HTML Creator & Sender <= 2.3 build 697 Local BOF Exploit (SEH)

No description provided by source. !/usr/bin/env python HTML Creator & Sender = v2.3 Build 697 Local Buffer Overflow Exploit SEH Coded By: DrIDE Based On: http://www.milw0rm.com/exploits/9446 Testd On: Windows XP SP2 Download: http://www.html-email.net/ Usage: Browse to file, enter anything for...

PT-2009-4038 · Microsoft · Windows Xp +3

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to Vista Gold Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions Gold through SP2 Microsoft Windows Server 2008 versions Gold through SP2...

XEmacs Version Detection (Windows)

This script detects the installed version of XEmacs and sets the result in KB. OpenVAS Vulnerability Test $Id: gbxemacsdetectwin.nasl 5372 2017-02-20 16:26:11Z cfi $ XEmacs Version Detection Windows Authors: Nikita MR Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net...

PT-2009-3491

Name of the Vulnerable Software and Affected Versions Microsoft Visual Studio .NET versions 2003 SP1 through 2008 Microsoft Visual C++ versions 2005 SP1 through 2008 SP1 Windows versions 2000 SP4 through XP SP3, Server 2003 SP2, Vista Gold through SP2, and Server 2008 Gold through SP2 Description...

Default configuration

The default configuration of TekRADIUS 3.0 uses the sa account to communicate with Microsoft SQL Server, which makes it easier for remote attackers to obtain privileged access to the database and the underlying Windows operating system...

CVE-2009-2357

The default configuration of TekRADIUS 3.0 uses the sa account to communicate with Microsoft SQL Server, which makes it easier for remote attackers to obtain privileged access to the database and the underlying Windows operating system...

CVE-2009-0230

The Windows Print Spooler in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 allows remote authenticated users to gain privileges via a crafted RPC message that triggers loading of a DLL file from an arbitrary directory, aka "Print Spoole...

PT-2009-4029 · Microsoft · Windows Xp +5

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer 8 for Windows XP SP2 and SP3 Microsoft Internet Explorer 8 for Server 2003 SP2 Microsoft Internet Explorer 8 for Vista Gold, SP1, and SP2 Microsoft Internet Explorer 8 for Server 2008 SP2 Description: A remote code...

Atomix Virtual Dj Pro 6.0 - Local Stack Buffer Overflow (SEH)

Atomix Virtual Dj Pro 6.0 - Local Stack Buffer Overflow SEH include include include include include unsigned char rawData = 0x23, 0x56, 0x69, 0x72, 0x74, 0x75, 0x61, 0x6C, 0x44, 0x4A, 0x20, 0x50, 0x6C, 0x61, 0x79, 0x6C, 0x69, 0x73, 0x74, 0x0D, 0x0A, 0x23, 0x4D, 0x69, 0x78, 0x54, 0x79, 0x70, 0x65,...

Windows ZIP folders buffer overflow

Integer overflow in DynaZip DUNZIP32.DLL library on oversized filename in archive...

Card-sniffing malware on Diebold ATMs

By Bob McMillan, ComputerWorld Diebold has released a security fix for its Opteva automated teller machines after cybercriminals apparently broke into the systems at one or more businesses in Russia and installed malicious software. McMillan reports that Diebold learned of the incident...

Microsoft IE CFunctionPointer函数内存破坏漏洞（MS09-002）

BUGTRAQ ID: 33627 CVECAN ID: CVE-2009-0075 Internet Explorer是微软Windows操作系统中默认捆绑的WEB浏览器。 Internet Explorer的CFunctionPointer函数没有正确地处理文档对象，如果以特定序列附加并删除了对象，就可以触发内存破坏，导致以当前登录用户的权限执行任意代码。 Microsoft Internet Explorer 7.0 ZDI （http://www.zerodayinitiative.com/） 链接：http://secunia.com/advisories/33845/...

Microsoft IE screen[""]远程拒绝服务漏洞

BUGTRAQ ID: 33149 CVECAN ID: CVE-2009-0072 Internet Explorer是Windows操作系统中默认捆绑的WEB浏览器。 如果用户通过Internet Explorer打开网页的BODY单元中设置了onload=screen""属性值的话，就会导致浏览器崩溃。 Microsoft Internet Explorer 8 beta 2 Microsoft Internet Explorer 8 beta 1 Microsoft Internet Explorer 7.0 Microsoft Internet Explorer 6.0 厂商补...

Solaris 10 (x86) : 127557-05 (deprecated)

Sun Ray Connector for Microsoft Windows Operating Systems version. Date this patch was last updated by Sun : Dec/07/09 This plugin has been deprecated and either replaced with individual 127557 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security,...

Registering Opera as a protocol handler can allow it to be used to execute arbitrary code – Opera Security Advisories

Registering Opera as a protocol handler can allow it to be used to execute arbitrary code – Opera Security Advisories OPCOM Team | December 16, 2008 Severity Extremely Severe Problem Description When an application attempts to access a URL that uses a protocol that it does not understand, it may...

Microsoft Internet Explorer 8 - CSS expression Property Cross-Site Scripting Filter Bypass

Microsoft Internet Explorer 8 - CSS expression Property Cross-Site Scripting Filter Bypass source: https://www.securityfocus.com/bid/32780/info Microsoft Internet Explorer is a web browser for the Microsoft Windows operating system. Internet Explorer 8 includes a cross-site-scripting filter that ...

Microsoft Internet Explorer 8 - CSS 'expression' Property Cross-Site Scripting Filter Bypass

source: https://www.securityfocus.com/bid/32780/info Microsoft Internet Explorer is a web browser for the Microsoft Windows operating system. Internet Explorer 8 includes a cross-site-scripting filter that is designed to prevent cross-site-scripting attacks against vulnerable web applications...

VulnCheck KEV: CVE-2008-4841

The WordPad Text Converter for Word 97 files in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted 1 .doc, 2 .wri, or 3 .rtf Word 97 file that triggers memory corruption, as exploited in the wild in December 2008...

Microsoft IE畸形PNG文件远程拒绝服务漏洞

BUGTRAQ ID: 31215 Internet Explorer是Windows操作系统中默认捆绑的WEB浏览器。 Internet Explorer中的Mshtml.dll库负责渲染网页中的对象。在加载畸形的PNG文件时，该库中的CDwnTaskExec::ThreadExec可能会陷入死循环，保持一直获取任务并同步运行，这样就无法完成任务。如果任务无法完成或超时的话，就会导致无法执行之后的任务。 Microsoft Internet Explorer 8.0.6001 Microsoft Internet Explorer 7.0.5730 Microsoft --------...

Sun xVM VirtualBox 1.6.4 - Privilege Escalation (PoC)

Sun xVM VirtualBox 1.6.4 - Privilege Escalation PoC -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory Information Title: Sun xVM VirtualBox Privilege...