220 matches found
Taltech Tal Bar Code ActiveX Control Memory Corruption Vulnerability(-ies)
Taltech Tal Bar Code ActiveX Control Memory Corruption Vulnerability-ies Michal Bucko sapheal hack.pl I. BACKGROUND The Bar Code ActiveX Control has all the features necessary to easily add professional quality barcodes to any Windows application including Web pages, database reporting and...
WinGate IMAP Server Directory Traversal Vulnerabilities
The remote host appears to be running WinGate, a Windows application for managing and securing Internet access. The version of WinGate installed on the remote host fails to remove directory traversal sequences from the 'CREATE', 'SELECT', 'DELETE', 'RENAME', 'COPY', 'APPEND', and 'LIST' commands...
WinGate POST Request Buffer Overflow
The remote host appears to be running WinGate Proxy Server, a Windows application for managing and securing Internet access. According to its banner, the version of WinGate installed on the remote host is affected by a buffer overflow vulnerability in its HTTP proxy service. An attacker with acce...
BlackBerry Enterprise Server PNG Attachment Buffer Overflow
The version of BlackBerry Enterprise Server installed on the remote host reportedly is affected by a heap-based buffer overflow that can be triggered by a malformed PNG attachment. Exploitation of this issue may cause the Attachment Service to stop responding or crash and may even allow for the...
BlackBerry Enterprise Server Attachment Handling Buffer Overflows
The version of BlackBerry Enterprise Server on the remote host reportedly contains flaws in its handling of Word and TIFF document attachments that may result in buffer overflows when a user opens a malformed file on a BlackBerry device. A remote attacker may be able to exploit this issue to...
Privilege escalation in Nortel Contivity VPN Client V05_01.030
Summary: Privilege escalation in Nortel Contivity VPN Client V0501.030 http://www.nortel.com Details: The Contivity VPN Client is a Windows application that lets you define and store connection information for accessing your corporate network through a Contivity Secure IP Services Gateway. When t...
ContivitySystem.txt
Summary: Privilege escalation in Nortel Contivity VPN Client V0501.030 http://www.nortel.com Details: The Contivity VPN Client is a Windows application that lets you define and store connection information for accessing your corporate network through a Contivity Secure IP Services Gateway. When t...
Stream Raped (Windows) - Denial of Service
Stream Raped Windows - Denial of Service / Straped 1.0 author: Marco Del Percio 20/05/2005 Remember: this is a mulithreaded program! MSVC++ compile with /MT. Remember: This program requires raw socket support! You can't use it on Windows XP SP2 and if you've done MS05-019 update you'll have to...
RealPlayer Skin File Remote Buffer Overflow
According to its build number, the installed version of RealPlayer / RealOne Player for Windows may allow an attacker to execute arbitrary code on the remote host, with the privileges of the user running RealPlayer because of an overflow vulnerability in the third-party compression library...
Buffer-overflow in ShixxNOTE 6.net
Luigi Auriemma Application: ShixxNote 6.net http://www.shixxnote.com Versions: 6.net, doesn't exist a specific version or build number but the latest change in Readme.txt something similar to a changelog is 117 Platforms: Windows Bug: buffer-overflow Exploitation: remote Date: 13 October 2004...
Broadcast buffer-overflow in Vypress Messenger 3.5.1
Luigi Auriemma Application: Vypress Messenger http://www.vypress.com/products/messenger/ Versions: = 3.5.1 Platforms: Windows Bug: buffer overflow Risk: critical Exploitation: remote, broadcast Date: 01 October 2004 Author: Luigi Auriemma e-mail: [email protected] web:...
NotJustBrowsing 1.0.3 Local Password Disclosure Exploit
Exploit for unknown platform in category local exploits ======================================================= NotJustBrowsing 1.0.3 Local Password Disclosure Exploit ======================================================= / NotJustBrowsing 1.0.3 Local Password Disclosure Exploit by Kozan...
blaxxun3D(blaxxun Platform) 7 - Remote Buffer Overflow
Application: blaxxun3Dblaxxun Platform Vendors: http://www.blaxxun.com Version: 7 Platforms: Windows Bug: Buffer Overflow Risk: High - Running Arbitary Code At SYSTEM Level Exploitation: Remote with browser Date: 1 Apr 2004 Author: Rafel Ivgi, The-Insider e-mail: [email protected] web:...
Winamp 2.91 lets code execution through MIDI files
Luigi Auriemma Application: Winamp http://www.winamp.com and http://classic.winamp.com Versions: Winamp 2.91 using INMIDI.DLL 3.01 Winamp 3 crashes but I have not found methods to execute code Platforms: Windows Bugs: Code execution through malformed MIDI files Risk: medium/high exploitation has...
RealPlayer PNG Deflate Algorithm Heap Corruption Arbitrary Code Execution
According to its build number, the installed version of RealPlayer / RealOne Player / RealPlayer Enterprise for Windows has a flaw in the remote version that may allow an attacker to execute arbitrary code on the remote host, with the privileges of the user running RealPlayer. To do so, an attack...
Kazaa on Windows Detection
Kazaa, a peer-to-peer file sharing application is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11426; scriptversion"1.24"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/05/24"; scriptnameenglish:"Kazaa on Windows...
Pegasus mail DoS
Application: Pegasus mail http://www.pmail.com Version: 4.01 and possibly previous Bug: Bad management of "From:" and "To:" mail headers Risk: DoS and in some cases the client cannot be opened until the user have not cancelled the saved mail in the mail folder Author: Auriemma Luigi e-mail:...
EFTP 2.0.7 337 - Remote Buffer Overflow Code Execution Denial of Service
EFTP 2.0.7 337 - Remote Buffer Overflow Code Execution Denial of Service // source: https://www.securityfocus.com/bid/3330/info Encrypted FTP EFTP is both an FTP client and server application for Windows platforms. A malicious user with upload permissions to the target host can cause a buffer...
PADLOCK.txt
LOWNOISE Advisory: [email protected] by ET. PADLOCK-IT 1.01 =============== DISCLAIMER: Learn, there are dark things behind a nice GUI. Well, maybe this isnt a topic for bugtraq but many people is using this kind of programs to protect all kind of passwords. Dial-up passwords, UNIX accounts, etc...
CVE-2024-33865
An issue was discovered in linqi before 1.4.0.1 on Windows. There is an NTLM hash leak via the /api/Cdn/GetFile and /api/DocumentTemplate/GUID endpoints...