Opera Web Browser Heap Based Buffer Overflow Vulnerability (Windows)

The host is installed with Opera Web Browser and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gboperafileheapbofvulnwin.nasl 6519 2017-07-04 14:08:14Z cfischer $ Opera Web Browser Heap Based Buffer Overflow Vulnerability Windows Authors: Chandan S Copyright: Copyrigh...

Opera Web Browser Heap Based Buffer Overflow Vulnerability - Windows

Opera Web Browser is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Information stealing via local shortcut files — Mozilla

Security researcher Liu Die Yu of TopsecTianRongXin reported that locally saved .url shortcut files could be used to read information stored in the local cache. An attacker could use this vulnerability to steal information from a victim's browser cache if they were able to get the victim to...

Cosminexus javadoc Cross-Site Scripting Vulnerability

Overview The javadoc command of Cosminexus may generate an HTML file that contains cross-site scripting vulnerabilities. Impact An attacker could exploit said HTML file vulnerable to cross-site scripting. Solution Please refer to the 'Vendor Information' section for official remediation and take...

Groupwise 7.0 - mailto: scheme Buffer Overflow (PoC)

Groupwise 7.0 - mailto: scheme Buffer Overflow PoC PRODUCT: GroupWise 7.0 OS: Windows Xp The scheme "mailto" is vulnerable if one takes as default mail client to GroupWise, the fault is to implement the scheme followed by an extensive argument and this causes the buffer overflow. This brings the...

GroupWise 7.0 mailto: scheme buffer overflow

PRODUCT: GroupWise 7.0 OS: Windows Xp The scheme "mailto" is vulnerable if one takes as default mail client to GroupWise, the fault is to implement the scheme followed by an extensive argument and this causes the buffer overflow. This brings the consequence that can overwrite the EIP and is able ...

Groupwise 7.0 - 'mailto: scheme' Buffer Overflow (PoC)

PRODUCT: GroupWise 7.0 OS: Windows Xp The scheme "mailto" is vulnerable if one takes as default mail client to GroupWise, the fault is to implement the scheme followed by an extensive argument and this causes the buffer overflow. This brings the consequence that can overwrite the EIP and is able ...

wwrte-traverse.txt

WwW.BugReport.ir AmnPardaz Security Research Team Title: Web Wiz Rich Text EditorTM Vendor: http://www.webwizguide.com/ Bug: Directory traversal + HTM/HTML file creation on the server Vulnerable Version: 4.0 Exploit: Available Fix Available: No! Fast Solution is available. - Description: Web Wiz...

Web Wiz Rich Text Editor 4.0 - Multiple Vulnerabilities

WwW.BugReport.ir AmnPardaz Security Research Team Title: Web Wiz Rich Text EditorTM Vendor: http://www.webwizguide.com/ Bug: Directory traversal + HTM/HTML file creation on the server Vulnerable Version: 4.0 Exploit: Available Fix Available: No! Fast Solution is available. - Description: Web Wiz...

Design/Logic Flaw

Quick Look Apple Mac OS X 10.5.1, when previewing an HTML file, does not prevent plug-ins from making network requests, which might allow remote attackers to obtain sensitive information...

CVE-2007-5856

Quick Look Apple Mac OS X 10.5.1, when previewing an HTML file, does not prevent plug-ins from making network requests, which might allow remote attackers to obtain sensitive information...

CVE-2007-5856

CVE-2007-5856 affects Apple Mac OS X up to version 10.5.1 in Quick Look: when previewing HTML, plug-ins can initiate network requests, potentially leaking sensitive information. The NVD entry cites a CVSSv2 base score of 9.4 (HIGH) with network attack vector and no user interaction. OpenVAS refer...

Bitcomet Resource Browser v1.1 XSS

The program is vulnerable to attacks of the kind xss the parameter "about:" scripts without authorization in the example that I am presenting is a page that runs a while with a msgbox infinity. Create an html file and paste the following code html frameset rows="100" frame...

mlsrvx.dll 1.8.9.1 ArGoSoft Mail Server Data Write/Remote Code Execution

No description provided by source. !-- ---------------------------------------------------------------------------- :. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: mlsrvx.dll 1.8.9.1 ArGoSoft Mail Server Arbitrary Data Write & Remote Code Execution...

mlsrvx.dll 1.8.9.1 ArGoSoft Mail Server - Data Write/Code Execution

GoodFellas Security Research Team Technical Details ----------------- Telnet service will be started in 2 reboot. Any other kind of exploit could be easily set up because the attacker can write files and put specific data into these...

Cross site scripting

Adobe Integrated Runtime AIR, aka Apollo allows context-dependent attackers to modify arbitrary files within an executing .air file compiled AIR application and perform cross-site scripting XSS attacks, as demonstrated by an application that modifies an HTML file inside itself via JavaScript that...

RKD Software BarCode ActiveX Control BarCodeAx.dll 4.9 - Remote Overflow

RKD Software BarCode ActiveX Control BarCodeAx.dll 4.9 - Remote Overflow :. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: BarCodeAx.dll v. 4.9 ActiveX Control Remote Stack Buffer Overflow ================================================================= Internal ID...

Yahoo! Messenger Webcam 8.1 (Ywcupl.dll) Download / Execute Exploit

Exploit for unknown platform in category remote exploits =================================================================== Yahoo! Messenger Webcam 8.1 Ywcupl.dll Download / Execute Exploit =================================================================== / Compile in LCC-win32 Free! Download...

Yahoo! Messenger Webcam 8.1 - 'Ywcupl.dll' Download / Execute

/ Compile in LCC-win32 Free! Download and exec any file you like! Have Fun! / include include include char file = "Clickhere.html"; FILE fp = NULL; unsigned char sc = "\xEB\x54\x8B\x75\x3C\x8B\x74\x35\x78\x03\xF5\x56\x8B\x76\x20\x03"...

Mozilla Firefox 2.0.0.3 Gran Paradiso 3.0a3 - Hang Crash (Denial of Service)

Mozilla Firefox 2.0.0.3 Gran Paradiso 3.0a3 - Hang Crash Denial of Service usr/bin/python print "-------------------------------------------------------------------------" print " Mozilla Firefox 2.0.0.3 and Gran Paradiso 3.0a3 Denial of Service" print " author: shinnai" print " mail:...