VDOLive Player 3.0.2 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/872/info VDOLive Player v3.02 has an unchecked buffer that can allow arbitrary code to be executed if a specially-crafted .vdo file is loaded. /====================================================================...

KingScada kxClientDownload.ocx ActiveX - Remote Code Execution

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = GoodRanking include Msf::Exploit::Remote::BrowserExploitServer include...

winxp, the win2003, win7, win8 General the shellcode-exploit warning-the black bar safety net

This code in vc6 to compile, extract the shellcode when the debug mode, open the memory window, copy the binary code into the shellcode can be Code changes to the original address: http://hi.baidu.com/egodcore/item/c13e67fe197c940fc6dc45f5 int main asm nop; nop; nop; nop; nop; nop; nop; push ebp;...

KingScada - kxClientDownload.ocx ActiveX Remote Code Execution (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'KingScada kxClientDownload.ocx ActiveX Remote Code Execution', 'Description' = %q This module abuses the kxClientDownload.ocx ActiveX...

KingScada kxClientDownload.ocx ActiveX Remote Code Execution

This module abuses the kxClientDownload.ocx ActiveX control distributed with WellingTech KingScada. The ProjectURL property can be abused to download and load arbitrary DLLs from arbitrary locations, leading to arbitrary code execution, because of a dangerous usage of LoadLibrary. Due to the natu...

HP LoadRunner lrFileIOService ActiveX WriteFileString Remote Code Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 HttpClients::IE,...

HP LoadRunner - lrFileIOService ActiveX WriteFileString Remote Code Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 HttpClients::IE,...

HP LoadRunner lrFileIOService ActiveX WriteFileString Remote Code Execution

This module exploits a vulnerability on the lrFileIOService ActiveX, as installed with HP LoadRunner 11.50. The vulnerability exists in the WriteFileString method, which allow the user to write arbitrary files. It's abused to drop a payload embedded in a dll, which is later loaded through the Ini...

Windows x64 LoadLibrary Path

Load an arbitrary x64 library path This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 285 include Msf::Payload::Windows include Msf::Payload::Single def initializeinfo =...

Windows LoadLibrary Path

Load an arbitrary library path This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Executes a command on the target machine module MetasploitModule CachedSize = 202 include Msf::Payload::Windows::LoadLibrary end...

ASPR #2010-12-14-1: Remote Binary Planting in Windows Address Book

=====BEGIN-ACROS-REPORT===== PUBLIC ========================================================================= ACROS Security Problem Report 2010-12-14-1 ------------------------------------------------------------------------- ASPR 2010-12-14-1: Remote Binary Planting in Windows Address Book...

Microsoft Windows Vista - 'lpksetup.exe oci.dll' DLL Loading Arbitrary Code Execution

// source: https://www.securityfocus.com/bid/44414/info Microsoft Windows 'lpksetup.exe' is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share...

Microsoft Windows Print Spooler LoadLibrary Information Disclosure (MS09-022; CVE-2009-0230)

The Print Spooler service manages the printing process, which includes such tasks as retrieving the location of the correct printer driver, loading that driver, spooling high-level function calls into a print job, and scheduling print jobs. An elevation of privilege vulnerability has been reporte...

Command injection

The ListView control in the Client GUI AClient.exe in Symantec Altiris Deployment Solution 6.x before 6.9.355 SP1 allows local users to gain SYSTEM privileges and execute arbitrary commands via a "Shatter" style attack on the "command prompt" hidden GUI button to 1 overwrite the CommandLine...

CVE-2008-6827

The ListView control in the Client GUI AClient.exe in Symantec Altiris Deployment Solution 6.x before 6.9.355 SP1 allows local users to gain SYSTEM privileges and execute arbitrary commands via a "Shatter" style attack on the "command prompt" hidden GUI button to 1 overwrite the CommandLine...

CVE-2008-6827

The ListView control in the Client GUI AClient.exe in Symantec Altiris Deployment Solution 6.x before 6.9.355 SP1 allows local users to gain SYSTEM privileges and execute arbitrary commands via a "Shatter" style attack on the "command prompt" hidden GUI button to 1 overwrite the CommandLine...

Windows/x86 - Download File (http://skypher.com/dll) + LoadLibrary + Null-Free Shellcode (164 bytes)

Windows/x86 - Download File http://skypher.com/dll + LoadLibrary + Null-Free Shellcode 164 bytes. Shellcode exploit for Windowsx86 platform. Tags: Metas... ; Copyright c 2009-2010, Berend-Jan "SkyLined" Wever ; Project homepage: http://code.google.com/p/w32-dl-loadlib-shellcode/ ; All rights...

Managed to inject in-depth study-vulnerability warning-the black bar safety net

This is what I posted in the hacker line of Defense of the 2 0 0 8 year 1 2 on an article, here it is on the network for starters. The attachment is I wrote a tool“the Super SpySuperSpy”, including a window-detection function, and even be able to detect the VC's own SPY++can't detect the window; ...

Insomnia : ISVA-081020.1 - Altiris Deployment Server Agent - Privilege Escalation

Insomnia Security Vulnerability Advisory: ISVA-081020.1 Name: Altiris Deployment Server Agent - Privilege Escalation Released: 20 October 2008 Vendor Link: http://www.altiris.com/ Affected Products: Altiris Deployment Server 6.X Original Advisory:...

Windows system under the remote stack overflow combat-vulnerability warning-the black bar safety net

Code author:Ipxodi The following is a problem of the internet services program: // / server.cpp By Ipxodi / include winsock2. h include stdio. h char Buff1 0 2 4; void overflowchar s,int size char s15 0; printf"receive %d bytes",size; ssize=0; strcpys1,s; int main WSADATA wsa; SOCKET listenFD; in...