6827 matches found
Stack overflow
Multiple stack-based buffer overflows in the HanGamePluginCn18.HanGamePluginCn18.1 ActiveX control in HanGamePluginCn18.dll in Ourgame GLWorld 2.6.1.29 aka Lianzong Game Platform allow remote attackers to execute arbitrary code via long arguments to the 1 hgsstartGame and 2 hgsstartNotify methods...
ITechBids 5.0 (bidhistory.php item_id) Remote SQL Injection Vulnerability
No description provided by source. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!QTRinux!!aNa TrYaGi!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! iTechBids v3 Gold Remote SQL injection AUTHOR : QTRinux Discovered by : QTRinux Exploited By : QTRinux TrYaG Team Members : AlQaTaRi - POISON -Mr.SH4R3S and all TrYaGi ,...
BlogPHP v.2 (id) XSS / Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl BlogPHP V.2 Multiple Remote Vulnerabilities SQL Injection Exploit/XSS AUTHOR : IRCRASH...
A-Blog 2.0 - Cross-Site Scripting SQL Injection
A-Blog 2.0 - Cross-Site Scripting SQL Injection !/usr/bin/perl A-Blog V.2 Multiple Remote Vulnerabilities SQL Injection Exploit/XSS AUTHOR : IRCRASH Discovered by : Dr.Crash Exploited By : Dr.Crash IRCRASH Team Members : Dr.Crash - Malc0de - R3d.w0rm Script Download :...
Debian Security Advisory DSA 343-1 (skk, ddskk)
The remote host is missing an update to skk, ddskk announced via advisory DSA 343-1. OpenVAS Vulnerability Test $Id: deb3431.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 343-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 086-1 (ssh-nonfree, ssh-socks)
The remote host is missing an update to ssh-nonfree, ssh-socks announced via advisory DSA 086-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Debian Security Advisory DSA 016-1 (wu-ftpd)
The remote host is missing an update to wu-ftpd announced via advisory DSA 016-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-340)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Windows Media Player 6.4 MP4 File Stack Overflow PoC
No description provided by source. !/bin/perl Windows media player 6.4 MP4 Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Shell on port 49152 usage: - download this codec in order to manage MP4 content: http://www.3ivx.com/coral/3ivxd4451win.exe...
Buffer overflow
Buffer overflow in the register function in Ultra Star Reader ActiveX control in SSReader allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2007-5807
CVE-2007-5807 involves a buffer overflow in the register function of the Ultra Star Reader ActiveX control used by SSReader. Remote code execution is possible via unspecified vectors, and the issue is described as being exploited in the wild. The affected component is the Ultra Star Reader Active...
CVE-2007-5807
Buffer overflow in the register function in Ultra Star Reader ActiveX control in SSReader allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
US-CERT Technical Cyber Security Alert TA07-297A -- RealNetworks RealPlayer ActiveX Playlist Buffer Overflow
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 National Cyber Alert System Technical Cyber Security Alert TA07-297A RealNetworks RealPlayer ActiveX Playlist Buffer Overflow Original release date: October 24, 2007 Last revised: -- Source: US-CERT Systems Affected Windows systems with RealPlayer 11...
InnovaShop™® (mgs.jps) Cross Siting Scripting
InnovaShop™® mgs.jps Cross Siting Scripting Download: http://www.innovaage.com/ http://www.innovaportal.com/ Bug found by JosS / Jose Luis Gngora Fernndez Contact: sys-projectathotmail.com Spanish Hackers Team www.spanish-hackers.com /server irc.freenode.net /join fullsecure d0rk: "Site developed...
CVE-2007-5231
Unrestricted file upload vulnerability in admin/uploadfiles.php in Zomplog 3.8.1 and earlier allows remote authenticated administrators to upload and execute arbitrary .php files by sending a modified MIME type. NOTE: this can be exploited by unauthenticated attackers by leveraging CVE-2007-5230...
HP-UX PHNE_35351 : s700_800 11.11 cumulative ARPA Transport patch
s700800 11.11 cumulative ARPA Transport patch : The remote HP-UX host is affected by multiple vulnerabilities : - A potential security vulnerability has been identified with HP-UX running TCP/IP IPv4. This vulnerability could be remotely exploited to cause a Denial of Service DoS. HPSBUX01137...
Sophos Antivirus UPX及BZIP文件解析拒绝服务漏洞
BUGTRAQ ID: 25428 Sophos Anti-Virus是一款适用于多种操作系统的杀毒软件。 Sophos Anti-Virus在处理畸形格式的UPX和BZIP文件时存在漏洞,远程攻击者可能利用此漏洞导致应用程序不可用。 如果用户受骗打开了恶意的UPX压缩可执行文件或BZIP压缩文档的话,就可能触发死循环,导致引擎崩溃或临时文件耗尽所有磁盘空间。 Sophos Anti-Virus 2.48.0 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.sophos.com/...
CVE-2007-4428
Lhaz 1.33 allows remote attackers to execute arbitrary code via unknown vectors, as actively exploited in August 2007 by the Exploit-LHAZ.a gzip file, a different issue than CVE-2006-4116...
CVE-2007-4246
Unspecified vulnerability, possibly a buffer overflow, in Justsystem Ichitaro 2007 and earlier allows remote attackers to execute arbitrary code via a modified document, as actively exploited in August 2007 by malware such as Tarodrop.D Tarodrop.Q, a different vulnerability than CVE-2006-4326,...
CVE-2007-4246
Unspecified vulnerability, possibly a buffer overflow, in Justsystem Ichitaro 2007 and earlier allows remote attackers to execute arbitrary code via a modified document, as actively exploited in August 2007 by malware such as Tarodrop.D Tarodrop.Q, a different vulnerability than CVE-2006-4326,...