April Patch Tuesday Fixes 11 Vulnerabilities, Last Updates for XP

As expected, Microsoft issued its final epitaph for Windows XP today, pushing out four security bulletins for 11 vulnerabilities, including the last updates for the oft-maligned, thirteen-year-old operating system. Despite it being XP’s last gasp from a security standpoint, it’s actually a...

Microsoft Excel OBJ Record Stack Overflow (MS10-038) - Ver2 (CVE-2010-0822)

Microsoft Excel is a spreadsheet application released by the Microsoft Corporation. Its native file format is the Binary Interchange File Format BIFF, which is available is several versions. An Excel file contains information about the various spreadsheets that form an Excel workbook, the data an...

Gold MP4 Player 3.3 - Universal (SEH) (Metasploit)

Gold MP4 Player 3.3 - Universal SEH Metasploit This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

Gold MP4 Player 3.3 - Universal (SEH) (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Gold MP4 Player 3...

Gold MP4 Player 3.3 - Universal SEH Exploit (MSF)

Exploit for windows platform in category dos / poc require 'msf/core' class Metasploit3 'Gold MP4 Player 3.3 Universal SEH Exploit', 'Description' = %q This module exploits a buffer overflow in Gold MP4 Player 3.3. When this application is loaded a special crafted Flash URL via File - Open Flash...

Microsoft Windows GDI JPEG Processing Buffer Overrun (MS04-028) - Ver2 (CVE-2004-0200)

JPEG is a very popular image file format. Specially crafted JPEG files may be used to create a DoS condition and in some cases, arbitrary code execution...

(tiff2pdf): Heap-based buffer overflow in t2_process_jpeg_strip()

Heap-based buffer overflow in the t2pprocessjpegstrip function in tiff2pdf in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted TIFF image file...

(tiff2pdf): use-after-free in t2p_readwrite_pdf_image()

Use-after-free vulnerability in the t2preadwritepdfimage function in tools/tiff2pdf.c in libtiff 4.0.3 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted TIFF image...

Interpretation of the Bible – exploits the intermediate level skills of analysis-vulnerability warning-the black bar safety net

Inscription: From the last update feel has been a long, long time, and what time less are excuses himself becomes the lazy's true, give us an apology, after the update will speed up, today do not speak the vulnerability analysis, with me to discuss the exploits of some of the principles on the...

IBM Forms Viewer - Unicode Buffer Overflow (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class Metasploit3 'IBM Forms Viewer Unicode Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer...

Microsoft Excel Document Malformed BIFF Record Heap Overflow (MS09-067) - Ver2 (CVE-2009-3130)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in Microsoft Excel. The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse the Excel spreadsheet file format. A remote attacker could trigger this...

IBM Forms Viewer Unicode Buffer Overflow

This Metasploit module exploits a stack-based buffer overflow in IBM Forms Viewer. The vulnerability is due to a dangerous usage of strcpy-like function, and occurs while parsing malformed XFDL files, with a long fontname value. This Metasploit module has been tested successfully on IBM Forms...

IcoFX Stack Buffer Overflow

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'IcoFX Stack Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer overflow vulnerability in version 2.1 of...

OpenEXR: Multiple Vulnerabilities

Background OpenEXR is a high dynamic-range HDR image file format developed by Industrial Light & Magic for use in computer imaging applications. Description Multiple vulnerabilities have been discovered in OpenEXR. Please review the CVE identifiers referenced below for details. Impact A...

Microsoft - Tagged Image File Format '.TIFF' Integer Overflow (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex/zip' require 'nokogiri' module ::Nokogiri module XML class Builder Some XML documents don't declare the namespace before referencing, but...

Microsoft Tagged Image File Format (TIFF) Integer Overflow Vulnerability

Exploit for windows platform in category remote exploits require 'msf/core' require 'rex/zip' require 'nokogiri' module ::Nokogiri module XML class Builder Some XML documents don't declare the namespace before referencing, but Nokogiri requires one. So here's our hack to get around that by adding...

MS13-096 Microsoft Tagged Image File Format (TIFF) Integer Overflow

This module exploits a vulnerability found in Microsoft's Tagged Image File Format. It was originally discovered in the wild, targeting Windows XP and Windows Server 2003 users running Microsoft Office, specifically in the Middle East and South Asia region. The flaw is due to a DWORD value...

OSX Screen Capture

This module takes screenshots of target desktop and automatically downloads them. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'OSX Screen Capture', 'Description' = %q This module takes...

Final Draft 8 File Format Stack Buffer Overflow Vulnerability

This Metasploit module exploits a stack-based buffer overflow in Final Draft 8. Multiple fields are vulnerable to the overflow, however Word in IgnoredWords is the only field to accept mixed-case characters. require 'msf/core' class Metasploit3 'Final Draft 8 File Format Stack Buffer Overflow',...

StoryBoard Quick 6 Memory Corruption

require 'msf/core' class Metasploit3 'StoryBoard Quick 6 Memory Corruption Vulnerability', 'Description' = %q This module exploits a stack-based buffer overflow in StoryBoard Quick 6. , 'License' = MSFLICENSE, 'Author' = 'vt [email protected]' , 'Version' = '$Revision: 10394 $'...