Lucene search
K

167 matches found

Exploit DB
Exploit DB
added 2010/03/04 12:0 a.m.30 views

Orb 2.0.01.0049 < 2.54.0018 - DirectShow Denial of Service

When Orb is first installed it registers several Direct Show filters with the system. When registered these filters are then called whenever a file which has a dependency on such a required filter is accessed. By specially crafting specific headers embedded into an mp3 file we can create a direct...

7AI score
Exploits0
exploitpack
exploitpack
added 2010/03/04 12:0 a.m.19 views

Orb Networks 2.54.18 - Orb Direct Show Filter .MP3 File Divide-by-Zero Denial of Service

Orb Networks 2.54.18 - Orb Direct Show Filter .MP3 File Divide-by-Zero Denial of Service source: https://www.securityfocus.com/bid/38549/info Orb Networks Orb is prone to a denial-of-service vulnerability when handling malformed '.mp3' files. Successfully exploiting this issue allows remote...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 2010/03/04 12:0 a.m.17 views

Orb Networks 2.54.18 - Orb Direct Show Filter '.MP3' File Divide-by-Zero Denial of Service

source: https://www.securityfocus.com/bid/38549/info Orb Networks Orb is prone to a denial-of-service vulnerability when handling malformed '.mp3' files. Successfully exploiting this issue allows remote attackers to deny service to legitimate users...

7.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2010/01/02 12:0 a.m.45 views

Orbitals.com Orbital Viewer .orb Stack Buffer Overflow (CVE-2010-0688)

Orbital Viewer is a picture viewer and a drawing tool. A stack buffer overflow vulnerability has been reported in Orbital Viewer. The vulnerability is due to a boundary error when processing malformed .orb files. A remote attacker can exploit this vulnerability by enticing a target user to open a...

9.3CVSS7.6AI score0.37895EPSS
Exploits13
NVD
NVD
added 2008/12/17 6:30 p.m.16 views

CVE-2008-5645

Directory traversal vulnerability in the media server in Orb Networks Orb before 2.01.0022 allows remote attackers to read arbitrary files via directory traversal sequences in an HTTP GET request...

7.8CVSS6.7AI score0.0218EPSS
Exploits1References6
Prion
Prion
added 2008/12/17 6:30 p.m.15 views

Directory traversal

Directory traversal vulnerability in the media server in Orb Networks Orb before 2.01.0022 allows remote attackers to read arbitrary files via directory traversal sequences in an HTTP GET request...

7.8CVSS7.2AI score0.0218EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2008/12/17 6:0 p.m.25 views

CVE-2008-5645

Directory traversal vulnerability in the media server in Orb Networks Orb before 2.01.0022 allows remote attackers to read arbitrary files via directory traversal sequences in an HTTP GET request...

6.7AI score0.0218EPSS
Exploits1References6
CVE
CVE
added 2008/12/17 6:0 p.m.40 views

CVE-2008-5645

CVE-2008-5645 affects Orb Networks Orb media server prior to 2.01.0022. The vulnerability is a directory traversal in the HTTP GET handling that allows remote attackers to read arbitrary files on the server (impact: read local files). Affected versions include 2.01.0021 and earlier. Some connecte...

7.8CVSS6.7AI score0.0218EPSS
Exploits1References6Affected Software1
Kaspersky
Kaspersky
added 2008/12/17 12:0 a.m.61 views

KLA10285 RLF vulnerability in Orb

A directory traversal vulnerability was found in Orb. By exploiting this vulnerability malicious users can read arbitrary files. This vulnerability can be exploited remotely via a specially designed GET request. Original advisories - Related products Orb CVE list CVE-2008-5645 high Solution Updat...

7.8CVSS6.6AI score0.0218EPSS
Exploits1References2
Prion
Prion
added 2008/12/15 6:0 p.m.13 views

Design/Logic Flaw

Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service daemon crash via a malformed HTTP request...

5CVSS7.1AI score0.0144EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2008/12/15 6:0 p.m.19 views

CVE-2008-5564

Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service daemon crash via a malformed HTTP request...

5CVSS6.5AI score0.0144EPSS
Exploits0References5
CVE
CVE
added 2008/12/15 5:45 p.m.46 views

CVE-2008-5564

The vulnerability (CVE-2008-5564) affects Orb Networks Orb media server prior to version 2.01.0025. An attacker can trigger a denial of service by sending a malformed HTTP request, causing the media server daemon to crash. The documents do not specify an official fix version or detailed exploitat...

5CVSS6.5AI score0.0144EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2008/12/15 5:45 p.m.24 views

CVE-2008-5564

Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service daemon crash via a malformed HTTP request...

6.5AI score0.0144EPSS
Exploits0References5
securityvulns
securityvulns
added 2008/12/04 12:0 a.m.18 views

Orb media server DoS

Crash on HTTP request parsing...

1.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2008/12/04 12:0 a.m.39 views

DDIVRT-2008-18 Orb Denial of Service

Title ----- DDIVRT-2008-18 Orb Denial of Service Severity -------- Medium Date Discovered --------------- October 21st 2008 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: Steven James and r@b13$ Vulnerability Description ------------------------- Orb Network...

1.6AI score
Exploits0
Prion
Prion
added 2008/03/31 5:44 p.m.16 views

Integer overflow

Integer overflow in Orb Networks Orb 2.00.1014 and Winamp Remote BETA allows remote attackers to execute arbitrary code via an RPC request that specifies a large number of array dimensions, which triggers a heap-based buffer overflow...

4.6CVSS8.8AI score0.01105EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2008/03/31 5:44 p.m.21 views

CVE-2008-0070

Integer overflow in Orb Networks Orb 2.00.1014 and Winamp Remote BETA allows remote attackers to execute arbitrary code via an RPC request that specifies a large number of array dimensions, which triggers a heap-based buffer overflow...

4.6CVSS8.1AI score0.01105EPSS
Exploits1References5
CVE
CVE
added 2008/03/31 5:0 p.m.47 views

CVE-2008-0070

CVE-2008-0070 affects Orb Networks Orb 2.00.1014 and Winamp Remote BETA. Root cause: integer overflow causing a heap-based buffer overflow when an RPC request specifies a very large number of array dimensions. Impact: remote code execution potential. Exploitation details are not provided in the d...

4.6CVSS8.1AI score0.01105EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2008/03/31 5:0 p.m.25 views

CVE-2008-0070

Integer overflow in Orb Networks Orb 2.00.1014 and Winamp Remote BETA allows remote attackers to execute arbitrary code via an RPC request that specifies a large number of array dimensions, which triggers a heap-based buffer overflow...

8.1AI score0.01105EPSS
Exploits1References5
seebug.org
seebug.org
added 2008/03/27 12:0 a.m.26 views

Orb Networks Orb RPC请求远程整数溢出漏洞

BUGTRAQ ID: 28431 CVECAN ID: CVE-2008-0070 Orb是用于提供MyCast功能的应用,MyCasting允许用户通过PC或其他internet连接设备访问相片、音乐、视频等数字内容。 Orb在处理RPC请求中所接收到的变量类型数组中维度数时存在整数溢出漏洞,如果用户在提交的请求中执行了超大的数组维度的话,就可能触发堆溢出,导致执行任意指令。 Orb Networks Orb 2.00.1014 Orb Networks ------------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

4.6CVSS6.5AI score0.01105EPSS
Exploits1
Rows per page
Query Builder