2899 matches found
The vulnerability of the Android operating system, which allows a hacker to trigger a service failure
The vulnerability of the MPEG4Extractor.cpp file in the libstagefright component of the Android operating system’s media server is related to the absence of a memory allocation check. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure device freezi...
UBUNTU-CVE-2016-2506
DRMExtractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 does not validate a certain offset value, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a...
Canon IR-Adv Password Extractor
This module will extract the passwords from address books on various Canon IR-Adv mfp devices. Tested models: iR-ADV C2030, iR-ADV 4045, iR-ADV C5030, iR-ADV C5235, iR-ADV C5240, iR-ADV 6055, iR-ADV C7065 This module requires Metasploit: https://metasploit.com/download Current source:...
Meteocontrol WEB’log - Admin Password Disclosure (Metasploit)
Exploit Title: Meteocontrol WEB'log - Extract Admin password Discovered by: Karn Ganeshen Vendor Homepage: http://www.meteocontrol.com/en/ Versions Reported: All Meteocontrol WEB'log versions CVE-ID: CVE-2016-2296 Meteocontrol WEB'log - Metasploit Auxiliary Module...
The vulnerability of the Android operating system allows a hacker to trigger a service failure or execute arbitrary code.
The vulnerability of the MPEG4Extractor.cpp function in the libstagefright library of the mediaserver component in the Android operating system is due to a buffer overflow. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause service failures such as out-of-memory...
Mozilla Firefox / Thunderbird DLL Hijacking
Hi @ll despite better knowledge and MULTIPLE bug/vulnerability reports see , , , ... Mozilla continues to ship Firefox and Thunderbird for Windows with a vulnerable executable installer. Proof of concept/demonstration: 1. visit , download and save it as ShimEng.dll in your "Downloads" folder, the...
Netgear Unauthenticated SOAP Password Extractor
No description provided by source...
CVE-2016-0837
MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds read and memory corruption via a crafted media file, aka...
Apk Extractor - MIT license, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Apk Extractor published at the 'play' market has multiple vulnerabilities...
Apk Extractor - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Apk Extractor published at the 'play' market has multiple vulnerabilities...
Linux Embedded Firmware Dynamic Analysis: FIRMADYNE
FIRMADYNE is an automated and scalable system for performing emulation and dynamic analysis of Linux-based embedded firmware. It includes the following components: modified kernels MIPS: v2.6.32 , ARM: v4.1 , v3.10 for instrumentation of firmware execution; a userspace NVRAM library to emulate a...
Mozilla: Integer overflow in MP4 playback in 64-bit versions (MFSA 2015-146)
Integer overflow in the MPEG4Extractor::readMetaData function in MPEG4Extractor.cpp in libstagefright in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 on 64-bit platforms allows remote attackers to execute arbitrary code via a crafted MP4 video file that triggers a buffer overflow...
Vulnerability of Firefox and Firefox ESR browsers, allowing attackers to execute arbitrary code
The vulnerability of the MPEG4Extractor::readMetaData function located in MPEG4Extractor.cpp, within libstagefright in Firefox and Firefox ESR browsers is related to a potential overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially crafte...
UBUNTU-CVE-2015-7213
Integer overflow in the MPEG4Extractor::readMetaData function in MPEG4Extractor.cpp in libstagefright in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 on 64-bit platforms allows remote attackers to execute arbitrary code via a crafted MP4 video file that triggers a buffer overflow...
MakeSFX.exe 1.44 - Stack Buffer Overflow Exploit
Exploit for windows platform in category dos / poc ''' + Credits: John Page aka hyp3rlinx Vendor: ================================ freeextractor.sourceforge.net/FreeExtractor freeextractor.sourceforge.net/FreeExtractor/MakeSFX.exe Vulnerable Product:...
MakeSFX.exe 1.44 - Local Stack Buffer Overflow
MakeSFX.exe 1.44 - Local Stack Buffer Overflow ''' + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-MAKESFX-BUFF-OVERFLOW-09302015.txt Vendor: ================================ freeextractor.sourceforge.net/FreeExtractor...
Memcached Extractor
This module extracts the slabs from a memcached instance. It then finds the keys and values stored in those slabs. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Memcached Extractor',...
Konica Minolta Password Extractor
This module will extract FTP and SMB account usernames and passwords from Konica Minolta multifunction printer MFP devices. Tested models include C224, C280, 283, C353, C360, 363, 420, C452, C452, C452, C454e, and C554. This module requires Metasploit: https://metasploit.com/download Current...
CAINE 6.0 "Dark Matter" - Distribution with a complete forensic environment
CAINE Computer Aided INvestigative Environment is an Italian GNU/Linux live distribution created as a project of Digital Forensics. Currently the project manager is Nanni Bassetti. CAINE offers a complete forensic environment that is organized to integrate existing software tools as software...
TIBCO Rendezvous <= 7.4.11 Password Extractor Local Exploit
No description provided by source...