74 matches found
SUSE CVE-2005-4560
The Windows Graphical Device Interface library GDI32.DLL in Microsoft Windows allows remote attackers to execute arbitrary code via a Windows Metafile WMF format image with a crafted SETABORTPROC GDI Escape function call, related to the Windows Picture and Fax Viewer SHIMGVW.DLL, a different...
Description of the security update for the information disclosure vulnerabilities in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: September 11, 2018
Description of the security update for the information disclosure vulnerabilities in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: September 11, 2018 Summary An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its...
Ayukov NFTP FTP Client Buffer Overflow
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ayukov NFTP FTP Client Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer overflow vulnerability against Ayukov NFTPD...
Ayukov NFTP FTP Client 2.0 - Remote Buffer Overflow (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ayukov NFTP FTP Client Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer overflow vulnerability against Ayukov NFTPD...
Microsoft Windows 'GDI32.DLL' Information Disclosure Vulnerability (KB4019206)
This host is missing an important security update according to Microsoft KB4019206. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...
PCMAN FTP Server 2.0.7 NLST Buffer Overflow
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'PCMAN FTP Server Buffer Overflow - NLST Command', 'Description' = %q This module exploits a buffer overflow vulnerability found...
PCMAN FTP Server 2.0.7 NLST Buffer Overflow Exploit
This Metasploit module exploits a buffer overflow vulnerability found in the NLST command of the PCMAN FTP version 2.0.7 Server. This requires authentication but by default anonymous credentials are enabled. This module requires Metasploit: http://metasploit.com/download Current source:...
Microsoft Office PowerPoint 2010 GDI - GDI32!ConvertDxArray Insufficient Bounds Check Exploit
Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=951 Platform: GDI on Windows 7 x86 reachable from Microsoft Office 2010 Class: Out of bounds memory access The following crash was observed in Microsoft Office 2010 running under...
Microsoft Graphics Component 'gdi32.dll' Information Disclosure Vulnerability (MS17-013)
'gdi32.dll SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.809889";...
Microsoft Office PowerPoint 2010 - GDI GDI32!ConvertDxArray Insufficient Bounds Check
Microsoft Office PowerPoint 2010 - GDI GDI32!ConvertDxArray Insufficient Bounds Check Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=951 Platform: GDI on Windows 7 x86 reachable from Microsoft Office 2010 Class: Out of bounds memory access The following crash was observed in...
CVE-2017-0038
gdi32.dll in Graphics Device Interface GDI in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information from process heap...
Microsoft Windows gdi32.dll - EMR_SETDIBITSTODEVICE Heap-Based Out-of-Bounds Reads Exploit
Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=992 In issue 757, I described multiple bugs related to the handling of DIBs Device Independent Bitmaps embedded in EMF records, as implemented in the user-mode Windows GDI library...
Microsoft Windows - gdi32.dll EMR_SETDIBITSTODEVICE Heap Out-of-Bounds Reads Memory Disclosure
Microsoft Windows - gdi32.dll EMRSETDIBITSTODEVICE Heap Out-of-Bounds Reads Memory Disclosure Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=992 In issue 757, I described multiple bugs related to the handling of DIBs Device Independent Bitmaps embedded in EMF records, as...
Microsoft Windows - 'gdi32.dll' EMR_SETDIBITSTODEVICE Heap Out-of-Bounds Reads / Memory Disclosure
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=992 In issue 757, I described multiple bugs related to the handling of DIBs Device Independent Bitmaps embedded in EMF records, as implemented in the user-mode Windows GDI library gdi32.dll. As a quick reminder, the DIB-embedding...
PCMan FTP Server 2.0.7 - 'NLST' Remote Buffer Overflow
!/usr/bin/env python -- coding: utf-8 -- import socket Exploit Title: PCMan FTP Server 2.0 Buffer Overflow NLST command Date: 03/11/16 Exploit Author: Karri93 Version: 2.0 Tested on: Windows XP Profesional SP3 Spanish x86 CVE: N/A Shellcode Metasploit: msfvenom -p windows/shellreversetcp...
Freefloat FTP Server 1.0 RMD Buffer Overflow
!/usr/bin/env python -- coding: utf-8 -- import socket Exploit Title: FreeFloat FTP Server Buffer Overflow RMD command Date: 29 Octubre 2016 Exploit Author: Karri93 Software Link: http://www.freefloat.com/software/freefloatftpserver.zip Version: 1.0 Tested on: Windows XP Profesional SP3 Spanish x...
Freefloat FTP Server 1.0 - 'RMD' Command Buffer Overflow Exploit
Exploit for windows platform in category remote exploits !/usr/bin/env python -- coding: utf-8 -- import socket Exploit Title: FreeFloat FTP Server Buffer Overflow RMD command Date: 29 Octubre 2016 Exploit Author: Karri93 Software Link: http://www.freefloat.com/software/freefloatftpserver.zip...
Microsoft Windows - 'gdi32.dll' Multiple DIB-Related EMF Record Handlers Heap Out-of-Bounds Reads/Memory Disclosure (MS16-074)
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=757 As clearly visible in the EMF Enhanced Metafile image format specification MS-EMF, there are multiple records which deal with DIBs Device Independent Bitmaps. Examples of such records are EMRALPHABLEND, EMRBITBLT, EMRMASKBLT,...
Microsoft Windows - gdi32.dll Multiple DIB-Related EMF Record Handlers Heap Based Out-of-Bounds Read
Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=757 As clearly visible in the EMF Enhanced Metafile image format specification MS-EMF, there are multiple records which deal with DIBs Device Independent Bitmaps. Examples of such...
Microsoft Windows - gdi32.dll Multiple DIB-Related EMF Record Handlers Heap Out-of-Bounds ReadsMemory Disclosure (MS16-074)
Microsoft Windows - gdi32.dll Multiple DIB-Related EMF Record Handlers Heap Out-of-Bounds ReadsMemory Disclosure MS16-074 Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=757 As clearly visible in the EMF Enhanced Metafile image format specification MS-EMF, there are multiple...