Lucene search
K

6913 matches found

Zero Day Initiative
Zero Day Initiative
added 2014/02/13 12:0 a.m.24 views

IBM Lotus Quickr ActiveX Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Lotus Quickr for Domino. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within an ActiveX...

7.5CVSS4.7AI score0.0398EPSS
Exploits1References1
seebug.org
seebug.org
added 2014/02/12 12:0 a.m.28 views

socat PROXY-CONNECT地址栈缓冲区溢出漏洞

BUGTRAQ ID: 65201 CVECAN ID: CVE-2014-0019 Socat是一个基于命令行的工具,可以创建两个双向字节流并在其间传输数据。 socat 1.3.0.0-1.7.2.2、2.0.0-b1-2.0.0-b6存在栈缓冲区溢出漏洞,本地用户通过命令行内PROXY-CONNECT地址中的超长服务器名称,即可利用此漏洞在受影响应用中执行任意代码。 0 socat socat 2.0.0-b1 - 2.0.0-b6 socat socat 1.3.0.0 - 1.7.2.2 厂商补丁: socat -----...

1.9CVSS4AI score0.00404EPSS
Exploits1
Exploit DB
Exploit DB
added 2014/01/27 12:0 a.m.83 views

Oracle Outside In MDB - File Parsing Stack Buffer Overflow (PoC)

!/usr/bin/python Exploit Title: Oracle Outside In MDB File Parsing Stack Based Buffer Overflow PoC Date: 16th January 2014 PoC Author: Citadelo Vendor Homepage: http://www.oracle.com Software Link: http://www.oracle.com/us/technologies/embedded/025613.htm Version: = 8.4.1.52 and 8.4.0.108 CVE :...

1.5CVSS6.4AI score0.01901EPSS
Exploits5
exploitpack
exploitpack
added 2014/01/27 12:0 a.m.73 views

Oracle Outside In MDB - File Parsing Stack Buffer Overflow (PoC)

Oracle Outside In MDB - File Parsing Stack Buffer Overflow PoC !/usr/bin/python Exploit Title: Oracle Outside In MDB File Parsing Stack Based Buffer Overflow PoC Date: 16th January 2014 PoC Author: Citadelo Vendor Homepage: http://www.oracle.com Software Link:...

1.5CVSS0.4AI score0.01901EPSS
Exploits5
Packet Storm
Packet Storm
added 2014/01/25 12:0 a.m.23 views

Mp3info Stack Buffer Overflow

Waste of CPU clock N2 Exploit for: mp3info! Latest version Author: jsacco - [email protected] Vendor: http://ibiblio.org/mp3info/ No-one-cares-about programs! junk = "\x90\x90\x90\x90"8 shellcode = "\x31\xc0\x50\x68//sh\x68/bin\x89\xe3\x50\x53\x89\xe1\x99\xb0\x0b\xcd\x80" buffer =...

1.2AI score
Exploits0
FreeBSD
FreeBSD
added 2014/01/24 12:0 a.m.58 views

socat -- buffer overflow with data from command line

Florian Weimer of the Red Hat Product Security Team reports: Due to a missing check during assembly of the HTTP request line a long target server name in the PROXY-CONNECT address can cause a stack buffer overrun. Exploitation requires that the attacker is able to provide the target server name t...

1.9CVSS6.4AI score0.00404EPSS
Exploits1References1
Exploit DB
Exploit DB
added 2014/01/20 12:0 a.m.42 views

MuPDF 1.3 - 'xps_parse_color()' Stack Buffer Overflow

============================================================= 0day - MuPDF Stack-based Buffer Overflow in xpsparsecolor ============================================================= Date of discovery: 2013-01-26 Software Links: http://www.mupdf.com/ ; http://en.wikipedia.org/wiki/MuPDF Version:...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2014/01/17 12:0 a.m.25 views

FreeBSD bsnmpd 'GETBULK PDU'请求远程栈缓冲区溢出漏洞

BUGTRAQ ID: 64967 CVECAN ID: CVE-2014-1452 FreeBSD bsnmpd是简单的可扩展SNMP后台程序。 bsnmpd8后台程序在处理特制的GETBULK PDU请求时存在栈缓冲区溢出漏洞,成功利用后可导致在服务程序上下文中执行任意代码,造成拒绝服务。 0 FreeBSD FreeBSD 9.x 临时解决方法: FreeBSD推荐下列三种做法: 1 升级您现在受影响的系统到漏洞修复日期后的FreeBSD stable或 release / security branch releng。 2 用源代码补丁更新您的受影响系统:...

5.8CVSS0.4AI score0.01894EPSS
Exploits1
Zero Day Initiative
Zero Day Initiative
added 2014/01/10 12:0 a.m.20 views

Hewlett-Packard Data Protector Backup Client Service rrda Remote Code Execution Vulnerability

This vulnerability allows remote attackers directory traversal on vulnerable installations of HP OpenView Data Protector. Authentication is not required to exploit this vulnerability. This specific flaw exists in the Backup Client Service OmniInet.exe. The Backup Client Service listens on TCP por...

