393 matches found
KLA10028 ACE vulnerability in Adobe Illustrator
An unspecified vulnerability was found in Adobe Illustrator CS6. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to an unspecified application. Original advisories Adobe bulletin Related products...
KLA10009 Denial of Service in VideoLAN VLC Media Player
An unspecified vulnerability was found in VLC versions 2.0.7 and earlier. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network through a specially designed playlist file. Original advisories NVD Related products...
KLA10024 DoS vulnerability in GOM Media Player
An unspecified vulnerability was found in the GOM Media Player. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to an unknown application via a specially designed .AVI file. Original advisories N...
KLA10039 Adobe Digital Editions security advisory
An unspecified vulnerability was found in Adobe Digital Editions. By exploiting this vulnerability malicious users can execute arbitrary code or cause denial of service. This vulnerability can be exploited from the network at point related to an unknown application. Original advisories Adobe...
NSA infected more than 50,000 computer networks with Malware
The NSA has the ability to trace "anyone, anywhere, anytime". In September we reported that how NSA and GCHQ planted malware via LinkedIn and Slashdot traffic to hack largest telecom company Belgacom's Engineers. Yesterday, a Dutch newspaper has published a new secret NSA document provided by...
KLA10025 DoS vulnerability in GOM Media Player
An unspecified vulnerability was found in the GOM Media Player. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to an unknown application via a specially designed .WAV file. Original advisories N...
[Zarp v0.1.3] Local Network Attack Tool
Zarp is a network attack tool centered around the exploitation of local networks. This does not include system exploitation, but rather abusing networking protocols and stacks to take over, infiltrate, and knock out. Sessions can be managed to quickly poison and sniff multiple systems at once,...
KLA10029 ACE vulnerabilities in Adobe Photoshop
Buffer overflow vulnerabilities were found in Adobe Photoshop. By exploiting this vulnerability malicious users can execute arbitrary code. These vulnerabilities can be exploited from the network at a point related to an unknown application via a specially designed file or TIFF image with...
KLA10123 SB vulnerability in Comodo Internet Security
Race conditions were found in Comodo Internet Security. By exploiting this vulnerability malicious users can bypass Defence+. This vulnerability can be exploited from the network at a point related to unknown. Original advisories Comodo release notes Related products Comodo-Internet-Security CVE...
Oracle Issues Patch to Fix 14 Vulnerabilities
Microsoft wasn’t the only company that recognized patch Tuesday yesterday; Oracle patched 14 vulnerabilities in Java Standard edition as well. In their update advisory, Oracle strongly recommends that users update as soon as possible given the threat posed by successful exploitation of these...
Oracle Plans 78 Security Fixes for Upcoming Critical Update
Oracle has fixes for 78 security vulnerabilities slated for next week as part of its first critical update of the year. The patches are expected to touch the Oracle Database Server, Fusion Middleware, E-Business suite, Supply Chain, PeopleSoft, JD Edwards, Virtualization, Sun and MySQL products...
freeSSHd - Denial of Service (PoC)
freeSSHd - Denial of Service PoC import sys, socket, binascii print "\n" print "----------------------------------------------------------------" print "| FreeSSHd, Remote Denial of Service |" print "| Level, Smash the Stack |" print...
KLA10056 RLF vulnerability in Alcatel-Lucent OmniVista 4760
A directory traversal vulnerability was found in OmniVista. By exploiting this vulnerability malicious users can read local files. This vulnerability can be exploited from the network at a point related to NMS server via specially designed GET request. Original advisories Alcatel bulletin Related...
Novell Groupwise 8.0 - Multiple Remote Vulnerabilities
Novell Groupwise 8.0 - Multiple Remote Vulnerabilities source: https://www.securityfocus.com/bid/44732/info Novell GroupWise is prone to multiple security vulnerabilities, including multiple remote code-execution vulnerabilities, an information-disclosure issue, and a cross-site scripting issue...
KLA10055 ACE & DoS vulnerability in OmniVista 4760
A buffer overflow vulnerability was found in OmniVista. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited from the network via a specially designed request. Original advisories Alcatel bulletin Related...
BigAnt Server 2.52 - Remote Buffer Overflow (2)
BigAnt Server 2.52 - Remote Buffer Overflow 2 !/usr/bin/python BigAnt Server 2.52 remote buffer overflow exploit 2 Author: DouBleZer0 Vulnerability discovered by Lincoln a another version of the original exploit by Lincoln application is little hazy.. import sys,socket host = sys.argv1 buffer=...
32bit FTP (09.04.24) (CWD Response) Universal Seh Overwrite Exploit
No description provided by source. !/usr/bin/python | || | / \ | | | | | | | | | - | | | / / | | |||| || // / |\ || Bug : 32bit FTP 09.04.24 CWD Response Universal Seh Overwrite Exploit Refer : http://www.milw0rm.com/exploits/8611 Tested on : Xp sp3 ENVB Exploited by : His0k4 Greetings : All...
Exploiting Skype: Building a telephone botnet
From the Industry Standard Robert McMillan Flaws in popular Internet-based telephony systems could be exploited to create a network of hacked phone accounts, somewhat like the botnets that have been wreaking havoc with PCs for the past few years. Researchers at Secure Science recently discovered...
KLA10097 WLF vulnerability in CDBurnerXP
An unspecified vulnerability was found in CDBurnerXP. By exploiting this vulnerability malicious users can overwrite arbitrary files. This vulnerability can be exploited from the network at a point related to NMS DVD Burning SDK. Original advisories vulnerability description Exploitation Public...
KLA10063 ACE vulnerability in Avira
A nonsecure function call vulnerability was found in Avira. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited from the network at a point related to the scheduler via a specially designed .exe file. Original advisories detailed description...