CVE-2007-5145

Multiple buffer overflows in system DLL files in Microsoft Windows XP, as used by Microsoft Windows Explorer explorer.exe 6.00.2900.2180, Don Ho Notepad++, unspecified Adobe Macromedia applications, and other programs, allow user-assisted remote attackers to cause a denial of service application...

Notepad++ Ruby Source File Handling Overflow

Notepad++, a free source code editor and Notepad replacement, is installed on the remote Windows host. The version of Notepad++ installed on the remote host reportedly contains a buffer overflow involving how it processes Ruby source code files. If an attacker can trick a user on the affected hos...

notepad++[v4.1]: (win32) ruby file processing buffer overflow exploit.

...i took a look at the new notepad++, and noticed this, i'm not sure how long it has been there or if it was recently added to the code... either way here is a POC for it. original reference: http://fakehalo.us/xnotepad++.c / notepad++v4.1: win32 ruby file processing buffer overflow exploit. by:...

notepad++ buffer overflow

Buffer overflow on Ruby .rb files editing...

Notepad++ Ruby源文件处理远程栈溢出漏洞

Notepad++是运行在Windows环境中的开源编辑器，支持多种编程语言。 Notepad++的SciLexer模块（SciLexer.dll）在处理ruby源文件（.rb）时存在栈溢出漏洞，如果用户受骗打开了恶意的.rb文件，就会触发这个溢出，导致执行任意指令。 Notepad++ Notepad++ 4.1 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://notepad-plus.sourceforge.net/ http://www.sebug.net/show-exp-1876.html...

Stack overflow

Stack-based buffer overflow in LexRuby.cxx SciLexer.dll in Scintilla 1.73, as used by notepad++ 4.1.1 and earlier, allows user-assisted remote attackers to execute arbitrary code via certain Ruby .rb files with long lines. NOTE: this was originally reported as a vulnerability in notepad++...

CVE-2007-2666

Stack-based buffer overflow in LexRuby.cxx SciLexer.dll in Scintilla 1.73, as used by notepad++ 4.1.1 and earlier, allows user-assisted remote attackers to execute arbitrary code via certain Ruby .rb files with long lines. NOTE: this was originally reported as a vulnerability in notepad++...

CVE-2007-2666

CVE-2007-2666 affects Scintilla 1.73 as used by Notepad++

Notepad++ 4.1 (Windows x86) - '.ruby' File Processing Buffer Overflow

/ notepad++v4.1: win32 ruby file processing buffer overflow exploit. by: vade79/v9 [email protected] fakehalo/realhalo compile: gcc xnotepad++.c -o xnotepad++ syntax: ./xnotepad++ -xe -f filename notepad++ homepage/url: http://sourceforge.net/projects/notepad-plus/ http://notepad-plus.sourceforge.ne...

notepad++ 4.1 ruby file processing Buffer Overflow Exploit (win32)

Exploit for unknown platform in category local exploits ================================================================== notepad++ 4.1 ruby file processing Buffer Overflow Exploit win32 ================================================================== / notepad++v4.1: win32 ruby file processin...

Notepad++ 4.1 (Windows x86) - .ruby File Processing Buffer Overflow

Notepad++ 4.1 Windows x86 - .ruby File Processing Buffer Overflow / notepad++v4.1: win32 ruby file processing buffer overflow exploit. by: vade79/v9 [email protected] fakehalo/realhalo compile: gcc xnotepad++.c -o xnotepad++ syntax: ./xnotepad++ -xe -f filename notepad++ homepage/url:...

2 0 0 7 the latest IE 0day net horse picture that-the vulnerability warning-the black bar safety net

Ghost boy Note: This something has recently fried very hot, the css calls the two pictures, but it is unclear principle. Reportedly originally sold to 8W, but now it seems like everywhere got. Just in xiaoguang there to see, turn around, and his this added a simple encryption. Source: XG'Blog How...

PHP 4.4.6 crack_opendict() local buffer overflow poc exploit

?php //PHP 4.4.6 crackopendict local buffer overflow poc exploit //win2k sp3 version / seh overwrite method //to be launched from the cli // by rgod // site: http://retrogod.altervista.org if !extensionloaded"crack" die"you need the crack extension loaded."; $scode= "xebx1b". "x5b". "x31xc0"...

PHP 4.4.6 crack_opendict() Local Buffer Overflow Exploit PoC

Exploit for unknown platform in category local exploits ============================================================ PHP 4.4.6 crackopendict Local Buffer Overflow Exploit PoC ============================================================ 0day.today 2018-03-16...

Only changed a little bit easy to lift a Word document password protected-vulnerability warning-the black bar safety net

Word's password protection function is relatively strong, if one accidentally forgot Word password? How to modify the encrypted Word document? Word document protection is divided into open and modify the protection for the former online there have been many more Mature approach. Such as...

Input validation

The ShellAbout API call in Korean Input Method Editor IME in Korean versions of Microsoft Windows XP SP1 and SP2, Windows Server 2003 up to SP1, and Office 2003, allows local users to gain privileges by launching the "shell about dialog box" and clicking the "End-User License Agreement" link, whi...

CVE-2006-0008

The ShellAbout API call in Korean Input Method Editor IME in Korean versions of Microsoft Windows XP SP1 and SP2, Windows Server 2003 up to SP1, and Office 2003, allows local users to gain privileges by launching the "shell about dialog box" and clicking the "End-User License Agreement" link, whi...

CVE-2006-0008

The ShellAbout API call in Korean Input Method Editor IME in Korean versions of Microsoft Windows XP SP1 and SP2, Windows Server 2003 up to SP1, and Office 2003, allows local users to gain privileges by launching the "shell about dialog box" and clicking the "End-User License Agreement" link, whi...

CVE-2006-0008

The CVE-2006-0008 issue affects the Korean Input Method Editor (IME) on Windows XP SP1/SP2, Windows Server 2003 up to SP1, and Office 2003. A privilege-elevation flaw exists in the Korean IME; an attacker who can log on (locally or via Remote Desktop/Terminal Services) could exploit the ShellAbou...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in usercp.php in MyBulletinBoard MyBB 1.02 allow remote attackers to inject arbitrary web script or HTML via the 1 notepad parameter in a notepad action and 2 signature parameter in an editsig action. NOTE: These are different attack vectors, and...