10CVSS5.7AI score0.10436EPSS
Exploits1References1
Metasploit
Metasploit
added 2013/12/31 8:43 p.m.24 views

IcoFX Stack Buffer Overflow

This module exploits a stack-based buffer overflow vulnerability in version 2.1 of IcoFX. The vulnerability exists while parsing .ICO files, where a specially crafted ICONDIR header providing an arbitrary long number of images in the file can be used to trigger the overflow when reading the...

9.3CVSS7.4AI score0.66998EPSS
Exploits14
OpenVAS
OpenVAS
added 2013/12/30 12:0 a.m.21 views

Quick Heal Antivirus Pro 'pepoly.dll' Stack Buffer Overflow Vulnerability

Quick Heal Antivirus Pro is prone to stack buffer overflow vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.2CVSS6.9AI score0.01282EPSS
Exploits7References3
Saint
Saint
added 2013/12/27 12:0 a.m.21 views

RealPlayer RMP File Version Attribute Buffer Overflow

Added: 12/27/2013 CVE: CVE-2013-6877 BID: 64398 OSVDB: 101356 Background RealNetworks RealPlayer includes an embedded player which plays media embedded in a web page. Problem RealNetworks Windows RealPlayer 17.0.2.206 and earlier versions are vulnerable to remote code execution due to improper...

9.3CVSS7.4AI score0.11345EPSS
Exploits11
seebug.org
seebug.org
added 2013/12/18 12:0 a.m.24 views

IrfanView Formats插件'MrSID.dll'栈缓冲区溢出漏洞

BUGTRAQ ID: 64385 CVECAN ID: CVE-2013-3944 IrfanView是一款快速、免费的图像查看器、浏览器、转换器。FORMATS插件可允许IrfanView读取不常见图形格式。 Formats PlugIn 4.36版本处理 "IMAGE::" 标签中,MrSID插件MrSID.dll存在边界错误,成功利用后可造成栈缓冲区溢出。 0 IrfanView Formats Plug-in 4.36 厂商补丁: IrfanView --------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

7.4AI score0.275EPSS
Exploits1
Zero Day Initiative
Zero Day Initiative
added 2013/12/15 12:0 a.m.32 views

IBM Forms Viewer 'fontname' Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Forms Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within a document...

7.5CVSS5.7AI score0.34035EPSS
Exploits5References1
exploitpack
exploitpack
added 2013/12/12 12:0 a.m.18 views

Castripper 2.50.70 - .pls DEP Bypass

Castripper 2.50.70 - .pls DEP Bypass Castripper 2.50.70 .pls exploit Stack buffer overflow/DEP bypass Download: http://www.mini-stream.net/castripper/ Tested on Wind0ws XP SP3 DEP:OptOut Author: Lucfer ------ [email protected] All ROP gadgets are from the APP's DLLs except for the hardcoded...

0.1AI score
Exploits0
0day.today
0day.today
added 2013/12/12 12:0 a.m.17 views

Castripper 2.50.70 - (.pls) DEP Exploit

Exploit for windows platform in category local exploits Castripper 2.50.70 .pls exploit Stack buffer overflow/DEP bypass Download: http://www.mini-stream.net/castripper/ Tested on Wind0ws XP SP3 DEP:OptOut Author: Lucfer ------ email protected All ROP gadgets are from the APP's DLLs except for th...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2013/12/12 12:0 a.m.23 views

Castripper 2.50.70 - '.pls' DEP Bypass

Castripper 2.50.70 .pls exploit Stack buffer overflow/DEP bypass Download: http://www.mini-stream.net/castripper/ Tested on Wind0ws XP SP3 DEP:OptOut Author: Lucfer ------ [email protected] All ROP gadgets are from the APP's DLLs except for the hardcoded SetProcessDEPPolicy address import struct f =...

7.4AI score
Exploits0
0day.today
0day.today
added 2013/12/03 12:0 a.m.28 views

ABB MicroSCADA wserver.exe Remote Code Execution Vulnerability

Exploit for windows platform in category remote exploits require 'msf/core' class Metasploit3 'ABB MicroSCADA wserver.exe Remote Code Execution', 'Description' = %q This module exploits a remote stack buffer overflow vulnerability in ABB MicroSCADA. The issue is due to the handling of...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2013/12/03 12:0 a.m.19 views

Notepad++ Plugin Notepad 1.5 - Local Overflow

Exploit Title: Notepad++ - Notepad plugin local exploit Google Dork: Date: 2013-12-01 Exploit Author: Sun Junwen Vendor Homepage: http://notepad-plus-plus.org/ Software Link: http://notepad-plus-plus.org/download/ Version: Notepad ++ 6.3.2 with Notepad plugin 1.5 and Explorer plugin 1.8.2 Tested...

7AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2013/12/02 12:0 a.m.3 views

Oracle Outside In OS 2 Metafile Parser Stack Buffer Overflow (CVE-2013-5763)

A stack buffer overflow vulnerability exists in Oracle Outside-In, a set of libraries used to decode many file formats...

6.5AI score0.0047EPSS
Exploits1
Rows per page
Query Builder