CVE-2011-0031

The 1 JScript 5.8 and 2 VBScript 5.8 scripting engines in Microsoft Windows Server 2008 R2 and Windows 7 do not properly load decoded scripts obtained from web pages, which allows remote attackers to trigger memory corruption and consequently obtain sensitive information via a crafted web site, a...

Information disclosure

The 1 JScript 5.8 and 2 VBScript 5.8 scripting engines in Microsoft Windows Server 2008 R2 and Windows 7 do not properly load decoded scripts obtained from web pages, which allows remote attackers to trigger memory corruption and consequently obtain sensitive information via a crafted web site, a...

CVE-2011-0031

The 1 JScript 5.8 and 2 VBScript 5.8 scripting engines in Microsoft Windows Server 2008 R2 and Windows 7 do not properly load decoded scripts obtained from web pages, which allows remote attackers to trigger memory corruption and consequently obtain sensitive information via a crafted web site, a...

Microsoft JScript and VBScript Scripting Engines Information Disclosure Vulnerability (2475792)

This host is missing a critical security update according to Microsoft Bulletin MS11-009. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2011-0031

The CVE-2011-0031 issue affects the JScript 5.8 and VBScript 5.8 scripting engines in Microsoft Windows Server 2008 R2 and Windows 7. The root cause is improper loading of decoded scripts obtained from web pages, which can trigger memory corruption and lead to information disclosure when a user v...

Microsoft Ships 12 Bulletins in February's Patch Tuesday

Microsoft addressed 22 flaws with 12 separate bulletins in February’s edition of Patch Tuesday, including three bulletins that were rated critical with the remaining nine rated as important. Among the programs affected are Microsoft Windows, Internet Explorer, Office, Visual Studio, and IIS. The...

Microsoft VBScript and JScript Scripting Engines Information Disclosure Vulnerability

Description Microsoft VBScript and JScript scripting engines are prone to a remote information-disclosure vulnerability. Attackers can exploit this issue to gain access to sensitive information that may aid in further attacks. Attackers can exploit this issue by enticing an unsuspecting user to...

JScript and VBScript Scripting Engines Information Disclosure (MS11-009; CVE-2011-0031)

An information disclosure vulnerability has been discovered in JScript and VBScript scripting engines. VBScript stands for Microsoft Visual Basic Scripting Edition that includes Web client scripting in Microsoft Internet Explorer and Web server scripting in Microsoft Internet Information Service...

Vulnerability in OLE Automation Could Allow Remote Code Execution (947890)

This host is missing a critical security update according to Microsoft Bulletin MS08-008. OpenVAS Vulnerability Test $Id: gbms08-008.nasl 5548 2017-03-11 17:28:59Z cfi $ Vulnerability in OLE Automation Could Allow Remote Code Execution 947890 Authors: Madhuri D Copyright: Copyright c 2011 Greenbo...

Vulnerability in OLE Automation Could Allow Remote Code Execution (947890)

This host is missing a critical security update according to Microsoft Bulletin MS08-008. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Winzip 15.0 WZFLDVW.OCX IconIndex Property Denial of Service

Exploit for windows platform in category dos / poc ============================================================ Winzip 15.0 WZFLDVW.OCX IconIndex Property Denial of Service ============================================================ Exploit Title: Winzip WZFLDVW.OCX IconIndex property access...

Ecommercemax Solutions Digital good seller Sql Injection Vulnerablity

Exploit for asp platform in category web applications ===================================================================== Ecommercemax Solutions Digital good seller Sql Injection Vulnerablity =====================================================================...

Winzip 15.0 WZFLDVW.OCX Text Property Denial Of Service

Exploit Title: Winzip WZFLDVW.OCX text property access violation Author: fady mohamed osman Software Link : http://www.winzip.com/downwz.htm Version: 15.0 Build 9334 Tested on: Win XP Sp2 CVE : N/A Website : http://www.darkmasters.co.cc/ Twitter : http://twitter.com/FadyOsman 'Wscript.echo...

Gatesoft Docusafe Sql Injection Vulnerablity

Exploit for asp platform in category web applications ============================================ Gatesoft Docusafe Sql Injection Vulnerablity ============================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1 3 3 3 3 7 /' \ /'\ /'\ /\ \ /\ /\ ...

WinZip 15.0 - WZFLDVW.OCX Text Property Denial of Service

Exploit Title: Winzip WZFLDVW.OCX text property access violation Author: fady mohamed osman Software Link : http://www.winzip.com/downwz.htm Version: 15.0 Build 9334 Tested on: Win XP Sp2 CVE : N/A Website : http://www.darkmasters.co.cc/ Twitter : http://twitter.com/FadyOsman 'Wscript.echo...

WinZip 15.0 - WZFLDVW.OCX IconIndex Property Denial of Service

WinZip 15.0 - WZFLDVW.OCX IconIndex Property Denial of Service Exploit Title: Winzip WZFLDVW.OCX IconIndex property access violation Author: fady mohamed osman Software Link : http://www.winzip.com/downwz.htm Version: 15.0 Build 9334 Tested on: Win XP Sp2 CVE : N/A Website :...

Ecommercemax Solutions Digital Goods Seller - SQL Injection

Author: R4dc0re Exploit Title:Ecommercemax Solutions Digital good seller Sql Injection Vulnerablity Date: 05-12-2010 Vendor or Software Link:http://www.ecommercemax.com/ Category:WebApp Version:1.5 Price:60$ Contact: [email protected] Website: www.1337db.com Greetings to: R0073r1337db.com, L0rd...

Gatesafe Docusafe 4.1.0 SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1 3 3 3 3 7 /' \ /'\ /'\ /\ \ /\ /\ \ 7 1 /, /\L\ \ /\L\ \///'/' \ \ \ \ 1 3 //\ //\ Exploit database separated by exploit 3 3 type local, remote, DoS, etc. 3 7 7 1 + Site : 1337db.com 1 3 + Support e-mail :...

Gatesoft Docusafe 4.1.0 - SQL Injection

Gatesoft Docusafe 4.1.0 - SQL Injection Author: R4dc0re Exploit Title: Gatesoft Docusafe Sql Injection Vulnerablity Date: 05-12-2010 Vendor or Software Link:http://gatesoft.no/ Category:WebApp Version:4.1.0 Price:3500$ Contact: [email protected] Website: www.1337db.com Greetings to:...

Gatesoft Docusafe 4.1.0 - SQL Injection

Author: R4dc0re Exploit Title: Gatesoft Docusafe Sql Injection Vulnerablity Date: 05-12-2010 Vendor or Software Link:http://gatesoft.no/ Category:WebApp Version:4.1.0 Price:3500$ Contact: [email protected] Website: www.1337db.com Greetings to: R0073r1337db.com, L0rd CrusAd3r,Sid3^effects and to re...