 20th 2011 Test...

httpdx 1.5.3b - Multiple Remote Pre-Authentication DoS (PoC)

No description provided by source. Title: httpdx v1.5.3b Multiple - Remote Pre-Authentication DoS PoC crash From: The eh?-Team || The Great White Fuzz we're not sure yet Found by: loneferret Hat's off to dookie2000ca Date: 13/03/2010 Software link: http://httpdx.sourceforge.net/downloads/ Tested...

Python socket.recvfrom_into() - Remote Buffer Overflow

No description provided by source. !/usr/bin/env python ''' Exploit Title: python socket.recvfrominto remote buffer overflow Date: 21/02/2014 Exploit Author: @sha0coder Vendor Homepage: python.org Version: python2.7 and python3 Tested on: linux 32bit + python2.7 CVE : CVE-2014-1912...