1216 matches found
MS 2562937: Update Rollup for ActiveX Kill Bits (2562937)
The remote Windows host is missing a list of kill bits for ActiveX controls that are known to contain vulnerabilities. If these ActiveX controls are ever installed on the remote host, either now or in the future, they would expose it to various security issues. Note that the affected controls are...
DEC Alpha Linux <= 3.0 Local Root Exploit
Exploit for linux platform in category local exploits / DEC Alpha Linux include include include include include include include include include include define SYSosfwait4 7 define SOCKOFFSET 552 / Offset of skdestruct fptr in sock struct, change for your kernel / define PAGESIZE 8192 / DEC alpha...
backorifice-brute NSE Script
Performs brute force password auditing against the BackOrifice service. The backorifice-brute.ports script argument is mandatory it specifies ports to run the script against. Script Arguments backorifice-brute.ports mandatory List of UDP ports to run the script against separated with "," ex...
Microsoft Excel - Axis Properties Record Parsing Buffer Overflow (PoC) (MS11-02)
""" This is a PoC for MS11-021/CVE-2011-0978 Microsoft Office Excel Axis Properties Record Parsing Buffer Overflow w3bd3vilatgmaildot.com twitter.com/w3bd3vil Modify bits at file location 0x39E7 0:000:x86 r eax=04dd6380 ebx=ffff5554 ecx=04ab5108 edx=00000000 esi=04ab4800 edi=ffff5554 eip=2f36a2fd...
DEBIAN-CVE-2011-1167
Heap-based buffer overflow in the thunder aka ThunderScan decoder in tifthunder.c in LibTIFF 3.9.4 and earlier allows remote attackers to execute arbitrary code via crafted THUNDER2BITDELTAS data in a .tiff file that has an unexpected BitsPerSample value...
CentOS Update for samba CESA-2011:0305 centos4 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
libsmbclient, samba security update
CentOS Errata and Security Advisory CESA-2011:0305 Updated samba packages that fix one security issue are now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVS...
IBM OmniFind Privilege Escalation Vulnerability
Exploit for windows platform in category local exploits =============================================== IBM OmniFind Privilege Escalation Vulnerability =============================================== Privilege escalation in two applications CVE-2010-3895 Root SUID bits are set for the application...
IBM OmniFind - Local Privilege Escalation
Privilege escalation in two applications CVE-2010-3895 Root SUID bits are set for the applications »esRunCommand« and »estaskwrapper«. ------------------------------------------------------------------------- -rwsr-xr-x 1 root users ... /opt/IBM/es/bin/esRunCommand -rwsr-xr-x 1 root users...
IBM OmniFind - Local Privilege Escalation
IBM OmniFind - Local Privilege Escalation Privilege escalation in two applications CVE-2010-3895 Root SUID bits are set for the applications »esRunCommand« and »estaskwrapper«. ------------------------------------------------------------------------- -rwsr-xr-x 1 root users...
Quick N Easy FTP Server 3.2 Denial Of Service
DCA-0007 Software - Quick 'n Easy FTP Server Vendor Product Description - Quick 'n Easy FTP Server Professional is a multi threaded FTP server for Windows 98/NT/XP and Vista32 bits that can be easily setup even by inexperienced users. New users can be easily created by a wizard which is guiding y...
libpng: Interlaced Images Information Disclosure Vulnerability
libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via "out-of-bounds pixels" in t...
win32/xp sp3 (SPA) URLDownloadToFileA + CreateProcessA + ExitProcess
Exploit for win32 platform in category shellcode ==================================================================== win32/xp sp3 SPA URLDownloadToFileA + CreateProcessA + ExitProcess ==================================================================== !/usr/bin/perl c0d3d by r0i aka d0lc3 Explo...
Microsoft Security Bulletin MS10-034 - Critical Cumulative Security Update of ActiveX Kill Bits (980195)
Microsoft Security Bulletin MS10-034 - Critical Cumulative Security Update of ActiveX Kill Bits 980195 Published: June 08, 2010 Version: 1.0 General Information Executive Summary This security update addresses two privately reported vulnerabilities for Microsoft software. This security update is...
Mozilla Firefox libpr0n imgContainer Bits-Per-Pixel Change Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the libpr0n...
Mozilla Firefox 3.6 libpr0n库远程代码执行漏洞
CVE ID: CVE-2010-0164 Firefox是一款流行的开源WEB浏览器。 Firefox中负责处理图形缓存和动画的libpr0n库处理通过multipart/x-mixed-replace mime从服务器所接收的动画的方式存在远程代码执行漏洞。在bits-per-pixel发生了更改的情况下,应用会释放指针然后重新使用已释放的指针,这可能导致可利用的情况。 Mozilla Firefox 3.6 厂商补丁: Mozilla ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.mozilla.org/...
Mandriva Update for msec MDVA-2010:078 (msec)
Check for the Version of msec OpenVAS Vulnerability Test Mandriva Update for msec MDVA-2010:078 msec Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...
Mandriva Update for msec MDVA-2010:078 (msec)
Check for the Version of msec OpenVAS Vulnerability Test Mandriva Update for msec MDVA-2010:078 msec Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...
Mambo Component com_acnews [id] SQL Injection Vulnerability
No description provided by source. Author: Zero Bits & Xzit3 Team: Ro0T-MaFia Member's: Zero Bits, CMD, Jeferx, Xzit3, XP3RM4 & Jeferx Date: 15/02/2010 Contact: [email protected] - [email protected] Country: Venezuela - Mexico Vulnerability's: + SQL Injection: Error: You have an error...
Mambo Component com_acnews - id SQL Injection
Mambo Component comacnews - id SQL Injection Mambo Component comacnews id | SQL Injection Author: Zero Bits & Xzit3 Team: Ro0T-MaFia Member's: Zero Bits, CMD, Jeferx, Xzit3, XP3RM4 & Jeferx Date: 15/02/2010 Contact: [email protected] - [email protected] Country: Venezuela - Mexico...