Adobe Flash Player ActionScript Heap Overflow (APSB13-09; CVE-2013-0646)

A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an improper buffer allocation while handling specially crafted SWF files. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...

.NET Framework EncoderParameter integer overflow vulnerability(MS12-025)

No description provided by source. run 'rundll32 dfshim CleanOnlineAppCache' to clear ClickOnce cache require 'msf/core' require 'base64' require 'digest/sha1' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::HttpServer::HTML def initializeinfo =...

Adobe Flash Player SWF File Buffer Overflow (APSB13-04; CVE-2013-0633)

A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an improper buffer allocation while handling specially crafted SWF files. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...

Scientific Linux Security Update : xorg-x11-server on SL5.x i386/x86_64 (20120221)

X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. A flaw was found in the way the X.Org server handled lock files. A local user with access to the system console could use thi...

CVE-2012-0162

Microsoft .NET Framework 4 does not properly allocate buffers, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application aka XBAP or 2 a crafted .NET Framework application, aka ".NET Framework Buffer Allocation Vulnerability."...

Design/Logic Flaw

Microsoft .NET Framework 4 does not properly allocate buffers, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application aka XBAP or 2 a crafted .NET Framework application, aka ".NET Framework Buffer Allocation Vulnerability."...

CVE-2012-0162

CVE-2012-0162 affects Microsoft .NET Framework (4.x) and is due to an undersized buffer allocation in the framework’s handling of XAML Browser Applications (XBAP) graphics components. This can allow remote code execution when a user visits a malicious page or opens a crafted .NET application, wit...

CVE-2012-0162

Microsoft .NET Framework 4 does not properly allocate buffers, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application aka XBAP or 2 a crafted .NET Framework application, aka ".NET Framework Buffer Allocation Vulnerability."...

Adobe Reader and Acrobat TTF MINDEX Code Execution (APSB12-08; CVE-2012-0774)

A remote code execution vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to incorrect memory buffer allocation while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...

Adobe Reader Image Data Buffer Allocation Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Adobe Image...

Adobe Reader TTF Glyf Code Execution (APSB11-24; CVE-2011-2441)

A remote code execution vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to incorrect memory buffer allocation while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...

Apple QuickTime RIFF fmt Chunk Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...

OpenDrive 1.3.141 - Local Password Disclosure

OpenDrive 1.3.141 - Local Password Disclosure / Title: OpenDrive include include int ReadRegistryKey LPBYTE lpBuffer, LPDWORD lpBufferSize, HKEY hKey, LPCTSTR lpszSubKey, LPCTSTR lpszValueName HKEY hKeyLocal; int nType; if RegOpenKeyExhKey, lpszSubKey, 0, KEYREAD, &hKeyLocal == ERRORSUCCESS if...

Microsoft Excel Buffer Allocation Integer Overflow Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability because of an integer-overflow error. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Excel file. Successful exploits can allow attackers to execute arbitrary code with the...

RealNetworks RealPlayer RJMDSections Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required in that a target must open a malicious website or media file. The specific flaw exists within the code responsible for parsing Name Value...

CVE-2010-0295

lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation that occurs for a request, which allows remote attackers to cause a denial of service memory consumption by breaking a request into small pieces that are sent at a slow rate...

Microsoft WINS Buffer Allocation Integer Overflow (MS09-039; CVE-2009-1924)

Windows Internet Naming Service WINS was designed specifically to support NetBIOS over TCP/IP NetBT, and is required for any environment in which users access resources that have NetBIOS names. A remote code execution vulnerability has been discovered in Microsoft WINS. The vulnerability is due t...

Buffer overflow

The Active Template Library ATL in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1 does not properly enforce string termination, which allows remote attackers to obtain sensitive information via a crafted HTML...

Microsoft Office RTF Drawing Object Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of various Microsoft products including Word and Outlook. User interaction is required to exploit this vulnerability in that the target must visit a malicious page, open a malicious e-mail, or open a...

Dropbear SSH Server svr_ses.childpidsize Remote Overflow

According to its banner, the remote host is runnning a version of Dropbear SSH before 0.47. Such versions contain a buffer allocation error that may allow an authenticated user to gain elevated privileges. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid34769;...