394 matches found
xRadio 0.95b Buffer Overflow
This module exploits a buffer overflow in xRadio 0.95b. Using the application to import a specially crafted xrl file, a buffer overflow occurs allowing arbitrary code execution. This module requires Metasploit: https://metasploit.com/download Current source:...
Virtuosa Phoenix Edition 5.2 - ASX Buffer Overflow (SEH)
!/usr/bin/python Exploit Title: Virtuosa Phoenix Edition 5.2 ASX BOF SEH Overwrite Date found: Aug 16th 2010 Author: Acidgen Software Link: http://download1.virtuosa.com/VirtuosaTrial.exe Version: 5.2 Tested on: Windows XP SP2 Virtuosa - File Import Import song or video file from Playlists junkA ...
A-PDF WAV To MP3 1.0.0 Universal Local SEH Exploit
!/usr/bin/env python Title: A-PDF WAV to MP3 v1.0.0 Universal Local SEH Exploit Exloit By: DrIDE Tested On: XPSP3 Date: August 18, 2010 Download: http://www.brothersoft.com/a-pdf-wav-to-mp3-converter-394393.html Reference: http://www.exploit-db.com/exploits/14676/ Usage: Import File, Select It,...
SA-CONTRIB-2010-049 - Wordpress Import - Access bypass
The Wordpress Import module provides the ability to import nodes from a Wordpress WXR export file. The form to import a WXR file does not use the correct access permission and allows any user to upload arbitrary files and import data from a remote WRX file. Versions affected Wordpress Import for...
HTC Touch DoS
vCard files are accepted and imported without user intervation...
Hex Workshop <= v6 (.hex) File Local Code
!/usr/bin/perl -w Hex Workshop = v6 .hex File Local Code Execution Discovred by : Security^Ghost Exploited by : DATASNIPER Exploit Tested on WindoZ XP SP2 FR. for more information vist my blog:http://datasniper.arab4services.net/ the exploit it's so weird ;,take look at the shellcode,and remember...
Destiny Media Player 1.61 - '.lst' Local Buffer Overflow (1)
Destiny Media Player 1.61 lst File Local Buffer overflow Exploit By:Encrypt3d.M!nd i was so stupid when i wrote the poc coz i didn't realize somethings :p well this is workin exploit tested on windows xp sp3 don't double click the file,import it from the program Greetz:-=Mizo=-thnx dude :X,L!0N,E...
Fedora 8 : phpMyAdmin-2.11.8.1-1.fc8 (2008-6810)
This update solves PMASA-2008-6 phpMyAdmin security announcement from 2008-07-28: Cross-site Framing; XSS in setup.php; see http://www.phpmyadmin.net/homepage/security.php?issue=PMASA-2008-6 - interface Table list pagination in navi - profiling Profiling causes query to be executed again really...
CVE-2008-3066
Stack-based buffer overflow in a certain ActiveX control in rjbdll.dll in RealNetworks RealPlayer Enterprise, RealPlayer 10, and RealPlayer 10.5 before build 6.0.12.1675 allows remote attackers to execute arbitrary code by importing a file into a media library and then deleting this file...
CVE-2008-0112
Unspecified vulnerability in Microsoft Excel 2000 SP3, and Office for Mac 2004 and 2008 allows user-assisted remote attackers to execute arbitrary code via a crafted .SLK file that is not properly handled when importing the file, aka "Excel File Import Vulnerability."...
The cafe's invasion and the cafe boss fight-bug warning-the black bar safety net
We're and the owner of the cafe fight to the end to succeed must know ourselves to win every battle. First let's take a look at the cafe owners now generally under some kind of obstacle to it: The primary 1. Prohibition of“Run”; 2. The prohibition of the use of the menu bar on the right keys; 3....
CVE-2006-0836
Mozilla Thunderbird 1.5 allows user-assisted attackers to cause an unspecified denial of service by tricking the user into importing an LDIF file with a long field into the address book, as demonstrated by a long homePhone field...
DST2K0039: Webteachers Webdata: Importing files lower than web ro ot possible in to database
All, We have released the following advisory due to the fact that we have provided a patch Section II. If people require any help with implementing this patch please come back to us on the following e-mail address [email protected]. This patch may require a little tinkering with for you...
DST2K0039.txt
============================================================================ Delphis Consulting Plc ============================================================================ Security Team Advisories 26/09/2000 [email protected] http://www.delphisplc.com/thinking/whitepapers/...