Microsoft Visio Viewer VSD File Format CVE-2012-0138 Remote Code Execution Vulnerability

Description Microsoft Visio Viewer is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected...

BS.Player 2.57 Buffer Overflow (Unicode SEH)

This module exploits a buffer overflow in BS.Player 2.57. When the playlist import is used to import a specially crafted m3u file, a buffer overflow occurs allowing arbitrary code execution. This module requires Metasploit: https://metasploit.com/download Current source:...

CCMPlayer 1.5 Stack Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'CCMPlayer 1.5 Sta...

Final Draft 8 Multiple Stack Buffer Overflows

Exploit for windows platform in category local exploits Name : Final Draft 8 Multiple Stack Buffer Overflows Vendor Website : http://www.finaldraft.com/index.php Date Released : 29/11/2011 Affected Software : Final Draft in in in in in in in By crafting a file that contains more than 10,032...

Final Draft 8 - Multiple Stack Buffer Overflows (Metasploit)

Name : Final Draft 8 Multiple Stack Buffer Overflows Vendor Website : http://www.finaldraft.com/index.php Date Released : 29/11/2011 Affected Software : Final Draft in in in in in in in By crafting a file that contains more than 10,032 characters in one of the above fields, the Final Draft 8...

Трояним эльфов

Трояним эльфов Задача: Вставить в elf-файл возможность, при указании пароля, запуска произвольных команд. Размер и функционал исходного elf-файла остаются неизменными. Часть 1. Трояним /bin/su из BackTrack 5 R1 x86 образ VMWare BT5R1-GNOME-VM-32.7z 1. ELF и его анатомия в контексте используемой...

Mini-Stream RM-MP3 Converter v3.1.2.1 (PLS File) Stack Buffer Overflow

Exploit for windows platform in category local exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Wireshark Heap Based BOF and Denial of Service Vulnerabilities (Windows)

The host is installed with Wireshark and is prone to heap based buffer overflow and denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: gbwiresharkbofndosvulnwin.nasl 7052 2017-09-04 11:50:51Z teissa $ Wireshark Heap Based BOF and Denial of Service Vulnerabilities Windows Authors:...

Microsoft Excel 2007 - '.xlb' Local Buffer Overflow (MS11-021) (Metasploit)

$Id: ms11021xlbbof.rb 14172 2011-11-06 20:16:34Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...

ZDI-11-308 : Cisco WebEx Player ATAS32.DLL linesProcessed Remote Code Execution Vulnerability

ZDI-11-308 : Cisco WebEx Player ATAS32.DLL linesProcessed Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-308 October 26, 2011 -- CVE ID: CVE-2011-4004 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Cisco -- Affected Products: Cisco WebEx --...

Cisco WebEx Player ATAS32.DLL linesProcessed Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco WebEx Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists in ATAS32.DLL during...

Cytel Studio 9.0 (CY3 File) Stack Buffer Overflow

Exploit for windows platform in category local exploits $Id: cytelstudiocy3.rb 14041 2011-10-24 01:39:11Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on...

Apple Safari - 'file://' Arbitrary Code Execution (Metasploit)

$Id: safarifilepolicy.rb 13967 2011-10-17 03:49:49Z todb $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

[BSA-053] Security update for libreoffice

Rene Engelhard uploaded new packages for libreoffice which fixed the following security problems: CVE-2011-2713 Red Hat, Inc. security researcher Huzaifa Sidhpurwala reported multiple vulnerabilities in the binary Microsoft Word doc file format importer of OpenOffice.org, a full-featured office...

qt buffer overflow in greyscale images

Buffer overflow in the TIFF reader in gui/image/qtiffhandler.cpp in Qt 4.7.4 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via the TIFFTAGSAMPLESPERPIXEL tag in a greyscale TIFF image with multiple samples per pixel...

Microsoft Excel畸形记录远程代码执行漏洞（MS11-072）

BUGTRAQ ID: 49478 CVECAN ID: CVE-2011-1988 Microsoft Excel是由Microsoft为Windows和Apple Macintosh操作系统的电脑而编写和运行的一款试算表软件。 Microsoft Excel在处理畸形记录时存在远程代码执行漏洞，远程攻击者可利用此漏洞以当前用户权限执行任意代码。 Excel解析电子表格文件中的特制记录时，其中的特定值可触发内存破坏漏洞。 Microsoft Excel 2010 Microsoft Excel 2007 Microsoft Excel 2003 Microsoft Office...

Microsoft Excel数组索引远程代码执行漏洞（MS11-072）

BUGTRAQ ID: 49477 CVECAN ID: CVE-2011-1987 Microsoft Excel是由Microsoft为Windows和Apple Macintosh操作系统的电脑而编写和运行的一款试算表软件。 Microsoft Excel在处理特制Excel文件时存在远程代码执行漏洞，远程攻击者可利用此漏洞以当前用户权限执行任意代码，可能造成拒绝服务。...

RealNetworks RealPlayer QCP Parsing

Added: 09/12/2011 CVE: CVE-2011-2950 BID: 49172 OSVDB: 74549 Background RealPlayer is a media player application which can play back various multimedia file formats, including QCP audio files. The QCP file format is frequently used to provide ring tones and to record voice for cellular telephones...

A simple analysis of the mplayer player to read. m3u File format vulnerability-vulnerability warning-the black bar safety net

Foreword:this time has been in efforts to study vulnerability analysis,and with reference to the failwest large cattle production0day, Second Edition, the storm m3u file reading vulnerabilitysee snow network-the fresh fruit was also analyzed,the younger brother not,can only follow a large cattle...

[SECURITY] Fedora 16 Update: libmodplug-0.8.8.4-1.fc16

Modplug mod music file format library...