Windows OpenType Font - File Format DoS Exploit

No description provided by source. OpenType font file format remote client-side DoS exploit for Windows By Oleksiuk Dmytro aka Cr4sh http://twitter.com/dolex http://blog.cr4.sh mailto:[email protected] INFO: Zero day vulnerability exists in kernel-mode library ATMFD.DLL, that using by OS for worki...

Gold MP4 Player 3.3 - Universal SEH Exploit (MSF)

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

MS Windows GDI+ - Proof of Concept (MS08-052) (2)

No description provided by source. ------------------------------------------------------------------------------------------------------------ Operating System: XP SP2 Gdiplus.dll Version: 5.1.3102.2180 Credit: John Smith, Evil Fingers GIF Template Reference:...

GIMP 2.8.0 FIT File Format DoS

No description provided by source. Summary ======= There is a file handling DoS in GIMP the GNU Image Manipulation Program for the 'fit' file format affecting all versions Windows and Linux up to and including 2.8.0. A file in the fit format with a malformed 'XTENSION' header will cause a crash i...

AstonSoft DeepBurner (DBR File) Path Buffer Overflow

No description provided by source. $Id: deepburnerpath.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

RM Downloader 3.1.3.3.2010.06.26 - (.m3u) Buffer Overflow (MSF)

No description provided by source. require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::FILEFORMAT def initializeinfo = superupdateinfoinfo, 'Name' = 'RM Downloader Version 3.1.3.3.2010.06.26 .m3u Buffer Overflow MSF', 'Description' = %q RM Download...

Shadow Stream Recorder 3.0.1.7 - Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

CyberLink Power2Go name attribute (p2g) Stack Buffer Overflow Exploit

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

Cytel Studio 9.0 (CY3 File) Stack Buffer Overflow

No description provided by source. $Id: cytelstudiocy3.rb 14041 2011-10-24 01:39:11Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

KenWard's Zipper 1.400 - Buffer Overflow - Method 2

No description provided by source. !/usr/bin/python KenWard's Zipper v1.400 File Name Buffer Overflow Coded by sinn3r x90.sinneratgmaild0tcom Tested on: Windows XP SP3 ENG Reference: http://www.exploit-db.com/exploits/11834 Big thanks to mrme, and corelanc0d3r. greetz to all the friends at Corela...

MPlayer SAMI Subtitle File Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

Debian Security Advisory DSA 2965-1 (tiff - security update)

Murray McAllister discovered a heap-based buffer overflow in the gif2tiff command line tool. Executing gif2tiff on a malicious tiff image could result in arbitrary code execution. OpenVAS Vulnerability Test $Id: deb2965.nasl 6692 2017-07-12 09:57:43Z teissa $ Auto-generated from advisory DSA 2965...

openSUSE Security Update : libvirt (openSUSE-SU-2012:0347-1)

This collective update 2012/02 for Xen provides fixes for the following reports : Xen === - 649209: Fix Xen live migrations being slow - 683580: Fix hangs during boot up after the message 'Enabled directed EOI with ioapicackold on! - 691256: unable to open a connection to the XEN Hypervisor -...

openSUSE Security Update : libreoffice-34 (openSUSE-SU-2011:1143-1)

LibreOffice 3.4 includes new interesting features and fixes, see http://www.libreoffice.org/download/3-4-new-features-and-fix es/ The update fixes the following security issue : - 704311: libreoffice Lotus Word Pro filter multiple vulnerabilities CVE-2011-2685 - 722075: LibreOffice: Out-of-bounds...

RealPlayer - '.3gp' File Processing Memory Corruption

source: https://www.securityfocus.com/bid/67434/info RealPlayer is prone to a memory-corruption vulnerability. An attacker can leverage this issue to crash the affected application, causing a denial-of-service condition. Due to the nature of this issue, arbitrary code execution may be possible bu...

GOM Player 2.2.57.5189 - '.ogg' Crash (PoC)

''' Exploit Title: Gomplayer Memory Corruption vulnerability latest Version 2.2.57.5189 Date: 2014/05/06 Exploit Author: Aryan Bayaninejad Linkedin : https://www.linkedin.com/profile/view?id=276969082 Vendor Homepage: www.gomlab.com Software Link:...

JetAudio 8.1.1 - .ogg Crash (PoC)

JetAudio 8.1.1 - .ogg Crash PoC ''' Exploit Title: JetAudio memory corruption in latest Version 8.1.1 Date: 2014/05/08 Exploit Author: Aryan Bayaninejad Linkedin : https://www.linkedin.com/profile/view?id=276969082 Vendor Homepage: www.jetaudio.com Version: Version 8.1.1 and prior to that Tested...

GOM Player 2.2.57.5189 Memory Corruption

GOM Player version 2.2.57.5189 suffers from a memory corruption vulnerability. Exploit Title: Gomplayer Memory Corruption vulnerability latest Version 2.2.57.5189 Date: 2014/05/06 Exploit Author: Aryan Bayaninejad Linkedin : https://www.linkedin.com/profile/view?id=276969082 Vendor Homepage:...

K-Lite CODEC 9.x Memory Corruption

Exploit Title: K-lite codec Version 9.x Memory corruption vulnerability Date: 2014/05/3 Author: Aryan Bayaninejad Linkedin : https://www.linkedin.com/profile/view?id=276969082 Vendor Homepage: http://www.codecguide.com Software Link: http://www.oldapps.com/k-litecodecpack.php?oldklitecodec=12328...

[SECURITY] Fedora 20 Update: python-pillow-2.2.1-4.fc20

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are five subpackages: tk tk interface, qt PIL image wrapper for Qt , sane scanning...