phpScheduleIt PHP reserve.php start_date Parameter Arbitrary Code Injection

This module exploits an arbitrary PHP code execution flaw in the phpScheduleIt software. This vulnerability is only exploitable when the magicquotesgpc PHP option is 'off'. Authentication is not required to exploit the bug. Version 1.2.10 and earlier of phpScheduleIt are affected. This module...

Novell GroupWise Client IMG Tag SRC Parameter Buffer Overflow (CVE-2007-6435)

Novell GroupWise is a client-server collaborative software and email system provided by Novell. The Novell GroupWise Client application is capable of communicating with Novell Group server, as well as Internet email gateways using SMTP, POP, and IMAP protocols. A buffer overflow vulnerability has...

MODx login.php 'username' Parameter XSS

The installed version of MODx fails to adequately sanitize input passed to the 'username' parameter in the 'login.php' script before using it to generate dynamic HTML content. An unauthenticated, remote attacker may be able to leverage this issue to inject arbitrary HTML or script code into a...

Samba SID Parsing Stack Buffer Overflow (CVE-2010-3069)

Samba is an open-source implementation of the file, print, and other network services suite known as SMB/CIFS Server Message Block/Common Internet File System. Samba implements several protocols and services, including NetBIOS over TCP/IP NBT, SMB, CIFS an enhanced version of SMB, DCE/RPC or more...

eBlog 1.7 SQL Injection

eBlog 1.7 Multiple SQL Injection Vulnerabilities Name eBlog Vendor https://emuci.com Versions Affected 1.7 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-11-10 X. INDEX I. ABOUT THE APPLICATION II. DESCRIPTION III...

Firebird Database Server Username Handling Buffer Overflow (CVE-2008-0467)

Firebird sometimes called FirebirdSQL is a relational database management system offering many ANSI SQL-2003 features. It runs on Linux, Windows, and a variety of Unix platforms. Started as a fork of Borland's open source release of InterBase, the Firebird codebase is maintained by the Firebird...

Apple QuickTime QTPlugin.ocx _Marshaled_pUnk Code Execution (CVE-2010-1818)

QuickTime is a media player application developed by Apple. It is capable of playing back numerous multimedia file formats from local file system or network servers. Upon installation, Apple QuickTime also installs a web browser plugin, QTPlugin.ocx. A remote code execution vulnerability has been...

Novell eDirectory dhost Buffer Overflow

Novell eDirectory is a Lightweight Directory Access Protocol LDAP server, intended for use as a part of an identity management solution. The product is made available for multiple platforms including NetWare, Unix-like systems, and Windows. A remote code execution vulnerability has been reported ...

Apple QuickTime Streaming Debug Error Logging Buffer Overflow (CVE-2010-1799)

QuickTime is a media player application developed by Apple. It is capable of playing back numerous multimedia file formats from local file system or network servers. One of the media formats supported by Apple QuickTime is SMIL. A stack buffer overflow vulnerability exists in Apple QuickTime medi...

Microsoft Windows HLP File Handling Heap Buffer Overflow (CVE-2007-1912)

Microsoft Windows includes a standard Help system to assist the user working with applications. The WinHelp system, first introduced with Microsoft Windows 3.1, allows a developer to create a searchable document with a table of contents, images, hyper-links and other features. The developer may...

IBM Lotus Notes Lotus 1-2-3 Work Sheet File Viewer Buffer Overflow (CVE-2007-6593)

There is a buffer overflow vulnerability exists in IBM Lotus Notes. The vulnerability is due to a boundary error within the Lotus 1-2-3 file viewer. A remote attacker could leverage this vulnerability by enticing a target user to view the maliciously crafted email attachment. Successful attack...

damianov.net Shoutbox - Cross-Site Scripting

damianov.net Shoutbox - Cross-Site Scripting Exploit Title: damianov.net Shoutbox XSS Vulnerability Date: 13.05.2010 Author: Valentin Category: webapps/0day Version: 1.0 Tested on: Debian, Apache2, PHP5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 ::::::::::::::::::::::::::::::::::::::...

Yahoo Messenger AudioConf ActiveX Control Buffer Overflow (CVE-2007-1680)

Yahoo! Messenger is an instant messaging communicating application developed by Yahoo! Inc. One of the features that Yahoo! Messenger provides is the ability to create conference rooms. Yahoo! Messenger users can create a conference room and invite other users to join the conference. The conferen...

RealNetworks Helix Server AgentX receive_agentx Stack Buffer Overflow

Added: 04/27/2010 CVE: CVE-2010-1318 BID: 39564 OSVDB: 63919 Background RealNetworks Helix Server is a media server supporting multiple formats and platforms. Problem A stack buffer overflow vulnerability exists in RealNetworks Helix Server due to a boundary error in the AgentX::receiveagentx...

Novell NetWare NFS Portmapper RPC Module Stack Overflow

Netware is a network operating system developed by Novell. It provides file sharing and other services such as printing and email. With the inception of the version 3, and the availability of 80386 CPUs, Novell introduced the NLM, or the NetWare Loadable Module architecture. This allowed the...

Mozilla Firefox Layout Frame Constructor Memory Corruption (CVE-2007-5959)

Firefox is an open source web browser developed by Mozilla Foundation. The application is capable of interpreting and rendering many types of Internet content, including various versions of HTML, XML, CSS Cascade Style Sheet, Javascript, various graphic formats, and so on. Firefox is made availab...

VMware COM API ActiveX Control Buffer Overflow (CVE-2008-3892)

VMware API is developed by VMware Inc. to provide a complete set of language-neutral interfaces to the VMware Virtual Infrastructure Management VIM Framework. When the Windows version, VMware COM API, is installed on a Windows hosting computer, an ActiveX control is registered. A buffer overflow...

Microsoft Windows GDIplus PNG Chunk Processing Integer Overflow (MS09-062; CVE-2009-2501; CVE-2013-1331)

An integer overflow vulnerability exists in Microsoft Windows GDI+. The vulnerability is due to lack of input validation when Microsoft Windows GDI+ handles PNG files. A remote attacker can exploit this vulnerability by enticing the target to open a specially crafted PNG file. Successful...

Sun Java Web Start Splashscreen PNG Processing Buffer Overflow (CVE-2009-1097)

The Sun Java Web Start is a component of the Java 2 Runtime Environment JRE. It facilitates network deployment of applications developed with the Java programming language. This component enables stand-alone Java applications to be downloaded from a remote network location and run on a target...

Update Protection against HP OpenView Network Node Manager ovlogin.exe Buffer Overflow

A buffer overflow vulnerability exists in HP OpenView Network Node Manager NNM. The vulnerability is due to a boundary error in ovlogin.exe, the login process of a CGI application shipped with OpenView NNM. A remote unauthenticated attacker can exploit this vulnerability by sending a crafted HTTP...