Microsoft Windows Live Messenger 'dwmapi.dll' DLL装载任意代码执行漏洞

Bugtraq ID: 48055 Microsoft Windows Live Messenger是一款微软提供的流行的即时通信工具。 Microsoft Windows Live Messenger 'dwmapi.dll'以不安全方式装载DLL库，攻击者可以诱使用户在远程WebDAV或SMB共享上打开.plsk文件，可以登录用户安全上下文装载任意库 Microsoft Windows Live Messenger 14.0.8089 Microsoft Windows Live Messenger 14.0.8117.416 Microsoft Windows Live...

MSN Live Messenger 14.0 Plus! DLL Hijack

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

Microsoft Windows Live Messenger 14 - 'dwmapi.dll' DLL Loading Arbitrary Code Execution

// source: https://www.securityfocus.com/bid/48055/info Microsoft Windows Live Messenger is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share...

Windows Xp sp2 + JetAudio v8.0.7.1 + M-Office 2003 DLL Hijacking

Exploit for windows platform in category local exploits ================================================================================= . . . . | | ||/ | || | / / \ / /\ | | / | \ \ | |/ | \ / | || | // | / // | \ /\ | /|//|||| |\ | / /|| / Exploit-ID is the Indonesian Exploit Archive...

Windows Media Player 11 (.au) Local Proof Of Concept Exploit

Exploit for windows platform in category dos / poc 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site...

0day Exploit Released : Adobe, HP, Sun, Microsoft Interix & many more Vendors FTP hackable !

0day Exploit Released : Adobe, HP, Sun, Microsoft Interix & many more Vendors FTP hackable ! Topic : Multiple Vendors libc/glob3 resource exhaustion +0day remote ftpd-anon CVE : CVE-2010-2632 CWE : CWE-NOMAPPING SecurityRisk : Medium About Remote Exploit : Yes Local Exploit : Yes Victim interacti...

Mozilla Firefox 4.0 (xul.dll) DLL Hijacking Exploit

Exploit for windows platform in category local exploits Exploit Title: Mozilla Firefox 4.0 xul.dll using .shtml DLL Hijacking Exploit Author: Caddy-Dz Facebook Page: www.facebook.com/islam.caddy E-mail: email protected Category: Local Exploit Tested on: Windows Xp Sp 2 | Special Greets To :...

Babylon Dictionary <= DLL Hijacking Exploit

Exploit for windows platform in category local exploits Exploit Title: Babylon Dictionary Special Greets To : KedAns-Dz & All Algerians Hackers Vulnerable extensions: .dcb Vulnerable Dlls: besextension.dll ------------------------------- include define DllExport declspec dllexport DllExport void...

6-year FreeBSD-SA-05:02.sendfile exploit

Hi, This is almost 0-day. In a sense. I wrote this for a pentesting company. I found it ethically OK to do since the FreeBSD advisory was already out for a couple of weeks. It turns out I was not alone to write an exploit for this bug, and to publish the exploit this year. Timeline: 2005/04/04 -...

PT-2011-1093 · Logrotate +2 · Logrotate +2

Name of the Vulnerable Software and Affected Versions: logrotate versions 3.7.9 and earlier logrotate versions prior to 3.8.0 Description: The issue allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a log filename. This can be demonstrated by a filename...

IDEAL Administration 2011 11.4 Buffer Overflow

!/usr/bin/env python IDEAL Administration 2011 v11.4 Local SEH Buffer Overflow Exploit Found By: DrIDE Usage: Migrate - Open Migration Project - Bind Shell Download: www.pointdev.com Tested On: Windows XPSP3 Notes: Another version, another exploit... come on guys. windows/shellbindtcp - 696 bytes...

Mediacoder 2011 RC3 - .m3u Local Buffer Overflow

Mediacoder 2011 RC3 - .m3u Local Buffer Overflow Exploit Title: Mediacoder 2011 RC3 0-days Exploit Google Dork: -- Date: 20 / 3 / 2011 Author: Oh Yaw Theng Software Link: http://www.mediacoderhq.com/getfile.htm?site=filemirror.s7icky.com&file=MediaCoder2011-RC3-5072.exe Version: 2011 RC3 Tested o...

Imageview 6.0 Directory Traversal

Exploit Title: Imageview v6.0 Remote and Local Directory Traversal Vulnerability Google Dork: inurl:"/imageview6/" home : www.D99Y.com Date: 27/2/2011 Author: Difficult 511 Software Link: http://www.blackdot.be/files/downloads/imageview6-install.zip Version: 6.0 Tested on: windows xp sp2 file :...

Tembria Server Monitor Weak Cryptographic Password Storage Vulnerability

Tembria Server Monitor Weak Cryptographic Password Storage Vulnerability Solutionary ID: SERT-VDN-1004 Solutionary Disclosure URL: http://www.solutionary.com/index/SERT/Vuln-Disclosures/Tembria-Server-Monitor-Weak-Xpto-Pwd-Storage.html CVE ID: Pending Product: Tembria Server Monitor Application...

AOL 9.5 .rtx Local Buffer Overflow

!/usr/bin/python Bug : AOL 9.5 rtx Local Buffer Overflow Exploit by sup3r Tested on : XP SP3 header1 = "\x3c\x48\x54\x4d\x4c\x3e\x3c\x46\x4f\x4e\x54\x20\x20\x53\x49\x5a" "\x45\x3d\x32\x20\x50\x54\x53\x49\x5a\x45\x3d\x31\x30\x20\x46\x41"...

acpid 1.0.x - Multiple Local Denial of Service Vulnerabilities

acpid 1.0.x - Multiple Local Denial of Service Vulnerabilities // source: https://www.securityfocus.com/bid/45915/info The 'acpid' daemon is prone to multiple local denial-of-service vulnerabilities. Successful exploits will allow attackers to cause the application to hang, denying service to...

acpid 1.0.x - Multiple Local Denial of Service Vulnerabilities

// source: https://www.securityfocus.com/bid/45915/info The 'acpid' daemon is prone to multiple local denial-of-service vulnerabilities. Successful exploits will allow attackers to cause the application to hang, denying service to legitimate users. acpid 1.0.10 is vulnerable; other versions may...

VideoSpirit Pro 1.68 Buffer Overflow

Exploit Title: VideoSpirit Pro v1.68 Local BoF Exploit Date: 01/08/2011 Author: xsploitedsec URL: http://www.x-sploited.com/ Contact: xsploitedsecatx-sploited.com Software Link: http://www.verytools.com/videospirit/download.html Vulnerable version: v1.68 Tested on: Windows XP SP3 Eng Software...

VeryTools VideoSpirit Pro 1.68 - Local Buffer Overflow

Exploit Title: VideoSpirit Pro v1.68 Local BoF Exploit Date: 01/08/2011 Author: xsploitedsec URL: http://www.x-sploited.com/ Contact: xsploitedsecatx-sploited.com Software Link: http://www.verytools.com/videospirit/download.html Vulnerable version: v1.68 Tested on: Windows XP SP3 Eng Software...

PT-2010-5380 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.36.2 Description: The issue allows local users to bypass intended access restrictions, overwrite arbitrary kernel memory locations, and gain privileges. This can be achieved by leveraging a BUG, NULL pointer...