5921 matches found
Advantech WebAccess GotoCmd参数处理栈缓冲区溢出漏洞
CVE ID:CVE-2014-0765 Advantech WebAccess HMI/SCADA是一款HMI/SCADA软件。 Advantech WebAccess处理GotoCmd参数时不正确过滤用户输入,允许远程攻击者利用漏洞提交特殊参数触发基于栈的缓冲区溢出,可使应用程序崩溃或执行任意代码。 0 Advantech WebAccess 7.1 Advantech WebAccess 7.2版本已修复该漏洞,建议用户下载使用: http://webaccess.advantech.com/...
VideoLAN VLC Media Player MMS Plugin Stack Buffer Overflow - ver 2 (CVE-2012-1775)
A stack buffer overflow vulnerability has been reported in VLC Media Player. The vulnerability is due to insufficient bounds checking in the MMS access plugin while copying a hostname into a stack buffer. A remote attacker can exploit this issue by convincing a target user to open a specially...
Advantech WebAccess webvact.ocx AccessCode Stack Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Advantech WebAccess. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
WellinTech KingScada AEserver.exe Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of WellinTech KingScada. Authentication is not required to exploit this vulnerability. The specific flaw exists within the protocol parsing code contained in kxNetDispose.dll. The parent service is...
Sun Java Runtime Environment 1.6 - Web Start JNLP File Stack Buffer Overflow
Exploit for linux platform in category remote exploits source: http://www.securityfocus.com/bid/24832/info Sun Java Runtime Environment is prone to a stack-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input before copying it to an insufficiently...
BlazeDVD Pro Player 6.1 - Stack Buffer Overflow Jump ESP
BlazeDVD Pro Player 6.1 - Stack Buffer Overflow Jump ESP Exploit-DB Note: XPSP3 - my $eip = pack'V',0x7c868667; jmp ESP on kernel32.dll Date: Tue Apr 8 2014 Vendor link: http://www.blazevideo.com/download.htmm Software Link: http://www.blazevideo.com/download.php?product=BlazeDVDPro App Version:...
Adobe Flash Player RegExp Stack Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the usage of...
VirusChaser栈缓冲区溢出漏洞
Bugtraq ID:66475 Virus Chaser驱逐舰是拥有广告/间谍软件扫描功能+完美的病毒扫描与修复功能,能强力清除流氓软件、广告软件及间谍软件。 Virus Chaser存在一个基于栈的缓冲区溢出,允许攻击者构建恶意文件,诱使应用扫描,可使应用程序崩溃。 0 VirusChaser 8.0 目前没有详细解决方案提供: https://www.viruschaser.com/ Exploit Title: VirusChaser 8.0 - Stack Buffer Overflow Date: 2014/03/26 Exploit Author: wh1ant Vendo...
IBM Forms Viewer XFDL Form Processing Stack Buffer Overflow - Ver2 (CVE-2013-5447)
A buffer overflow vulnerability has been reported in IBM Forms Viewer. The vulnerability is due to an error when processing XFDL forms and can be exploited to cause a stack-based buffer overflow. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code...
FreeBSD bsnmpd GETBULK PDU Stack Buffer Overflow - ver 2 (CVE-2014-1452)
A remote code execution vulnerability exists in the FreeBSD. The vulnerability is caused due to improper handling of crafted GETBULK PDU requests. A remote, unauthenticated attacker can exploit these vulnerabilities to execute arbitrary code on the target system within the security context of...
VirusChaser 8.0 - Stack Buffer Overflow
VirusChaser 8.0 - Stack Buffer Overflow Exploit Title: VirusChaser 8.0 - Stack Buffer Overflow Date: 2014/03/26 Exploit Author: wh1ant Vendor Homepage: https://www.viruschaser.com/ Software Link: https://www.viruschaser.com/download/VC80b32Setup.zip Version: 8.0 Tested on: Windows 7 ultimate K Yo...
VirusChaser 8.0 - Stack Buffer Overflow
Exploit Title: VirusChaser 8.0 - Stack Buffer Overflow Date: 2014/03/26 Exploit Author: wh1ant Vendor Homepage: https://www.viruschaser.com/ Software Link: https://www.viruschaser.com/download/VC80b32Setup.zip Version: 8.0 Tested on: Windows 7 ultimate K You must have administrator permission to...
VFU 4.10-1.1 Stack Buffer Overflow
Author: Provensec http://www.provensec.com Tested on GNU/Linux - Debian Wheezy Description: VFU v4.10-1.1 is prone to a stack-based buffer overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied input. An attacker can exploit this issue to execute...
Free Download Manager - Stack Buffer Overflow
Free Download Manager - Stack Buffer Overflow RCE Security Advisory http://www.rcesecurity.com 1. ADVISORY INFORMATION ----------------------- Product: Free Download Manager Vendor URL: www.freedownloadmanager.org Type: Stack-based Buffer Overflow CWE-121 Date found: 2014-02-20 Date published:...
HP Data Protector CRS Multiple Stack Buffer Overflows (CVE-2013-6195)
Multiple stack buffer overflows exist in HP Data Protector. The vulnerabilities are due to a lack of input sanitization on Strings provided with various opcodes. The strings are not validated for length before being copied into a fixed-size stack buffer. A remote unauthenticated attacker could...
RealNetworks RealPlayer RMP File Stack Buffer Overflow (CVE-2013-6877)
A stack buffer overflow exists in RealNetworks RealPlayer. Successful exploitation could result in arbitrary code execution in the context of the currently logged in user. The vulnerability is due to an error when parsing the version and encoding attributes of the XML declaration statement. An...
VLC Media Player RTSP Plugin Stack Buffer Overflow (CVE-2013-6933)
A stack buffer overflow exists in VideoLAN VLC Media Player. The vulnerability is due an error in VLC's embedded Live555 RTSP library, when handling RTSP requests. Incorrect handling of RTSP commands can result in a stack buffer overflow. A remote unauthenticated attacker could exploit this...
HP AIO Archive Query Server oasoa.exe Stack Buffer Overflow (CVE-2013-6189)
A stack buffer overflow vulnerability exists in HP Application Information Optimizer. The vulnerability is due to insufficient sanitization on the range of the opcode value. A remote unauthenticated attacker can leverage this vulnerability by sending crafted messages to the server...
Wireshark DECT Dissector Stack Buffer Overflow - Ver2 (CVE-2011-1591)
A stack buffer overflow vulnerability has been reported in Wireshark DECT dissector. The vulnerability is caused due to improper bounds checking. A remote attacker can exploit this vulnerability by enticing a user to read a specially crafted packet trace file. Successful exploitation would allow ...
Avaya多个IP电话命令注入和栈缓冲区溢出漏洞
Bugtraq ID:65842 Avaya IP Phones是IP电话系统。 Avaya多个IP Phones存在命令注入和基于栈的缓冲区溢出漏洞,允许远程攻击者利用漏洞使应用程序崩溃或执行任意shell命令。 0 Avaya IP Phones 厂商补丁: Avaya ----- 用户可参考如下厂商提供的安全补丁以修复该漏洞: http://www.avaya.com/...