MP3 TrackMaker 1.5 (.mp3 File) Local Heap Overflow PoC

Exploit for unknown platform in category dos / poc ====================================================== MP3 TrackMaker 1.5 .mp3 File Local Heap Overflow PoC ====================================================== !/bin/perl Author : HouSSamix MP3 TrackMaker v1.5 .mp3 File Heap Overflow PoC...

CVE-2008-5368

muttprint in muttprint 0.72d allows local users to overwrite arbitrary files via a symlink attack on the /tmp/muttprint.log temporary file...

CVE-2008-5314

Stack consumption vulnerability in libclamav/special.c in ClamAV before 0.94.2 allows remote attackers to cause a denial of service daemon crash via a crafted JPEG file, related to the clicheckjpegexploit, jpegcheckphotoshop, and jpegcheckphotoshop8bim functions...

CVE-2008-4985

vdrleaktest in Video Disk Recorder aka vdr-dbg or vdr 1.6.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/memleaktest.log temporary file...

LokiCMS <= 0.3.4 (index.php page) Arbitrary Check File Exploit

No description provided by source. LokiCMS = 0.3.4 index.php page Arbitrary Check File Exploit url: http://www.lokicms.com/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own...

ActiveX remote arbitrary file exploit-vulnerability warning-the black bar safety net

Ultra Office ActiveX Control Remote Arbitrary File Corruption url: http://www.ultrashareware.com Author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educational purpose. Use it at your own risk. Author will be not responsible for any damage...

CVE-2008-2327

Multiple buffer underflows in the 1 LZWDecode, 2 LZWDecodeCompat, and 3 LZWDecodeVector functions in tiflzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODECLEAR code...

moziloCMS 1.10.1 (download.php) Arbitrary Download File Exploit

Exploit for unknown platform in category web applications =============================================================== moziloCMS 1.10.1 download.php Arbitrary Download File Exploit =============================================================== !/usr/bin/perl moziloCMS 1.10.1 Perl exploit...

MS Internet Explorer .ANI files handling Universal Exploit (MS05-002)

No description provided by source. / Added string.h /str0ke / / HOD-ms05002-ani-expl.c: 2005-01-10: PUBLIC v.0.2 Copyright c 2004-2005 houseofdabus. MS05-002 Microsoft Internet Explorer .ANI Files Handling Exploit CAN-2004-1049 .:: houseofdabus ::. universal -- for all affected systems...

CMS Mini 0.2.2 - Multiple Local File Inclusions

===================================================== CMS Mini 0.2.2 Local File Inclusion Vulnerability ===================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

ThaiQuickCart 3 - 'sLanguage' Cookie Local File Inclusion

===================================================================== ThaiQuickCart COOKIE:sLanguage Local File Inclusion Vulnerability ===================================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground...

OpenOffice.org overflow possible on allocation

Integer overflow in the rtlallocateMemory function in sal/rtl/source/allocglobal.c in OpenOffice.org OOo 2.0 through 2.4 allows remote attackers to execute arbitrary code via a crafted file that triggers a heap-based buffer overflow...

OtomiGen.X 2.2 (lang) Local File Inclusion Vulnerabilities

No description provided by source. + Author: Saime + Script: OtomigenX v2.2 lang Local File Inclusion + URL: http://kmrg.itb.ac.id/otomigenx/?menu=download + Date: 28/05/2008 + Greetz: BaKo,DrWh4x,optiplex,xprog,cam-man-dan,Tulle,t0pP8uZz,Inspiratio,Novalok,illuz1oN,Untamed,GM,str0ke, and everyon...

MS08-012: Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (947085)

The remote host is running a version of Microsoft Publisher that may allow arbitrary code to be run on this host. To succeed, the attacker would have to send a rogue file to a user of the remote computer and have him open it. Then a bug in the font parsing handler would result in code execution. ...

MPlayer 1.0rc2 - 'demux_mov.c' Remote Code Execution

source: https://www.securityfocus.com/bid/27499/info MPlayer is prone to a remote code-execution vulnerability because it fails to sanitize certain 'MOV' file tags before using them to index heap memory. An attacker can exploit this issue to execute arbitrary code, which can result in the complet...

Liquid-Silver CMS 0.1 (update) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================= Liquid-Silver CMS 0.1 update Local File Inclusion Vulnerability ================================================================= Liquid-Silver CMS Local File Inclusion...

Directory traversal

Directory traversal vulnerability in include/common.php in bcoos 1.0.10 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the xoopsOptionpagetype parameter to the default URI for modules/news/. NOTE: this can be leveraged by using legitimate product...

NuclearBB Alpha 2 - ROOT_PATH Remote File Inclusion

NuclearBB Alpha 2 - ROOTPATH Remote File Inclusion Vuln Product: NuclearBB Alpha 2 Vendor: http://www.nuclearbb.com/ Vulnerability Type: Remote File Inclusion Autor: Infection Team: Rootshell Security Team Vulnerable file: /NuclearBB/tasks/sendqueuedemails.php Exploit URL:...

CVE-2007-4510

ClamAV before 0.91.2, as used in Kolab Server 2.0 through 2.2beta1 and other products, allows remote attackers to cause a denial of service application crash via 1 a crafted RTF file, which triggers a NULL dereference in the cliscanrtf function in libclamav/rtf.c; or 2 a crafted HTML document wit...

XOOPS Module horoscope 2.0 - Remote File Inclusion

XOOPS Module horoscope 2.0 - Remote File Inclusion BeyazKurt - [email protected] XOOPS Modules Horoscope http://www.xoops.org/modules/repository/visit.php?cid=32&lid=1162 modules/horoscope/footer.php?xoopsConfigrootpath= NetLife Since : '2003-4' Emekli Heykır BeyazKurt - Neti bıraktım!...