6716 matches found
GLD (Greylisting Daemon) Postfix Buffer Overflow
This module exploits a stack buffer overflow in the Salim Gasmi GLD 'GLD Greylisting Daemon Postfix Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in the Salim Gasmi GLD 'aushack' , 'Arch' = ARCHX86, 'Platform' = 'linux', 'References' = 'CVE', '2005-1099' ,...
DoubleTake/HP StorageWorks Storage Mirroring Service Authentication Overflow
This module exploits a stack buffer overflow in the authentication mechanism of NSI Doubletake which is also rebranded as HP Storage Works. This vulnerability was found by Titon of Bastard Labs. This module requires Metasploit: https://metasploit.com/download Current source:...
CA ETrust Secure Content Manager Gateway FTP PASV Stack Overflow Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates eTrust Secure Content Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists in the HTTP Gateway service icihttp.exe running on port 8080. By...
NASA Ames Research Center BigView 1.8 - .PNM Stack Buffer Overflow (PoC)
NASA Ames Research Center BigView 1.8 - .PNM Stack Buffer Overflow PoC source: https://www.securityfocus.com/bid/29517/info NASA Ames Research Center BigView is prone to a remote stack-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying ...
Online Media Technologies NCTSoft NCTAudioInformation2 ActiveX stack buffer overflows
Overview The Online Media Technologies NCTSoft NCTAudioInformation2 ActiveX control contains multiple stack buffer overflows, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Online Media Technologies, which was formerly known as NCT...
Online Media Technologies NCTSoft NCTAudioGrabber2 ActiveX stack buffer overflows
Overview The Online Media Technologies NCTSoft NCTAudioGrabber2 ActiveX control contains multiple stack buffer overflows, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Online Media Technologies, which was formerly known as NCT...
Borland Interbase integer overflow
Integer overflow on TCP/3050 traffic parsing leads to stack based buffer overflow...
Debian DSA-1579-1 : netpbm-free - insufficient input sanitizing
A vulnerability was discovered in the GIF reader implementation in netpbm-free, a suite of image manipulation utilities. Insufficient input data validation could allow a maliciously-crafted GIF file to overrun a stack buffer, potentially permitting the execution of arbitrary code. %NASLMINLEVEL...
PhotoStockPlus Uploader Tool ActiveX stack buffer overflows
Overview The PhotoStockPlus Uploader Tool ActiveX control contains several stack buffer overflows, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description PhotoStockPlus provides an image uploader ActiveX control, which is provided by the...
BigAnt Server 2.2 Buffer Overflow
This module exploits a stack buffer overflow in BigAnt Server 2.2. By sending a specially crafted packet, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
cdf3 -- Buffer overflow vulnerability
NASA Goddard Space Flight Center reports: The libraries for the scientific data file format, Common Data Format CDF version 3.2 and earlier, have the potential for a buffer overflow vulnerability when reading specially-crafted invalid CDF files. If successful, this could trigger execution of...
CA BrightStor ARCserve for Laptops and Desktops LGServer Buffer Overflow
This module exploits a stack buffer overflow in Computer Associates BrightStor ARCserve Backup for Laptops & Desktops 11.1. By sending a specially crafted request, an attacker could overflow the buffer and execute arbitrary code. This module requires Metasploit: https://metasploit.com/download...
GoodTech Telnet Server Buffer Overflow
This module exploits a stack buffer overflow in GoodTech Systems Telnet Server versions prior to 5.0.7. By sending an overly long string, an attacker can overwrite the buffer and control program execution. This module requires Metasploit: https://metasploit.com/download Current source:...
Surgemail 3.8 - IMAP LSUB Command Remote Stack Buffer Overflow
source: https://www.securityfocus.com/bid/28377/info SurgeMail is prone to a remote stack-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input. Successfully exploiting this issue may allow remote attackers to execute arbitrary machine code in the conte...
BusinessObjects RptViewerAX ActiveX control stack buffer overflow
Overview The BusinessObjects RptViewerAX ActiveX control contains a stack buffer overflow, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description BusinessObjects 6.5 includes an ActiveX control called RptViewerAX, which is provided by...
KarjaSoft Sami FTP Server v2.0.2 USER Overflow
This module exploits an unauthenticated stack buffer overflow in KarjaSoft Sami FTP Server version 2.0.2 by sending an overly long USER string during login. The payload is triggered when the administrator opens the application GUI. If the GUI window is open at the time of exploitation, the payloa...
ZDI-08-009: Java Web Start tempbuff Stack Buffer Overflow
ZDI-08-009: Java Web Start tempbuff Stack Buffer Overflow http://www.zerodayinitiative.com/advisories/ZDI-08-009 March 12, 2008 -- CVE ID: CVE-2008-1188 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime -- TippingPointTM IPS Customer Protection: TippingPoin...
Java Web Start encoding Stack Buffer Overflow Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun Java Web Start. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the useEncodingDecl function used while...
Java Web Start tempbuff Stack Buffer Overflow Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun Java Web Start. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the useEncodingDecl function used while...
Microsoft Office Web Components Spreadsheet ActiveX control URL parsing stack buffer overflow
Overview The Microsoft Office Web Components ActiveX controls contain a stack buffer overflow in the processing of URLs, which allows a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft Office Web Components are ActiveX controls that provide...