Trane comfort Link II DSS services handling remote code execution (CVE-2015-2868)

An exploitable remote code execution vulnerability exists in the Trane ComfortLink II DSS service. An attacker who can connect to the DSS service on the Trane ComfortLink II device can send an overly long request that can overflow a fixed size stack buffer, resulting in arbitrary code execution...

ntp, ntpdate, sntp security update

CentOS Errata and Security Advisory CESA-2016:2583 An update for ntp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

LamaHub 0.0.6.2 - Remote Buffer Overflow

LamaHub 0.0.6.2 - Remote Buffer Overflow Exploit Title: LamaHub-0.0.6.2 BufferOverflow Date: 09/09/09 Exploit Author: Pi3rrot Vendor Homepage: http://lamahub.sourceforge.net/ Software Link: http://ovh.dl.sourceforge.net/sourceforge/lamahub/LamaHub-0.0.6.2.tar.gz Version: 0.0.6.2 Tested on: Debian...

CVE-2016-2481

The mm-video-v4l2 venc component in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 mishandles a buffer count, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSyste...

Samba 3.0.x versions 3.0.2 through 3.0.4 Buffer Overflow

Binary data 9340.prm...

4digits 1.1.4 Local Buffer Overflow

4digits 1.1.4 Local Buffer Overflow Privilege Escalation if setuid/setgid Discoverd by NA , NA at tutanota.com Downloaded and tested upon Kali Linux Vendor has been notified. Description ------------- 4digits is a guess-the-number puzzle game. It's also called Bulls and Cows, and in China people...

Internet Download Manager 6.25 Build 14 - Find file Unicode (SEH)

Internet Download Manager 6.25 Build 14 - Find file Unicode SEH !/usr/bin/python Exploit Title: Internet Download Manager 6.25 Build 14 - 'Find file' SEH Buffer Overflow Unicode Date: 20-3-2016 Exploit Author: Rakan Alotaibi Contact: https://twitter.com/hxteam Software Link:...

DLA-441-1 pcre3 - security update

Bulletin has no description...

SUSE SLED11 / SLES11 Security Update : grub2 (SUSE-SU-2015:2386-1)

This update for grub2 provides the following fixes : A security issues with a bufferoverflow when reading username and password was fixed bsc956631, CVE-2015-8370 Bugs fixed : - Expand list of grub.cfg search path in PV Xen guests for systems installed on btrfs snapshots. bsc946148, bsc952539 - A...

openSUSE Security Update : MozillaThunderbird (openSUSE-2015-877)

The MozillaThunderbird package was updated to fix the following security and non security issues : - update to Thunderbird 38.4.0 bnc952810 - MFSA 2015-116/CVE-2015-4513/CVE-2015-4514 Miscellaneous memory safety hazards - MFSA 2015-122/CVE-2015-7188 bmo1199430 Trailing whitespace in IP address...

Amazon Linux: Security Advisory (ALAS-2015-623)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 201401-18

Gentoo Linux Local Security Checks GLSA 201401-18 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

IKEView.exe R60 - '.elg' Local (SEH)

Exploit Title: IKEView.exe R60 localSEH Exploit Date: 17/09/2015 Exploit Author: cor3sm4sh3r Author email: cor3sm4sh3ratgmail.com Contact: https://in.linkedin.com/pub/shravan-kumar-ceh-oscp/103/414/450 Category: Local + Gr337z: hyp3rlinx for finding the bug + Source:...

IDM 6.20 - Local Buffer Overflow

IDM 6.20 - Local Buffer Overflow !/usr/bin/env python + Author: TUNISIAN CYBER + Exploit Title: IDM v6.20 Local Buffer Overflow + Date: 27-03-2015 + Type: Local Exploits + Tested on: WinXp/Windows 7 Pro + Vendor: http://www.internetdownloadmanager.com/ + Friendly Sites: sec4ever.com + Twitter:...

libext2fs / e2fsprogs buffer overflow

Buffer overflow on block group descriptor information...

UniPDF-1.1-SEH

Exploit Title: UniPDF v1.1 BufferOverflow, SEH overwrite DoS PoC Google Dork: none Date: 01/28/2015 Exploit Author: bonze Email: [email protected] Vendor Homepage: http://unipdf.com/ Software Link: http://unipdf.com/file/unipdf-setup.exe Redirect to: http://unipdf-converter.en.softonic.com/downlo...

UniPDF 1.1 - Crash PoC (SEH overwritten)-vulnerability warning-the black bar safety net

Exploit Title: UniPDF v1. 1 BufferOverflow, SEH overwrite DoS PoC Google Dork: none Vendor Homepage: http://unipdf.com/ Software Link: http://unipdf.com/file/unipdf-setup.exe Redirect to: http://unipdf-converter.en.softonic.com/download Version: 1.1 Tested on: Windows 7 SP1 EN CVE : none Note:...

UniPDF 1.1 - Crash (PoC) (SEH)

UniPDF 1.1 - Crash PoC SEH Exploit Title: UniPDF v1.1 BufferOverflow, SEH overwrite DoS PoC Google Dork: none Date: 01/28/2015 Exploit Author: bonze Email: [email protected] Vendor Homepage: http://unipdf.com/ Software Link: http://unipdf.com/file/unipdf-setup.exe Redirect to:...

UniPDF 1.1 - Crash PoC (SEH overwritten)

UniPDF version 1.1 suffers from a buffer overflow vulnerability. This is a SEH overwrite denial of service proof of concept exploit. Exploit Title: UniPDF v1.1 BufferOverflow, SEH overwrite DoS PoC Google Dork: none Date: 01/28/2015 Exploit Author: bonze Email: email protected Vendor Homepage:...

UniPDF 1.1 - Crash (PoC) (SEH)

Exploit Title: UniPDF v1.1 BufferOverflow, SEH overwrite DoS PoC Google Dork: none Date: 01/28/2015 Exploit Author: bonze Email: [email protected] Vendor Homepage: http://unipdf.com/ Software Link: http://unipdf.com/file/unipdf-setup.exe Redirect to: http://unipdf-converter.en.softonic.com/downlo...