1393 matches found
Microsoft Outlook Express 6.0 MHTML Forced File Execution Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/9105/info A vulnerability has been discovered in Microsoft Outlook Express when handling MHTML file and res URIs that could lead to an unexpected file being downloaded and executed. The problem occurs due to the component...
NetTransport Download Manager 2.90.510 Buffer Overflow
No description provided by source. $Id: nettransport.rb 10150 2010-08-25 20:55:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...
vBSEO 3.5.2 & 3.2.2 - Persistent XSS via LinkBacks
No description provided by source. vBSEO - Persistent XSS via LinkBacks http://www.exploit-db.com/vbseo-from-xss-to-reverse-php-shell/ Versions Affected: 3.5.2 & 3.2.2 Most likely all versions Info: A proven success record, vBSEO powers the most optimized forums on the Web. The 1 SEO plugin and t...
Winamp 5.572 - whatsnew.txt SEH (meta)
No description provided by source. Title: Winamp 5.572 whatsnew.txt SEH MSF Author: Blake Published: 2010-04-15 Tested on Windows XP SP3 This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for...
Ultra Shareware Office Control ActiveX HttpUpload Buffer Overflow
No description provided by source. $Id: ultraofficehttpupload.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...
TFTPUtil GUI 1.4.5 - DoS (Meta)
No description provided by source. Title: TFTPUtil GUI v1.4.5 Invalid Request DoS CVE-ID: OSVDB-ID: Author: Vuk Ivanovic Published: 2010-12-04 Verified: yes This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit...
Joomla Component com_items SQL Injection Vulnerability
No description provided by source. Title : Joomla Component comitems SQL Injection Vulnerability Author: DevilZ TM Data : 2010-03-29 InformatioN Title : Joomla Component comitems SQL Injection Vulnerability Author : DevilZ TM By D3v1l Homepage : http://www.DEVILZTM.com Email : [email protected]...
IrfanView FlashPix PlugIn Decompression Heap Overflow
No description provided by source. Application: IrfanView FlashPix PlugIn Decompression Heap Overflow Platforms: Windows Secunia Number: SA48772 PRL: 2012-08 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2...
Cam2pc 4.6.2 - BMP Image Processing Integer Overflow Vulnerability
No description provided by source. Application: Cam2pc BMP Image Processing Integer Overflow Vulnerability Platforms: Windows Vendor : http://www.nabocorp.co Versions : The vulnerability is confirmed in version 4.6.2 Freeware Edition Other versions may also be affected. Date : 2013-03-13 Contact ...
Apple Mac OS X 10.4.8 UDTO Disk Image Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21236/info Apple Mac OS X is prone to a remote denial-of-service vulnerability when handling specially crafted UDTO disk image files. Successfully exploiting this issue allows remote users to crash affected computers,...
Sun Java Runtime Environment 1.4.2 - Font Parsing Remote Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25340/info The Sun Java Runtime Environment is prone to a remote privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the user who invoked the Java applet...
IP2location.dll 1.0.0.1 - Function Initialize() Buffer Overflow
No description provided by source. html head titleIP2Location.dll v1.0.0.1 Initialize Buffer Overflow by sinn3r/title /head body object classid='clsid:A3C8BFFA-1496-4188-A2BC-355A0B3DA0A7' id='ip2location'/object script language=JavaScript / IP2Location.dll v1.0.0.1 Initialize Buffer Overflow...
Cyclope Internet Filtering Proxy 4.0 - CEPMServer.exe DoS (Poc)
No description provided by source. !/usr/bin/python Title: Cyclope Internet Filtering Proxy 4.0 - CEPMServer.exe DoS Poc. From: The eh?-Team || The Great White Fuzz we're not sure yet Found by: loneferret Software link: http://www.cyclope-series.com/download/index.aspx?p=2 Date Found: Oct 20th 20...
Rumba FTP Client FTPSFtp.dll 4.2.0.0 - OpenSession() Buffer Overflow
No description provided by source. html head titleRumba FTP Client FTPSFtp.dll v4.2.0.0 OpenSession Buffer Overflow by sinn3r/title /head body object classid=clsid:677A6F83-52A0-4931-8E62-EC713EE9B949 id=ftpsftp/object script language=JavaScript / Rumba FTP Client FTPSFtp.dll v4.2.0.0 OpenSession...
Elecard AVC_HD/MPEG Player 5.7 - Buffer Overflow
No description provided by source. !/usr/bin/env python Software: Elecard AVCHD/MPEG Player 5.7 SEH Author: sickness Download : http://www.elecard.com/en/products/end-user-software/playback/avchd-player.html PoC for Elecard MPEG: http://www.exploit-db.com/exploits/16237/ Tested : Windows XP...
CVS 1.11.x Directory Request Double Free Heap Corruption Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6650/info CVS is prone to a double free vulnerability in the Directory requests. An attacker may potentially take advantage of this issue to cause heap memory to be corrupted with attacker-supplied values, which may resul...
Vilistextum 2.6.6 HTML Attribute Parsing Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11979/info Vilistextum is prone to a buffer overflow vulnerability. This issue is exposed when the application parses HTML attributes while converting an HTML file to text/ASCII. Since HTML files will likely originate fro...
Panda Internet Security/Antivirus+Firewall 2008 - CPoint.sys Memory Corruption Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28150/info Panda Internet Security/Antivirus+Firewall 2008 is prone to a vulnerability that allows local attackers to corrupt kernel memory. This vulnerability occurs because the application fails to sufficiently validate...
Winds3D Viewer 3 'GetURL()' Arbitrary File Download Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/35595/info Winds3D Viewer is prone to a vulnerability that can allow malicious files to be downloaded an executed within the context of the affected browser that uses the plugin. Successfully exploiting this issue will...
Novell iPrint Client ActiveX Control call-back-url Buffer Overflow Exploit (meta)
No description provided by source. novelliprintcallbackurl.rb Novell iPrint Client ActiveX Control call-back-url Buffer Overflow exploit for the Metasploit Framework Exploit successfully tested on the following platforms: - Novell iPrint Client 5.40 on Internet Explorer 7, Windows XP SP3 - Novell...