3770 matches found
Directory traversal
Multiple directory traversal vulnerabilities in osCommerce 3.0.2 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the 1 set or 2 module parameter to a OM/Core/Site/Admin/Application/templatesmodules/pages/info.php, b...
The keyboard layout 0day vulnerability analysis-vulnerability warning-the black bar safety net
Recent tune up instruder hair 0day vulnerabilities: http://www.exploit-db.com/exploits/18140/ The Debug analysis of the situation written here. the dump file analysis results are as follows: EXCEPTIONCODE: NTSTATUS 0xc0000005 - "0x%08lx" FAULTINGIP: win32k! ReadLayoutFile+8 8 bf89ed23 0fb75006...
Microsoft Windows Kernel "Win32k.sys"键盘布局本地权限提升漏洞
BUGTRAQ ID: 50763 Microsoft Windows是流行的计算机操作系统。 Win32k.sys在实现上存在索引错误,在加载键盘布局文件时,本地攻击者可通过访问无效内存位置,利用此漏洞以内核权限执行任意代码,完全控制受影响计算机 Microsoft Windows XP Microsoft Windows 7 厂商补丁: Microsoft --------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.microsoft.com/windowsxp/default.asp instruder...
Microsoft Windows XP7 Kernel - win32k.sys Keyboard Layout Privilege Escalation (MS10-073)
Microsoft Windows XP7 Kernel - win32k.sys Keyboard Layout Privilege Escalation MS10-073 source: https://www.securityfocus.com/bid/50763/info Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with kernel-leve...
Microsoft Windows XP/7 Kernel - 'win32k.sys' Keyboard Layout Privilege Escalation (MS10-073)
source: https://www.securityfocus.com/bid/50763/info Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected...
Microsoft Winows 7 - Keyboard Layout Blue Screen of Death (MS10-073)
Microsoft Winows 7 - Keyboard Layout Blue Screen of Death MS10-073 //Crash: / win7 Access violation - code c0000005 !!! second chance !!! win32k!ReadLayoutFile+0x62: 9566d591 8b4834 mov ecx,dword ptr eax+34h kd r eax=ffffffe8 ebx=00000000 ecx=fe978b2e edx=000000e0 esi=fe4e0168 edi=00000000...
Microsoft Winows 7 - Keyboard Layout Blue Screen of Death (MS10-073)
//Crash: / win7 Access violation - code c0000005 !!! second chance !!! win32k!ReadLayoutFile+0x62: 9566d591 8b4834 mov ecx,dword ptr eax+34h kd r eax=ffffffe8 ebx=00000000 ecx=fe978b2e edx=000000e0 esi=fe4e0168 edi=00000000 eip=9566d591 esp=985ad8a0 ebp=985ad8bc iopl=0 nv up ei pl nz ac pe cy...
Aviosoft DTV Player buffer overflow vulnerability
Overview Aviosoft DTV Player contains a buffer overflow in the handling of playlist .plf files, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Aviosoft DTV Player is a multiple format video player application. Aviosoft DTV Player...
Opera Browser 10/11/12 (SVG layout) Memory Corruption
Exploit for Opera Browser 10/11/12 SVG layout Memory Corruption 0day Vulnerability: Discovered: 2010-10-13 Patched: 0day Tested on: v10.xx v10.50, v10.51, v10.52, v10.53, v10.54, v10.6, v10.61, v10.62 and v10.63 v11.xx v11.00, v11.01, v11.10, v11.11, v11.50 and v11.51 Exploit: Coded: 2010-10-14...
Opera Browser 10/11/12 - 'SVG Layout' Memory Corruption (Metasploit)
Exploit for Opera Browser 10/11/12 SVG layout Memory Corruption 0day Vulnerability: Discovered: 2010-10-13 Patched: 0day Tested on: v10.xx v10.50, v10.51, v10.52, v10.53, v10.54, v10.6, v10.61, v10.62 and v10.63 v11.xx v11.00, v11.01, v11.10, v11.11, v11.50 and v11.51 Exploit: Coded: 2010-10-14...
Opera Browser 101112 - SVG Layout Memory Corruption (Metasploit)
Opera Browser 101112 - SVG Layout Memory Corruption Metasploit Exploit for Opera Browser 10/11/12 SVG layout Memory Corruption 0day Vulnerability: Discovered: 2010-10-13 Patched: 0day Tested on: v10.xx v10.50, v10.51, v10.52, v10.53, v10.54, v10.6, v10.61, v10.62 and v10.63 v11.xx v11.00, v11.01,...
Opera Browser 10/11/12 (SVG layout) Memory Corruption (0day)
Exploit for windows platform in category remote exploits Exploit for Opera Browser 10/11/12 SVG layout Memory Corruption 0day Vulnerability: Discovered: 2010-10-13 Patched: 0day Tested on: v10.xx v10.50, v10.51, v10.52, v10.53, v10.54, v10.6, v10.61, v10.62 and v10.63 v11.xx v11.00, v11.01, v11.1...
AmmSoft ScriptFTP 3.3 client remote buffer overflow vulnerability
Overview AmmSoft's ScriptFTP client is susceptible to a remote buffer overflow vulnerability that is triggered when processing a sufficiently long filename during a FTP LIST command. Description AmmSoft's ScriptFTP client can be exploited to execute arbitrary code when processing GETLIST or GETFI...
Microsoft Internet Explorer layout-grid-char Style Property Use-After-Free Memory Corruption
Added: 09/19/2011 CVE: CVE-2011-1260 BID: 48208 OSVDB: 72950 Background Cascading Style Sheets CSS is a simple mechanism for adding style to web documents. Problem A use-after-free vulnerability exists in Microsoft's Internet Explorer layout engine in mshtml.dll when handling extra-large values f...
Microsoft Internet Explorer layout-grid-char Style Property Use-After-Free Memory Corruption
Added: 09/19/2011 CVE: CVE-2011-1260 BID: 48208 OSVDB: 72950 Background Cascading Style Sheets CSS is a simple mechanism for adding style to web documents. Problem A use-after-free vulnerability exists in Microsoft's Internet Explorer layout engine in mshtml.dll when handling extra-large values f...
Microsoft Internet Explorer layout-grid-char Style Property Use-After-Free Memory Corruption
Added: 09/19/2011 CVE: CVE-2011-1260 BID: 48208 OSVDB: 72950 Background Cascading Style Sheets CSS is a simple mechanism for adding style to web documents. Problem A use-after-free vulnerability exists in Microsoft's Internet Explorer layout engine in mshtml.dll when handling extra-large values f...
CVE-2011-3488
Use-after-free vulnerability in Equis MetaStock 11 and earlier allows remote attackers to execute arbitrary code via a malformed 1 mwc chart, 2 mws chart, 3 mwt template, or 4 mwl layout...
Design/Logic Flaw
Use-after-free vulnerability in Equis MetaStock 11 and earlier allows remote attackers to execute arbitrary code via a malformed 1 mwc chart, 2 mws chart, 3 mwt template, or 4 mwl layout...
CVE-2011-3488
Use-after-free vulnerability in Equis MetaStock 11 and earlier allows remote attackers to execute arbitrary code via a malformed 1 mwc chart, 2 mws chart, 3 mwt template, or 4 mwl layout...
OpenJDK: integer overflows in JPEGImageReader and font SunLayoutEngine (2D, 7013519)
Multiple unspecified vulnerabilities in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.231 and earlier allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...