StoryBoard Quick 6 Memory Corruption Vulnerability

This Metasploit module exploits a stack-based buffer overflow in StoryBoard Quick 6. require 'msf/core' class Metasploit3 'StoryBoard Quick 6 Memory Corruption Vulnerability', 'Description' = %q This module exploits a stack-based buffer overflow in StoryBoard Quick 6. , 'License' = MSFLICENSE,...

StoryBoard Quick 6 Memory Corruption

require 'msf/core' class Metasploit3 'StoryBoard Quick 6 Memory Corruption Vulnerability', 'Description' = %q This module exploits a stack-based buffer overflow in StoryBoard Quick 6. , 'License' = MSFLICENSE, 'Author' = 'vt [email protected]' , 'Version' = '$Revision: 10394 $'...

Final Draft 8 File Format Stack Buffer Overflow

require 'msf/core' class Metasploit3 'Final Draft 8 File Format Stack Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer overflow in Final Draft 8. Multiple fields are vulnerable to the overflow, however in is the only field to accept mixed-case characters. , 'License'...

Nodejs js-yaml load() Code Execution

This module can be used to abuse node.js applications that parse user-supplied YAML input using the load function from the 'js-yaml' package 'Nodejs js-yaml load Code Execution', 'Description' = %q This module can be used to abuse node.js applications that parse user-supplied YAML input using the...

Adobe Flash Player: Multiple vulnerabilities

Background The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Description Multiple unspecified vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact A...

A-PDF WAV to MP3 v1.0.0 Buffer Overflow

This module exploits a buffer overflow in A-PDF WAV to MP3 v1.0.0. When the application is used to import a specially crafted m3u file, a buffer overflow occurs allowing arbitrary code execution. This module requires Metasploit: https://metasploit.com/download Current source:...

Fedora Update for libtiff FEDORA-2013-15679

Check for the Version of libtiff OpenVAS Vulnerability Test Fedora Update for libtiff FEDORA-2013-15679 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CVE-2013-3156

Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft Office allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted Access file, aka "Access File Format Memory Corruption Vulnerability."...

Debian Security Advisory DSA 2744-1 (tiff - several vulnerabilities)

Pedro Ribeiro and Huzaifa S. Sidhpurwala discovered multiple vulnerabilities in various tools shipped by the tiff library. Processing a malformed file may lead to denial of service or the execution of arbitrary code. OpenVAS Vulnerability Test $Id: deb2744.nasl 6611 2017-07-07 12:07:20Z cfischer ...

OSX Manage Webcam

This module will allow the user to detect installed webcams with the LIST action, take a snapshot with the SNAPSHOT action, or record a webcam and mic with the RECORD action This module requires Metasploit: https://metasploit.com/download Current source:...

Fedora Update for libtiff FEDORA-2013-14707

Check for the Version of libtiff OpenVAS Vulnerability Test Fedora Update for libtiff FEDORA-2013-14707 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

[Pyew v2.2] A Python tool for static malware analysis

Pyew is a command line python tool to analyse malware. It does have support for hexadecimal viewing, disassembly Intel 16, 32 and 64 bits, PE and ELF file formats it performs code analysis and let you write scripts using an API to perform many types of analysis, follows direct call/jmp instructio...

Apple Safari webarchive File Format UXSS

A UXSS stack vulnerability has been reported in the Apple Safari webarchive File Format...

Apple Quicktime 7 Invalid Atom Length Buffer Overflow

This module exploits a vulnerability found in Apple QuickTime. The flaw is triggered when QuickTime fails to properly handle the data length for certain atoms such as 'rdrf' or 'dref' in the Alis record, which may result a buffer overflow by loading a specially crafted .mov file, and allows...

MediaCoder 0.8.23.5530 SEH Buffer Overflow Vulnerability

Mediacoder version 0.8.23.5530 SEH buffer overflow exploit that spawns calc.exe. !/usr/bin/python print """ +Exploit Title: Mediacoder 0.8.23.5530 SEH Buffer Overflow +Download All Product: http://www.mediacoderhq.com/editions.html +Vulnerable Product:! +Mediacoder 0.8.23.5530 +Vulnerabilities Fi...

Mediacoder .lst SEH Buffer Overflow

!/usr/bin/python import os import sys from struct import pack from time import sleep if os.name == "nt": os.system"cls" os.system"color 3f" else: os.system"clear" print """ +Exploit Title: All Mediacoder Product SEH Buffer Overflow +Download All Product: http://www.mediacoderhq.com/editions.html...

CVE-2013-3662 - Sketchup MAC Pict Material Palette Stack Corruption

If you are still using an old version of SketchUp8M2 you should upgrade it. Title: Sketchup MAC Pict Material Palette Stack Corruption Product: Google SketchUp Advisory ID: BINA-20111201 CVE ID: CVE-2013-3662 Class: Boundary Error Condition Buffer Overflow Vulnerability class: Client side/ file...

CVE-2013-3663 - SketchUp BMP RLE8 Heap Overflow

If you are still using a not so old version of SketchUp8M3 you should upgrade it... Title: SketchUp BMP RLE8 Heap Overflow Product: Google SketchUp Advisory ID: BINA-20120523 CVE ID: CVE-2013-3663 Class: Boundary Error Condition Buffer Overflow Vulnerability class: Client side/ file format...

Scientific Linux Security Update : icedtea-web on SL6.x i386/x86_64 (20130417)

It was discovered that the IcedTea-Web plug-in incorrectly used the same class loader instance for applets with the same value of the codebase attribute, even when they originated from different domains. A malicious applet could use this flaw to gain information about and possibly manipulate...

SEC Consult SA-20130313-0 :: QlikView Desktop Client Integer Overflow

SEC Consult Vulnerability Lab Security Advisory 20130313-0 ======================================================================= title: QlikView Desktop Client Integer Overflow product: QlikView Desktop Client vulnerable version: 11.00 SR2 fixed version: 11.20 SR1 CVE: impact: High homepage:...