SAS Integration Technologies Client 9.31_M1 Buffer Overflow

The SASspk module SASspk.dll version 9.310.0.11307, has a function called 'RetrieveBinaryFile' which has one parameter called 'bstrFileName' which takes arguments as strings as defined in the function itself as ISPKBinaryFile from the SASPackageRetrieve library. Stack-based buffer overflow was...

CVE-2011-4519

Stack-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a denial of service via a crafted web page...

No-IP Dynamic Update Client (DUC) 2.1.9 - Local IP Address Stack Overflow

No-IP Dynamic Update Client DUC 2.1.9 - Local IP Address Stack Overflow !/usr/bin/env python Title: No-IP Dynamic Update Client DUC 2.1.9 local IPaddress stack overflow Author: Alberto Ortega @a0rtega [email protected] Date: May 11 2013 vulnerability discovered Background: No-IP is probably the...

No-IP Dynamic Update Client 2.1.9 Stack Overflow

!/usr/bin/env python Title: No-IP Dynamic Update Client DUC 2.1.9 local IPaddress stack overflow Author: Alberto Ortega @a0rtega [email protected] Date: May 11 2013 vulnerability discovered Background: No-IP is probably the most used Dynamic DNS provider worldwide, their Dynamic Update Client D...

BigAnt Server 2.97 - DDNF Username Remote Buffer Overflow

BigAnt Server 2.97 - DDNF Username Remote Buffer Overflow !/usr/bin/python Title: BigAnt Server 2.97 DDNF Username Buffer Overflow Author: Craig Freyman @cd1zz http://pwnag3.com Tested on: Windows 7 64 bit DEP/ASLR Bypass Similar Exploits: http://www.exploit-db.com/exploits/24528/...

Scientific Linux Security Update : pam on SL6.x i386/x86_64 (20130221)

A stack-based buffer overflow flaw was found in the way the pamenv module parsed users' '/.pamenvironment' files. If an application's PAM configuration contained 'userreadenv=1' this is not the default, a local attacker could use this flaw to crash the application or, possibly, escalate their...

Foxit Reader PDF File Handling Memory Corruption Vulnerability

Foxit Reader is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:foxitsoftware:reader";...

Apple QuickTime 7.7.2 MIME Type Buffer Overflow

This module exploits a buffer overflow in Apple QuickTime 7.7.2. The stack based overflow occurs when processing a malformed Content-Type header. The module has been tested successfully on Safari 5.1.7 and 5.0.7 on Windows XP SP3. This module requires Metasploit: https://metasploit.com/download...

UBUNTU-CVE-2012-4527

Stack-based buffer overflow in mcrypt 2.6.8 and earlier allows user-assisted remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long file name. NOTE: it is not clear whether this is a vulnerability...

Microsoft Office Remote Code Execution Vulnerabilities (2720184)

This host is missing an important security update according to Microsoft Bulletin MS12-076. OpenVAS Vulnerability Test $Id: secpodms12-076.nasl 6523 2017-07-04 15:46:12Z cfischer $ Microsoft Office Remote Code Execution Vulnerabilities 2720184 Authors: Antu Sanadi Copyright: Copyright c 2012...

Microsoft Office Remote Code Execution Vulnerabilities (2720184)

This host is missing an important security update according to Microsoft Bulletin MS12-076. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Freefloat FTP Server - 'PUT' Remote Buffer Overflow

!/usr/bin/python TitleFreefloat FTP Server PUT Command Buffer Overflow Discovered and Reported22nd of September, 2012 Discovered/Exploited ByJacob Holcomb/Gimppy042 Software Vendorhttp://www.freefloat.com/ CVE for PUT OverflowCVE-2012-5106...

CVE-2011-5172

Stack-based buffer overflow in StoryBoard Quick 6 Build 3786, and possibly StoryBoard Artist and StoryBoard Studio, allows remote attackers to execute arbitrary code via a long string in the string element field in a frame xml file...

ZDI-12-146 : Novell eDirectory RelativeToFullDN Parsing Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-146 : Novell eDirectory RelativeToFullDN Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-146 August 22, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendors: Novell - -...

CVE-2011-5124

Stack-based buffer overflow in the BCAAA component before build 60258, as used by Blue Coat ProxySG 4.2.3 through 6.1 and ProxyOne, allows remote attackers to execute arbitrary code via a large packet to the synchronization port 16102/tcp...

Novell eDirectory RelativeToFullDN Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell eDirectory. Authentication is not required to exploit this vulnerability. The specific flaw exists within how the service handles a specially formatted LDAP request. When handling a particul...

Photodex ProShow Producer 5.0.3256 load File Handling Buffer Overflow

Exploit for windows platform in category local exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

FlexNet License Server Manager 'lmgrd' Component Stack BOF Vulnerability

FlexNet License Server Manager is prone to stack buffer overflow vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Sunway Forcecontrol SNMP NetDBServer.exe Opcode 0x57

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Sunway Forcecontr...

Savant Web Server Remote Buffer Overflow Vulnerability (Jan 2012) - Active Check

Savant Web Server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...