Microsoft Windows Media Player 10 - Plugin Overflow (MS06-006)

WMP Plugin EMBED Exploit // Windows Media Player Plug-In EMBED Overflow Universal Exploit MS06-006 // By Matthew Murphy [email protected] // // DISCLAIMER: // // This exploit code is intended only as a demonstration tool for // educational or testing purposes. It is not intended to be used for...

Microsoft Windows Media Player 10 - Plugin Overflow (MS06-006)

Microsoft Windows Media Player 10 - Plugin Overflow MS06-006 WMP Plugin EMBED Exploit // Windows Media Player Plug-In EMBED Overflow Universal Exploit MS06-006 // By Matthew Murphy [email protected] // // DISCLAIMER: // // This exploit code is intended only as a demonstration tool for //...

CVE-2005-3175

Microsoft Windows 2000 before Update Rollup 1 for SP4 allows a local administrator to unlock a computer even if it has been locked by a domain administrator, which allows the local administrator to access the session as the domain administrator...

CVE-2005-3175

Microsoft Windows 2000 before Update Rollup 1 for SP4 allows a local administrator to unlock a computer even if it has been locked by a domain administrator, which allows the local administrator to access the session as the domain administrator...

CVE-2005-3175

CVE-2005-3175 concerns Microsoft Windows 2000 before Update Rollup 1 for SP4. The vulnerability permits a local administrator to unlock a computer that was locked by a domain administrator, enabling the local administrator to access the domain session. Connected documents corroborate the affected...

Windows Execute net user /ADD

Create a new user and add them to local administration group. Note: The specified password is checked for common complexity requirements to prevent the target machine rejecting the user for failing to meet policy requirements. Complexity check: 8-14 chars 1 UPPER, 1 lower, 1 digit/special This...

CVE-2002-1875

CVE-2002-1875 affects Entercept Agent 2.5 for Windows. The vulnerability description states that local administrative users can obtain the Entercept agent password, enabling them to log on as the entercept_agent account and conceal their identity. Connected sources consistently describe the same ...

easynews 1.5 let's remote users modify database

Hey, that's my first submission so don't expect anything spectacular. There are a few bugs in Easynews 1.5: Short Description: Easynews 1.5 - database and templates remotly modifieable, cross site scripting, local users gain admin pass, and stuff : Found by: markus [email protected] Vendor...

CVE-2000-0605

Summary: CVE-2000-0605 affects Blackboard CourseInfo 4.0. The vulnerability is that local and SQL administrator usernames/passwords are stored in cleartext in a registry key whose ACL allows other users to access the passwords. This leads to potential confidentiality exposure of admin credentials...

Profile overwrite/delete due to registry size limit.

All, We have discovered a bug with NT v4.0-SP6a registry size growth and overwriting of user profiles. This bug was exposed when the SMS v2.0-SP2 client runs into a condition where it continually creates new registry keys and values filling the system registry with thousands of crap entries - thu...