7 matches found
AOL Radio AmpX ActiveX Control ConvertFile() Buffer Overflow
No description provided by source. $Id: aolampxconvertfile.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...
PBS Website Compromised, Used to Serve Exploits
Some sections of the popular PBS.org Web site have been hijacked by hackers serving up a cocktail of dangerous exploits. According to researchers at Purewire, attempts to access certain PBS Web site pages yielded JavaScript that serves exploits from a malicious domain via an iframe. The malicious...
AOL Radio AmpX ActiveX Control ConvertFile() Buffer Overflow
This module exploits a stack-based buffer overflow in AOL IWinAmpActiveX class AmpX.dll version 2.4.0.6 installed via AOL Radio website. By setting an overly long value to 'ConvertFile', an attacker can overrun a buffer and execute arbitrary code. This module requires Metasploit:...
AOL Radio AmpX ActiveX Control Buffer Overflow (CVE-2007-5755)
AOL Radio is a free online radio service provided by America Online. Multiple buffer overflow vulnerabilities exist in AOL Radio. These vulnerabilities are due to boundary errors in the AOL Radio AmpX ActiveX Control. To trigger this issue, an attacker may create a malicious web page that will...
Stack overflow
Multiple stack-based buffer overflows in the AOL AmpX ActiveX control in AmpX.dll 2.6.1.11 in AOL Radio allow remote attackers to execute arbitrary code via long arguments to unspecified methods...
AOL Radio AmpX Active X buffer overflow
Multiple buffer overflows in different methods...
AOL Radio AmpX ActiveX Control Buffer Overflow Vulnerabilities
The remote host contains the 'AmpX' ActiveX control, which is associated with AOL Radio. The version of this control installed on the remote host fails to validate input to several methods before copying it into a finite- sized buffer using 'strcpy'. In addition, it allows remote access to the...