9454 matches found
exim: overflow in DKIM handling fixed (critical)
This update fixes a remotely exploitable overflow in DKIM handling...
Microsoft Windows Help (WinHlp32.exe) memory corruption
The HLP file is Microsoft Help file documentation for the Windows operating system or Windows programs. The file contains documentation for the Windows operating system or Windows programs. Successful exploits can allow attackers to execute arbitrary code !/usr/bin/perl Title : Microsoft Windows...
Microsoft Windows Help Program Memory Corruption
!/usr/bin/perl Title : Microsoft Windows Help programWinHlp32.exememory corruption Version : 5.1.2600 Date : 2012-10-21 Vendor : http://www.microsoft.com Crash : http://img69.imageshack.us/img69/7652/helpview.jpg Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested ...
HP Operations Agent Opcode coda.exe 0x8c Buffer Overflow
This Metasploit module exploits a buffer overflow vulnerability in HP Operations Agent for Windows. The vulnerability exists in the HP Software Performance Core Program component coda.exe when parsing requests for the 0x8c opcode. This Metasploit module has been tested successfully on HP Operatio...
NASA Tri-Agency Climate Education (TrACE) v1.0 SQL Injection Vulnerability
Summary The Tri-Agency Climate Education TrACE Catalog provides search and browse access to a catalog of educational products and resources. TrACE focuses on climate education resources that have been developed by initiatives funded through NASA, NOAA, and NSF, comprising a tri-agency collaborati...
Microsoft Office Picture Manager 2010 - Crash (PoC)
Microsoft Office Picture Manager 2010 - Crash PoC Title : Microsoft Office Picture Manager 2010 memory corruption Version : Microsoft Office professional Plus 2010 Crash : http://img715.imageshack.us/img715/7364/pocl.png Date : 2012-10-24 Vendor : http://office.microsoft.com Impact : Med/High...
Microsoft Office Picture Manager 2010 memory corruption
notice : for testing POC please run the Microsoft Office Picture Manager under a Debugger and then open the POC file Successful exploits can allow attackers to execute arbitrary code Title : Microsoft Office Picture Manager 2010 memory corruption Version : Microsoft Office professional Plus 2010...
Microsoft Office Picture Manager 2010 - Crash (PoC)
Title : Microsoft Office Picture Manager 2010 memory corruption Version : Microsoft Office professional Plus 2010 Crash : http://img715.imageshack.us/img715/7364/pocl.png Date : 2012-10-24 Vendor : http://office.microsoft.com Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter :...
Adobe Shockwave 11.6.7.637 contains multiple exploitable vulnerabilities
Overview Adobe Shockwave Player 11.6.7.637 and earlier versions on the Windows and Macintosh operating systems contain critical vulnerabilities that can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Adobe Macromedia Shockwave Player is...
[INTREST SEC] Atlassian Confluence Wiki XSS Vulnerability
------------------------------- INTREST SEC | Security Advisory ------------------------------- Product: Confluence Wiki Vendor: Atlassian www.atlassian.com Vulnerability Type: Cross Site Scripting XSS Risk Level: High classified by vendor Discovered by: INTREST SEC - NID Public Diclosure:...
RealPlayer 15.0.6.14 Memory Corruption
!/usr/bin/perl Title : RealPlayer 3GP file handling memory corruption Version : 15.0.6.14 Date : 2012-10-18 Vendor : http://www.real.com/ Impact : High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG Author : coolkaveh Bug : ---- Memory corruption during the handlin...
MitM-vulnerability in Palo Alto Networks GlobalProtect
--------------------------------------------------------------------- SySS-Advisory: MitM-vulnerability in Palo Alto Networks GlobalProtect --------------------------------------------------------------------- Problem discovered: July 12th 2012 Vendor contacted: July 13th 2012 Advisory published:...
Security weakness in Android App SSL Implementations
The most common approach to protect data during communication on the Android platform is to use the Secure Sockets Layer SSL or Transport Layer Security TLS protocols. Thousands of applications in the Google Play market that are using these implementations. A group of researchers including Sascha...
Solaris 10 (x86) : 127873-02 (deprecated)
Vulnerability in the Solaris component of Oracle Sun Products Suite subcomponent: mailx1. Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized update, inse...
Solaris 10 (sparc) : 127872-02 (deprecated)
Vulnerability in the Solaris component of Oracle Sun Products Suite subcomponent: mailx1. Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized update, inse...
3S CoDeSys Vulnerabilities
Overview This advisory is a follow-up to the alert update, ICS-ALERT-11-336-01A 3S CoDeSys Vulnerabilities, which was released on the ICS-CERT Web page on December 02, 2011. Security researcher Celil Unuver SignalSec LLC and independent researcher Luigi Auriemma have identified vulnerabilities in...
DOS and crash with full screen and history navigation — Mozilla
Security researcher Soroush Dalili reported that a combination of invoking full screen mode and navigating backwards in history could, in some circumstances, cause a hang or crash due to a timing dependent use-after-free pointer reference. This crash may be potentially exploitable...
Crash with invalid cast when using instanceof operator — Mozilla
Mozilla community member Ms2ger reported a crash due to an invalid cast when using the instanceof operator on certain types of JavaScript objects. This can lead to a potentially exploitable crash...
Heap memory corruption issues found using Address Sanitizer — Mozilla
Security researcher Atte Kettunen from OUSPG reported several heap memory corruption issues found using the Address Sanitizer tool. These issues are potentially exploitable, allowing for remote code execution...
Use-after-free, buffer overflow, and out of bounds read issues found using Address Sanitizer — Mozilla
Security researcher Abhishek Arya Inferno of the Google Chrome Security Team discovered a series of use-after-free, buffer overflow, and out of bounds read issues using the Address Sanitizer tool in shipped software. These issues are potentially exploitable, allowing for remote code execution. We...