Citrix Provisioning Services Stream Service 0x40020000 Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Citrix Provisioning Services. Authentication is not required to exploit this vulnerability. The flaw exists within the streamprocess.exe component. This process listens on UDP port 6905. When...

ZDI-12-006 : Novell Netware XNFS.NLM NFS Rename Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-006 : Novell Netware XNFS.NLM NFS Rename Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-006 January 5, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendors: Novell - -- Affect...

Novell Netware - XNFS.NLM STAT Notify Remote Code Execution

Application: Novell Netware XNFS.NLM STAT Notify Remote Code Execution Vulnerability Platforms: Novell Netware 6.5 SP8 Exploitation: Remote code execution CVE Number: Novell TID: 5117430 ZDI: ZDI-12-07 PRL: 2012-01 Author: Francis Provencher Protek Research Lab's Website:...

Blue Coat BCAAA Windows Service Stack Buffer Overflow

Added: 01/05/2012 BID: 47618 OSVDB: 72095 Background Blue Coat Authentication and Authorization Agent BCAAA is installed on a domain server and acts as an intermediary between a Blue Coat ProxySG and the domain. Problem The BCAAA Windows Service is vulnerable to a stack-based buffer overflow...

Novell Netware XNFS.NLM STAT Notify Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Netware. Authentication is not required to exploit this vulnerability. The flaw exists within the xnfs.nlm component which is used when handling NFS RPC requests. This process listens on UDP...

Novell Netware XNFS.NLM NFS Rename Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Netware. Authentication is not required to exploit this vulnerability. The flaw exists within the xnfs.nlm component which is used when handling NFS RPC requests. This process listens on UDP...

Blue Coat BCAAA Windows Service Stack Buffer Overflow

Added: 01/05/2012 BID: 47618 OSVDB: 72095 Background Blue Coat Authentication and Authorization Agent BCAAA is installed on a domain server and acts as an intermediary between a Blue Coat ProxySG and the domain. Problem The BCAAA Windows Service is vulnerable to a stack-based buffer overflow...

Stable Channel Update

The Stable channel has been updated to 16.0.912.75 for Windows, Mac, Linux and Chrome Frame Security fixes and rewards: Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix $1000 106672...

Denial-Of-Service

This Denial Of Service tool uses raw IP packets in no-novel ways to try stress the web target hosts childs It was designed to rapidly scan create 48 connections and it works fine against single hosts Required 2MB ADSL/Cable Bandwith in order to work properly Modified by JSacco -...

RKD Software ActiveX Control Remote Stack Buffer Overflow (CVE-2007-3435)

A Stack buffer overflow vulnerability has been reported in RKD Software Barcode Application. The vulnerability is due to a boundary error within the ABarCode ActiveX control while handling a certain method. A remote attacker could exploit this vulnerability by enticing a user to open a specially...

HP Intelligent Management Center img Buffer Overflow (CVE-2011-1848)

HP Intelligent Management Center IMC is a stand-alone, comprehensive management platform developed by HP that delivers integrated and modular network management capabilities. IMC Enterprise Edition is designed on a service-oriented architecture SOA using a business application flow model as the...

MPlayer SAMI Subtitle sub_read_line_sami Buffer Overflow

MPlayer is an open source multimedia player that runs on numerous operating systems including Linux, Windows and Mac OS X. Ports also exist for Amazon's Kindle, and the Nintendo Wii. It can play many audio and video formats MPEG, DivX, Ogg, etc. and handle various streaming protocols. A code...

Enterasys NetSight nssyslogd PRI Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Enterasys Netsight. Authentication is not required to exploit this vulnerability. The flaw exists within the nssyslogd.exe component which listens by default on UDP port 514. When parsing a new...

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 81753 Medium CVE-2011-3903: Out-of-bounds read in regex matching. Credit to David Holloway of the Chromium development community. 95465 Low CVE-2011-3905: Out-of-bounds reads in libxml. Credit to Google Chrome Security Team Inferno. 98809 Medium CVE-2011-3906:...

VanDyke AbsoluteFTP FTP Client LIST Overflow

Added: 12/12/2011 BID: 50614 OSVDB: 77105 Background VanDyke AbsoluteFTP is a popular free FTP client. AbsoluteFTP was replaced by SecureFX in 1998, and support for AbsoluteFTP ended in 2007. Problem The AbsoluteFTP client contains a buffer overflow vulnerability when parsing file and directory...

CyberLink Multiple Products File Project Handling Stack Buffer Overflow

Exploit for windows platform in category dos / poc !/usr/bin/python Exploit Title: CyberLink Multiple Products File Project Handling Stack Buffer Overflow POC by: modpr0beatspenteradotcom @modpr0be Platform: Windows Tested on: Windows XP SP3, Windows 7 SP1 with: CyberLink Power2Go 7 build 196...

CyberLink Stack Buffer Overflow

!/usr/bin/python Exploit Title: CyberLink Multiple Products File Project Handling Stack Buffer Overflow POC by: modpr0beatspenteradotcom @modpr0be Platform: Windows Tested on: Windows XP SP3, Windows 7 SP1 with: CyberLink Power2Go 7 build 196 CyberLink Power2Go 8 build 1031 CyberLink WaveEditor 2...

TrendMicro Control Manager CmdProcessor.exe AddTask Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trent Micro Control Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within CmdProcessor.exe service running on TCP port 20101. The vulnerable functio...

SopCast 3.4.7 sop:// URI Handling Remote Stack Buffer Overflow PoC

Exploit for windows platform in category remote exploits !/usr/bin/perl SopCast 3.4.7 sop:// URI Handling Remote Stack Buffer Overflow PoC Vendor: SopCast.com Product web page: http://www.sopcast.com Affected version: 3.4.7.45585 Summary: SopCast is a simple, free way to broadcast video and audio...

SopCast 3.4.7 - sop: URI Handling Remote Stack Buffer Overflow (PoC)

SopCast 3.4.7 - sop: URI Handling Remote Stack Buffer Overflow PoC !/usr/bin/perl SopCast 3.4.7 sop:// URI Handling Remote Stack Buffer Overflow PoC Vendor: SopCast.com Product web page: http://www.sopcast.com Affected version: 3.4.7.45585 Summary: SopCast is a simple, free way to broadcast video...