RGui 3.4.4 - Local Buffer Overflow

RGui 3.4.4 - Local Buffer Overflow !/usr/bin/python Exploit Author: bzyo CVE: CVE-2018-9060 Twitter: @bzyo Exploit Title: R 3.4.4 - Local Buffer Overflow Date: 03-27-2018 Vulnerable Software: R 3.4.4 Vendor Homepage: https://www.r-project.org/ Version: 3.4.4 Software Link:...

Reaper 5.78 - Local Buffer Overflow

Exploit Title: Reaper 5.78 - Local Buffer Overflow Exploit Author: bzyo CVE: CVE-2018-9131 Date: 2018-03-30 Vulnerable Software: Reaper 5.78 Vendor Homepage: https://www.reaper.fm/ Version: 5.78 Software Link: https://www.reaper.fm/download.php Tested On: Windows 7 x86 lots of bad chars, use...

GoldWave 5.70 - Local Buffer Overflow (SEH Unicode)

!/usr/bin/python Exploit Author: bzyo Twitter: @bzyo Exploit Title: GoldWave 5.70 - Local Buffer Overflow SEH Unicode Date: 04-05-2018 Vulnerable Software: GoldWave 5.70 Vendor Homepage: https://www.goldwave.com/ Version: 5.70 Software Link: http://goldwave.com//downloads/gwave570.exe Tested...

Dup Scout Enterprise 10.5.12 Share Username Buffer Overflow

!/usr/bin/python Exploit Author: bzyo Twitter: @bzyo Exploit Title: Dup Scout Enterprise 10.5.12 - Local Buffer Overflow Date: 02-22-2018 Vulnerable Software: Dup Scout Enterprise v10.5.12 Vendor Homepage: http://www.dupscout.com Version: 10.5.12 Software Link:...

PHP Scripts Mall Kickstarter Clone Script SQL Injection Vulnerability

PHP Scripts Mall Kickstarter Clone Script is a set of PHP based scripts for crowdfunding websites by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Kickstarter Clone Script version 2.0. A remote attacker can exploit the vulnerability by sending the 'projid'...

Apache OpenOffice < 4.1.4 Multiple Vulnerabilities

The version of Apache OpenOffice installed on the remote host is a version prior to 4.1.4. It is, therefore, affected by multiple Out-of-Bounds vulnerabilities and a file disclosure vulnerability in Calc/Writer. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid104351;...

FreeBSD : Apache OpenOffice -- multiple vulnerabilities (27229c67-b8ff-11e7-9f79-ac9e174be3af)

The Apache Openofffice project reports : CVE-2017-3157: Arbitrary file disclosure in Calc and Writer By exploiting the way OpenOffice renders embedded objects, an attacker could craft a document that allows reading in a file from the user's filesystem. Information could be retrieved by the attack...

Easy MPEG/AVI/DIVX/WMV/RM To DVD Buffer Overflow

!/usr/bin/python Exploit Title: Easy MPEG/AVI/DIVX/WMV/RM to DVD - 'Enter User Name' Field Buffer Overflow SEH Date: 05-10-2017 Exploit Author: Venkat Rajgor Vendor Homepage: http://www.divxtodvd.net/ Software Link: http://www.divxtodvd.net/easyvideotodvd.exe Tested On: Windows 7 x64 To reproduce...

DiskBoss Enterprise 8.4.16 - Import Command Buffer Overflow Exploit

Exploit for windows platform in category local exploits !/usr/bin/python ======================================================================================================================== Exploit Author: Touhid M.Shaikh Exploit Title: DiskBoss Enterprise v8.4.16 "Import Command" Buffer...

DiskBoss Enterprise 8.4.16 - &#039;Import Command&#039; Local Buffer Overflow

!/usr/bin/python ======================================================================================================================== Exploit Author: Touhid M.Shaikh Exploit Title: DiskBoss Enterprise v8.4.16 "Import Command" Buffer Overflow Date: 29-09-2017 Website: www.touhidshaikh.com...

SUSE SLED12 Security Update : libreoffice (SUSE-SU-2017:2315-1)

LibreOffice was updated to version 5.3.5.2, bringing new features and enhancements: Writer : - New 'Go to Page' dialog for quickly jumping to another page. - Support for 'Table Styles'. - New drawing tools were added. - Improvements in the toolbar. - Borderless padding is displayed. Calc : - New...

DEBIAN-CVE-2017-9260

The TDStretchSSE::calcCrossCorr function in source/SoundTouch/sseoptimized.cpp in SoundTouch 1.9.2 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted wav file...

SUSE-SU-2017:1821-1 Security update for libreoffice

LibreOffice was updated to version 5.3.3.2, bringing new features and enhancements: Writer: - New 'Go to Page' dialog for quickly jumping to another page. - Support for 'Table Styles'. - New drawing tools were added. - Improvements in the toolbar. - Borderless padding is displayed. Calc: - New...

DiskBoss 8.0.16 - Input Directory Local Buffer Overflow

DiskBoss 8.0.16 - Input Directory Local Buffer Overflow !/usr/bin/python Exploit Title: DiskBoss v8.0.16 - Local Buffer Overflow Date: 11-06-2017 Exploit Author: @abatchy17 -- www.abatchy.com Vulnerable Software: DiskBoss v8.0.16 Freeware, Pro and Ultimate Vendor Homepage:...

Debian DLA-910-1 : libreoffice security update

CVE-2017-3157 Ben Hayak discovered that objects embedded in Writer and Calc documents may result in information disclosure. Please see https://www.libreoffice.org/about-us/security/advisories/cve-2017-3157 / for additional information. CVE-2017-7870 An out-of-bounds write caused by a heap-based...

Oracle Linux 6 : libreoffice (ELSA-2017-0979)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2017-0979 advisory. 1:4.3.7.2-2.0.1.1 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile [email protected] - Build with...

libreoffice: Arbitrary file disclosure in Calc and Writer

It was found that LibreOffice disclosed contents of a file specified in an embedded object's preview. An attacker could potentially use this flaw to expose details of a system running LibreOffice as an online service via a crafted document...

autocorr, libreoffice security update

CentOS Errata and Security Advisory CESA-2017:0914 An update for libreoffice is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

Oracle Linux 7 : libreoffice (ELSA-2017-0914)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2017-0914 advisory. - Resolves: rhbz1435534 CVE-2017-3157 Arbitrary file disclosure in Calc and Writer - Resolves: rhbz1353839 CVE-2016-4324 dereference of invalid STL iterator on...

libreoffice: Arbitrary file disclosure in Calc and Writer

It was found that LibreOffice disclosed contents of a file specified in an embedded object's preview. An attacker could potentially use this flaw to expose details of a system running LibreOffice as an online service via a crafted document...