Lucene search
K

25 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.48 views

IBM Domino Web Access Upload Module - SEH Overwrite Exploit

No description provided by source. !-- written by e.b. IBM Domino Web Access Upload Module Universal BoF Exploit CVE-2007-4474 Tested on Windows XP SP2fully patched English, IE6 and IE7 dwa7w.dll version 7.0.34.1 inotes6.dll version 6.0.40.0 and version 6.0.48.0 inotes6w.dll version 6.0.48.0 Than...

9.3CVSS0.6AI score0.44184EPSS
Exploits25
Circl
Circl
added 2010/09/20 12:0 a.m.9 views

CVE-2007-4474

creationtimestamp| type| source ---|---|--- 2010-09-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16502 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/ibmlotusdominodwauploadmodule.rb 2025-02-06...

9.3CVSS5.7AI score0.44184EPSS
Exploits25References2
Exploit DB
Exploit DB
added 2010/09/20 12:0 a.m.42 views

IBM Lotus Domino Web Access Upload Module - Remote Buffer Overflow (Metasploit)

$Id: ibmlotusdominodwauploadmodule.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

9.3CVSS7AI score0.44184EPSS
Exploits25
Check Point Advisories
Check Point Advisories
added 2010/04/18 12:0 a.m.47 views

IBM Lotus Domino Web Access ActiveX Controls Buffer Overflow (CVE-2007-4474)

IBM Lotus Domino Web Access is a Web browser-based client platform that provides functionality similar to that of IBM Lotus Notes. With Lotus Domino Web Access, the user can send encrypted rich text e-mails, schedule meetings, manage tasks, collaborate with colleagues and so on. There exists a...

9.3CVSS7.5AI score0.44184EPSS
Exploits25
Packet Storm
Packet Storm
added 2009/11/26 12:0 a.m.33 views

IBM Lotus Domino Web Access Upload Module Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'IBM Lotus Domino...

9.3CVSS1.1AI score0.44184EPSS
Exploits25
Exploit DB
Exploit DB
added 2008/02/13 12:0 a.m.42 views

IBM Domino Web Access Upload Module - Overwrite (SEH)

IBM Domino Web Access Upload Module Universal BoF Exploit function Check // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u4949%u4949" +...

9.3CVSS7AI score0.44184EPSS
Exploits25
0day.today
0day.today
added 2008/02/13 12:0 a.m.45 views

IBM Domino Web Access Upload Module SEH Overwrite Exploit

Exploit for unknown platform in category remote exploits ========================================================= IBM Domino Web Access Upload Module SEH Overwrite Exploit ========================================================= IBM Domino Web Access Upload Module Universal BoF Exploit function...

7.1AI score0.44184EPSS
Exploits25
seebug.org
seebug.org
added 2008/01/06 12:0 a.m.32 views

IBM Domino Web Access Upload Module inotes6.dll BoF Exploit

No description provided by source. !-- written by e.b. IBM Domino Web Access Upload Module inotes6.dll SEH Overwrite Exploit Bad chars: 0x80+ CVE-2007-4474 Tested on Windows XP SP2fully patched English, IE6, inotes6.dll version 6.0.40.0 and version 6.0.48.0...

9.3CVSS0.4AI score0.44184EPSS
Exploits25
securityvulns
securityvulns
added 2008/01/02 12:0 a.m.48 views

[Full-disclosure] IBM Domino Web Access Upload Module dwa7w.dll SEH Overwrite Exploit

This one is unicode based, so is inotes6w. Exploitation for inotes6w is probably the same just with a different offset. Code is inline and attached. --------------------- !-- written by e.b. IBM Domino Web Access Upload Module dwa7w.dll SEH Overwrite Exploit CVE-2007-4474 Tested on Windows XP...

9.3CVSS0.4AI score0.44184EPSS
Exploits25
securityvulns
securityvulns
added 2008/01/02 12:0 a.m.63 views

[Full-disclosure] IBM Domino Web Access inotes6.dll SEH Overwrite Exploit

My first attempt at an SEH overwrite exploit. Anyhow, I first posted about this issue regarding version 7 of this control, Will Dormann of the CERT/CC discovered versions 6 and 6.5 are vulnerable too, see http://www.kb.cert.org/vuls/id/963889. Dwa7w.dll and inotes6w.dll are unicode, thats my next...

9.3CVSS0.5AI score0.44184EPSS
Exploits25
securityvulns
securityvulns
added 2008/01/02 12:0 a.m.360 views

[Full-disclosure] IBM Domino Web Access Upload Module inotes6w.dll SEH Overwrite Exploit

This one is the same offset as dwa7w and the same class id as inotes6. Basically inotes6 and inotes6w share the same class id, except that inotes6w is unicode. dwa7w is unicode and has a different class id. Code is inline, I would attach it except for the fact that I set off way to many av scanne...

