CVE-2010-3429

flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerability."...

CVE-2010-2971

loaders/loadit.c in libmikmod, possibly 3.1.12, does not properly account for the larger size of nameenv relative to nametick and namenode, which allows remote attackers to trigger a buffer over-read and possibly have unspecified other impact via a crafted Impulse Tracker file, a related issue to...

CVE-2010-2568

Windows Shell in Microsoft Windows XP SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 SP2 and R2, and Windows 7 allows local users or remote attackers to execute arbitrary code via a crafted 1 .LNK or 2 .PIF shortcut file, which is not properly handled during icon display in Windows Explorer...

AlegroCart 1.2.3beta Remote Upload File Exploit

Exploit for php platform in category web applications =============================================== AlegroCart 1.2.3beta Remote Upload File Exploit =============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 ...

CVE-2009-4835

The 1 htkreadheader, 2 alawinit, 3 ulawinit, 4 pcminit, 5 float32init, and 6 sdsreadheader functions in libsndfile 1.0.20 allow context-dependent attackers to cause a denial of service divide-by-zero error and application crash via a crafted audio file...

MovieLibrary 1.4.401 - .dmv Local Denial of Service

MovieLibrary 1.4.401 - .dmv Local Denial of Service Exploit Title: MovieLibrary Local Dos .dmv file Date: April 14, 2010 Software Link: http://wensoftware.com/ Version: v1.4.401 Tested on: Windows XP SP3 Author: anonymous Site: www.setfreesecurity.com At the top: Click - New - Open Open the newly...

MovieLibrary 1.4.401 - '.dmv' Local Denial of Service

Exploit Title: MovieLibrary Local Dos .dmv file Date: April 14, 2010 Software Link: http://wensoftware.com/ Version: v1.4.401 Tested on: Windows XP SP3 Author: anonymous Site: www.setfreesecurity.com At the top: Click - New - Open Open the newly created dmv file Click File - Import Database Progr...

NovaPlayer 1.0 - '.mp3' File Local Denial of Service (2)

!/usr/bin/perl print qq NovaPlayer 1.0 .mp3 Local Denial of Service DoS by Mr.tro0oqy ; author: Mr.tro0oqy email : [email protected] greetz : Red-D3v1L , virushima , Stack system "color e"; my $bb="tro0oqy.mp3"; my $fk="\x41" x 10000; open myfile,'tro0oqy.mp3'; print myfile $fk; print "great\n ...

CVE-2009-4640

Array index error in vorbisdec.c in FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Vorbis file that triggers an out-of-bounds read...

linux/x86 append "/etc/passwd" & exit() 107 bytes

Exploit for linux/x86 platform in category shellcode ================================================= linux/x86 append "/etc/passwd" & exit 107 bytes ================================================= / appendpasswd.c Payload: Adds the string: toor::0:0:t00r:/root:/bin/bash to /etc/passwd thereby...

CVE-2009-1570

Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow...

Xion Audio Player 1.0 121 m3u file buffer overflow

Exploit for unknown platform in category local exploits ================================================== Xion Audio Player 1.0 121 m3u file buffer overflow ================================================== Title: Xion Audio Player 1.0 121 m3u file buffer overflow CVE-ID: OSVDB-ID: Author: Drag...

CVE-2009-2516

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold and SP1, and Server 2008 Gold does not properly validate data sent from user mode, which allows local users to gain privileges via a crafted PE .exe file that triggers a NULL pointer dereference during chain...

SPIP 2.0.9 - Arbitrary Copy All Passwords to .XML File

SPIP 2.0.9 - Arbitrary Copy All Passwords to .XML File !/usr/bin/env python SPIP - Content Management System " exit filename = sys.argv2 baseurl = sys.argv1 cookiejar = cookielib.CookieJar urlOpener = urllib2.buildopenerurllib2.HTTPCookieProcessorcookiejar formulaire = sendrequesturlOpener,...

CVE-2009-1382

Multiple stack-based buffer overflows in mimetex.cgi in mimeTeX, when downloaded before 20090713, allow remote attackers to execute arbitrary code via a TeX file with long 1 picture, 2 circle, or 3 input tags...

CVE-2009-0791

Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF file that trigger...

EUVD-2009-0265

The Word processor in OpenOffice.org 1.1.2 through 1.1.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1 .doc, 2 .wri, or 3 .rtf Word 97 file that triggers memory corruption, as exploited in the wild in December 2008, as demonstrated ...

Browse3D 3.5 (.sfs File) Local Buffer Overflow PoC

No description provided by source. !/usr/bin/perl -w -- Viva Gazza -- Viva Palestine -- Browse3D v3.5 .sfs File Local Buffer overflow PoC http://www.browse3d.com/downloads/Browse3Dsetup.exe Author : Houssamix create file exploit open it Error : Access violation at 0x41414141 tried to read from...

MP3 TrackMaker 1.5 - .mp3 Local Heap Overflow (PoC)

MP3 TrackMaker 1.5 - .mp3 Local Heap Overflow PoC !/bin/perl Author : HouSSamix MP3 TrackMaker v1.5 .mp3 File Heap Overflow PoC http://www.heathcosoft.com/software/mp3trackmaker/mp3tm15.exe open the program browse source file file exploit EAX 41414141 $file" or die "Cannot open $file: $!"; print...

VUPlayer 2.49 .ASX File Buffer Overflow

!/usr/bin/perl -w author : Houssamix VUPlayer 2.49 .asx File local Stack Overflow Exploit print " Author : HouSSamix Program : VUPlayer Version : 2.49 website : http://www.vuplayer.com/ Download : http://vuplayer.com/files/vuplayersetup.exe Type : .asx File local Stack Overflow Exploit \n"; $BOF ...