SUSE CVE-2011-4694

Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and Mac OS X allows remote attackers to execute arbitrary code via a crafted SWF file, as demonstrated by the second of two vulnerabilities exploited by the Intevydis vdadobefp module in VulnDisco Step Ahead SA. NOTE: as of...

SUSE CVE-2011-4693

Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and Mac OS X allows remote attackers to execute arbitrary code via a crafted SWF file, as demonstrated by the first of two vulnerabilities exploited by the Intevydis vdadobefp module in VulnDisco Step Ahead SA. NOTE: as of...

Reports Emerge of New Flash Vulnerabilities

There are multiple reports emerging of two new vulnerabilities in Adobe Flash that could lead to remote code execution. There’s little information about the exact nature of the bugs available right now, and Adobe has not released any advisories or information about them either. The vulnerabilitie...

Design/Logic Flaw

Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and Mac OS X allows remote attackers to execute arbitrary code via a crafted SWF file, as demonstrated by the second of two vulnerabilities exploited by the Intevydis vdadobefp module in VulnDisco Step Ahead SA. NOTE: as of...

Input validation

Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and Mac OS X allows remote attackers to execute arbitrary code via a crafted SWF file, as demonstrated by the first of two vulnerabilities exploited by the Intevydis vdadobefp module in VulnDisco Step Ahead SA. NOTE: as of...

CVE-2011-4693

Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and Mac OS X allows remote attackers to execute arbitrary code via a crafted SWF file, as demonstrated by the first of two vulnerabilities exploited by the Intevydis vdadobefp module in VulnDisco Step Ahead SA. NOTE: as of...

CVE-2011-4694

Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and Mac OS X allows remote attackers to execute arbitrary code via a crafted SWF file, as demonstrated by the second of two vulnerabilities exploited by the Intevydis vdadobefp module in VulnDisco Step Ahead SA. NOTE: as of...

CVE-2011-4693

Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and Mac OS X allows remote attackers to execute arbitrary code via a crafted SWF file, as demonstrated by the first of two vulnerabilities exploited by the Intevydis vdadobefp module in VulnDisco Step Ahead SA. NOTE: as of...

Sun Java System Web Server WebDAV OPTIONS Buffer Overflow

This module exploits a buffer overflow in Sun Java Web Server prior to version 7 Update 8. By sending an "OPTIONS" request with an overly long path, attackers can execute arbitrary code. In order to reach the vulnerable code, the attacker must also specify the path to a directory with WebDAV...

Mozilla Fast-Tracks Fix For Critical Firefox Flaw

Mozilla has fast-tracked a patch for a critical vulnerability affecting its flagship Firefox browser. The patch, which was originally slated for release on March 30, fixes a vulnerability that could allow remote code execution attacks. The flaw was originally released into the VulnDisco exploit...

Adobe RoboHelp Server 8 Arbitrary File Upload and Execute.

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Adobe RoboHelp...

Adobe RoboHelp Server未明安全漏洞

Bugraq ID: 36245 Adobe RoboHelp Server 8是一款为网站及内部网的桌面以及Web应用程序和知识库提供帮助的系统。 Adobe RoboHelp Server存在一个未明预验证错误，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 Intevydis公司发布的商业漏洞利用工具已经提供相关的攻击信息。 Adobe RoboHelp Server 8 厂商解决方案: 目前没有解决方案提供： http://www.adobe.com/products/robohelpserver/...

Apache mod_proxy_ftp模块Null指针拒绝服务漏洞

Bugraq ID: 36260 Apache modproxyftp是一款用于处理FTP代理请求的Apache模块。 当处理FTP服务器的应答时modproxyftp存在错误，可导致Null指针应用而造成一个用程序崩溃。 使用./configure –enable-proxy –enable-proxy-ftp启用代理支持，并在httpd.conf文件中设置‘ProxyRequests’选项，如下代码的漏洞可导致应用程序崩溃： modules/proxy/proxyftp.c: int approxyftphandlerrequestrec r, proxyserverconf con...