9.3CVSS0.4AI score0.44184EPSS
Exploits25
seebug.org
seebug.org
added 2007/12/31 12:0 a.m.27 views

IBM Domino Web Access Upload Module SEH Overwrite Exploit

No description provided by source. !-- written by e.b. IBM Domino Web Access Upload Module inotes6.dll SEH Overwrite Exploit Bad chars: 0x80+ CVE-2007-4474 Tested on Windows XP SP2fully patched English, IE6, inotes6.dll version 6.0.40.0 and version 6.0.48.0...

9.3CVSS0.4AI score0.44184EPSS
Exploits25
Saint
Saint
added 2007/12/31 12:0 a.m.23 views

Lotus Domino Web Access ActiveX control dwa7w.dll buffer overflow

Added: 12/31/2007 CVE: CVE-2007-4474 BID: 26972 OSVDB: 40954 Background Lotus Domino Web Access provides capabilities similar to those of the Lotus Notes client, delivered through a web browser. Problem A buffer overflow vulnerability in the Lotus Domino Web Access ActiveX control in the dwa7w.dl...

9.3CVSS6.8AI score0.44184EPSS
Exploits25
Packet Storm
Packet Storm
added 2007/12/31 12:0 a.m.37 views

inotes6-overwrite.txt

My first attempt at an SEH overwrite exploit. Anyhow, I first posted about this issue regarding version 7 of this control, Will Dormann of the CERT/CC discovered versions 6 and 6.5 are vulnerable too, see http://www.kb.cert.org/vuls/id/963889. Dwa7w.dll and inotes6w.dll are unicode, thats my next...

9.3CVSS6.3AI score0.44184EPSS
Exploits25
Packet Storm
Packet Storm
added 2007/12/31 12:0 a.m.38 views

inotes6w2-overwrite.txt

This one is the same offset as dwa7w and the same class id as inotes6. Basically inotes6 and inotes6w share the same class id, except that inotes6w is unicode. dwa7w is unicode and has a different class id. Code is inline, I would attach it except for the fact that I set off way to many av scanne...

9.3CVSS6.3AI score0.44184EPSS
Exploits25
Saint
Saint
added 2007/12/31 12:0 a.m.24 views

Lotus Domino Web Access ActiveX control dwa7w.dll buffer overflow

Added: 12/31/2007 CVE: CVE-2007-4474 BID: 26972 OSVDB: 40954 Background Lotus Domino Web Access provides capabilities similar to those of the Lotus Notes client, delivered through a web browser. Problem A buffer overflow vulnerability in the Lotus Domino Web Access ActiveX control in the dwa7w.dl...

9.3CVSS6.8AI score0.44184EPSS
Exploits25
Saint
Saint
added 2007/12/31 12:0 a.m.33 views

Lotus Domino Web Access ActiveX control dwa7w.dll buffer overflow

Added: 12/31/2007 CVE: CVE-2007-4474 BID: 26972 OSVDB: 40954 Background Lotus Domino Web Access provides capabilities similar to those of the Lotus Notes client, delivered through a web browser. Problem A buffer overflow vulnerability in the Lotus Domino Web Access ActiveX control in the dwa7w.dl...

9.3CVSS6.8AI score0.44184EPSS
Exploits25
0day.today
0day.today
added 2007/12/30 12:0 a.m.54 views

IBM Domino Web Access Upload Module inotes6.dll BoF Exploit

Exploit for unknown platform in category remote exploits =========================================================== IBM Domino Web Access Upload Module inotes6.dll BoF Exploit =========================================================== IBM Domino Web Access Upload Module inotes6.dll SEH Overwrit...

7.1AI score0.44184EPSS
Exploits25
exploitpack
exploitpack
added 2007/12/30 12:0 a.m.24 views

IBM Domino Web Access 7.0 Upload Module - inotes6.dll Remote Buffer Overflow

IBM Domino Web Access 7.0 Upload Module - inotes6.dll Remote Buffer Overflow IBM Domino Web Access Upload Module inotes6.dll SEH Overwrite Exploit function Check var buf = 'A'; while buf.length = 3119 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378...

9.3CVSS1.2AI score0.44184EPSS
Exploits25
Exploit DB
Exploit DB
added 2007/12/30 12:0 a.m.43 views

IBM Domino Web Access 7.0 Upload Module - 'inotes6.dll' Remote Buffer Overflow

IBM Domino Web Access Upload Module inotes6.dll SEH Overwrite Exploit function Check var buf = 'A'; while buf.length = 3119 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 =...

9.3CVSS6.4AI score0.44184EPSS
Exploits25
Rows per page
Query Builder