437 matches found
Adobe Flash Player ActionScript Launch Command Execution
Exploit for linux platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...
Adobe Flash Player ActionScript Launch Command Execution
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...
Adobe Flash Player - ActionScript Launch Command Execution (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Adobe Flash Player ActionScript Launc...
Adobe Flash Player ActionScript Launch Command Execution Vulnerability
This module exploits a vulnerability in Adobe Flash Player for Linux, version 10.0.12.36 and 9.0.151.0 and prior. An input validation vulnerability allows command execution when the browser loads a SWF file which contains shell metacharacters in the arguments to the ActionScript launch method. Th...
[waraxe-2012-SA#083] - Multiple Vulnerabilities in Uploadify 2.1.4
waraxe-2012-SA083 - Multiple Vulnerabilities in Uploadify 2.1.4 =============================================================================== Author: Janek Vind "waraxe" Date: 05. April 2012 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-83.html Description of vulnerable software:...
[waraxe-2012-SA#082] - File Existence Disclosure in Uploadify 3.0.0
waraxe-2012-SA082 - File Existence Disclosure in Uploadify 3.0.0 =============================================================================== Author: Janek Vind "waraxe" Date: 05. April 2012 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-82.html Description of vulnerable software:...
[SECURITY] Fedora 16 Update: gnash-0.8.10-2.fc16
Gnash is capable of reading up to SWF v9 files and op-codes, but primarily supports SWF v7, with better SWF v8 and v9 support under heavy development. Gnash includes initial parser support for SWF v8 and v9. Not all ActionScript 2 classes are implemented yet, but all of the most heavily used ones...
[SECURITY] Fedora 15 Update: gnash-0.8.10-2.fc15
Gnash is capable of reading up to SWF v9 files and op-codes, but primarily supports SWF v7, with better SWF v8 and v9 support under heavy development. Gnash includes initial parser support for SWF v8 and v9. Not all ActionScript 2 classes are implemented yet, but all of the most heavily used ones...
Fedora Update for gnash FEDORA-2012-4070
Check for the Version of gnash OpenVAS Vulnerability Test Fedora Update for gnash FEDORA-2012-4070 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Fedora Update for gnash FEDORA-2012-2719
Check for the Version of gnash OpenVAS Vulnerability Test Fedora Update for gnash FEDORA-2012-2719 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
[SECURITY] Fedora 16 Update: gnash-0.8.10-1.fc16
Gnash is capable of reading up to SWF v9 files and op-codes, but primarily supports SWF v7, with better SWF v8 and v9 support under heavy development. Gnash includes initial parser support for SWF v8 and v9. Not all ActionScript 2 classes are implemented yet, but all of the most heavily used ones...
[SECURITY] Fedora 15 Update: gnash-0.8.10-1.fc15
Gnash is capable of reading up to SWF v9 files and op-codes, but primarily supports SWF v7, with better SWF v8 and v9 support under heavy development. Gnash includes initial parser support for SWF v8 and v9. Not all ActionScript 2 classes are implemented yet, but all of the most heavily used ones...
[SECURITY] Fedora 17 Update: gnash-0.8.10-1.fc17
Gnash is capable of reading up to SWF v9 files and op-codes, but primarily supports SWF v7, with better SWF v8 and v9 support under heavy development. Gnash includes initial parser support for SWF v8 and v9. Not all ActionScript 2 classes are implemented yet, but all of the most heavily used ones...
flash-plugin: critical flaws fixed in APSB11-26
Stack-based buffer overflow in the ActionScript Virtual Machine AVM component in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows attackers to execute arbitrary code or cause a denial of service via unspecified vectors...
Adobe Flash Player ActionScript Recursive StackOverflowError (APSB11-26; CVE-2011-2426)
The vulnerability is due to an error in the ActionScript Virtual Machine AVM while handling malicious Flash files. A remote attacker may exploit this vulnerability by enticing an unsuspecting user to open a web-page containing specially crafted Flash files. Successful exploitation may allow an...
flash-plugin: critical flaws fixed in APSB11-26
Stack-based buffer overflow in the ActionScript Virtual Machine AVM component in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to execute arbitrary code via unspecified vectors...
CVE-2011-2426
Stack-based buffer overflow in the ActionScript Virtual Machine AVM component in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to execute arbitrary code via unspecified vectors...
CVE-2011-2427
Adobe Flash Player AVM stack-based overflow (CVE-2011-2427) affects the ActionScript Virtual Machine in desktop platforms (Windows, macOS, Linux, Solaris) and Android prior to versions 10.3.183.10 (desktop) and 10.3.186.7 (Android). The vulnerability allows arbitrary code execution or a denial of...
Adobe Flash Player ActionScript Function Arguments Code Execution
Added: 08/22/2011 CVE: CVE-2011-2110 BID: 48268 OSVDB: 73007 Background Adobe Flash Player is a cross-platform browser plug-in providing visual enhancements for web pages. Problem The Adobe Flash Player ActionScript Engine is vulnerable to an information leak that can be leveraged to execute...
Adobe Flash Player ActionScript Function Arguments Code Execution
Added: 08/22/2011 CVE: CVE-2011-2110 BID: 48268 OSVDB: 73007 Background Adobe Flash Player is a cross-platform browser plug-in providing visual enhancements for web pages. Problem The Adobe Flash Player ActionScript Engine is vulnerable to an information leak that can be leveraged to execute...