2762 matches found
security flaw
Mozilla Firefox and Thunderbird before 1.5.0.4 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via 1 nested tags in a select tag, 2 a DOMNodeRemoved mutation event, 3 "Content-implemented tree views," 4 BoxObjects, 5 the XBL implementation, 6 an ifram...
linux/x86 setuid/portbind shellcode 96 bytes
Exploit for linux/x86 platform in category shellcode ============================================ linux/x86 setuid/portbind shellcode 96 bytes ============================================ / $Id: portbind-linux.c,v 1.4 2004/06/02 12:22:30 raptor Exp $ portbind-linux.c - setuid/portbind shellcode f...
excelExploit.txt
/--------------------------------------------------------------------- Microsoft Excel Remote Code Execution Proof Of Concept. Tested against : Excel 2000 on Win XP SP1 , and Win2000 SP4 Description: Microsoft Excel is prone to a remote code execution issue which may be triggered when a malformed...
Quake 3 Engine 1.32b R_RemapShader() Remote Client BoF Exploit
No description provided by source. // remapthis.c - "RRemapShader" q3 engine 1.32b client remote bof exploit // by landser - landser at hotmail.co.il // // this code works as a preloaded shared library on a game server, // it hooks two functions on the running server: // svcdirectconnect that is...
security flaw
Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to execute arbitrary code by using an eval in an XBL method binding XBL.method.eval to create Javascript functions that are compiled with extra...
security flaw
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to gain chrome privileges via multiple attack vectors related to the use of XBL scripts with "Print Preview"...
security flaw
Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to execute arbitrary code by using an eval in an XBL method binding XBL.method.eval to create Javascript functions that are compiled with extra...
Mozilla XBL binding vulnerability
Overview Mozilla products fail to properly restrict access to privileged XBL bindings. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code. Description XBL According to Mozilla, XBL "is a markup language that defines special new elements, or 'bindings' for XU...
security flaw
Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to execute arbitrary code by using an eval in an XBL method binding XBL.method.eval to create Javascript functions that are compiled with extra...
security flaw
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to gain chrome privileges via multiple attack vectors related to the use of XBL scripts with "Print Preview"...
DEBIAN-CVE-2006-1727
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to gain chrome privileges via multiple attack vectors related to the use of XBL scripts with "Print Preview"...
Privilege escalation via XBL.method.eval — Mozilla
Using the eval associated with methods of an XBL binding it was possible to create JavaScript functions that would get compiled with the wrong privileges, allowing the attacker to run code of their choice with the full permission of the user running the browser. This could be used to install...
linux/x86 portbind (port 64713) 86 bytes
No description provided by source. / linux-x86-portbind.c - portbind shellcode 86 bytes for Linux/x86 Copyright c 2006 Gotfault Security [email protected] portbind shellcode that bind's a shell on port 64713/tcp / char shellcode = / socketAFINET, SOCKSTREAM, 0 / "\x6a\x66" // push $0x66 "\x58" //...
linux/x86 - portbind port 64713 86 bytes
linux/x86 portbind port 64713 86 bytes. Shellcode exploit for linx86 platform / linux-x86-portbind.c - portbind shellcode 86 bytes for Linux/x86 Copyright c 2006 Gotfault Security portbind shellcode that bind's a shell on port 64713/tcp / char shellcode = / socketAFINET, SOCKSTREAM, 0 / "\x6a\x66...
linux/x86 portbind (port 64713) 86 bytes
Exploit for linux/x86 platform in category shellcode ======================================== linux/x86 portbind port 64713 86 bytes ======================================== / linux-x86-portbind.c - portbind shellcode 86 bytes for Linux/x86 Copyright c 2006 Gotfault Security portbind shellcode th...
crossfire-server <= 1.9.0 SetUp() Remote Buffer Overflow Exploit
Exploit for linux platform in category remote exploits ================================================================ crossfire-server include include include include include include include include define PORT 13327 // default port define SCPORT 33333 // default shellcode port define SCHOST...
Safari archive metadata command execution
Added: 02/24/2006 CVE: CVE-2006-0848 BID: 16736 OSVDB: 23366 Background The Safari web browser supports explicit binding, which allows a file to override the default application for its file type. Safe files are files such as pictures, movies, and archives which are opened automatically when...
Safari archive metadata command execution
Added: 02/24/2006 CVE: CVE-2006-0848 BID: 16736 OSVDB: 23366 Background The Safari web browser supports explicit binding, which allows a file to override the default application for its file type. Safe files are files such as pictures, movies, and archives which are opened automatically when...
Safari archive metadata command execution
Added: 02/24/2006 CVE: CVE-2006-0848 BID: 16736 OSVDB: 23366 Background The Safari web browser supports explicit binding, which allows a file to override the default application for its file type. Safe files are files such as pictures, movies, and archives which are opened automatically when...
Safari archive metadata command execution
Added: 02/24/2006 CVE: CVE-2006-0848 BID: 16736 OSVDB: 23366 Background The Safari web browser supports explicit binding, which allows a file to override the default application for its file type. Safe files are files such as pictures, movies, and archives which are opened automatically when...