5 matches found
Chilkat Crypt ActiveX WriteFile Unsafe Method
No description provided by source. $Id: chilkatcryptwritefile.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...
Detection of Dangerous ActiveX Control
This script will list all the vulnerable activex controls installed on the remote windows machine with references and cause. OpenVAS Vulnerability Test $Id: secpoddangerousactivexctrl.nasl 5672 2017-03-22 08:15:28Z teissa $ Detection of Dangerous ActiveX Control Authors: Sharath S Copyright c 200...
CVE-2008-5002
CVE-2008-5002 affects Chilkat Crypt ActiveX Control (ChilkatCrypt2.dll 4.3.2.1). The Insecure method vulnerability allows remote creation/overwrite of arbitrary files via the WriteFile method, with potential code execution through startup-folder DLLs or hcp:// URLs. Public PoCs/exploits exist (e....
University of Washington IMAP 'tmail'和'dmail'本地缓冲区溢出漏洞
BUGTRAQ ID: 32072 CNCAN ID:CNCAN-2008110404 University of Washington IMAP是一款IMAP协议实现。 University of Washington IMAP包含的'tmail'和'dmail'存在缓冲区溢出,本地攻击者可以利用漏洞以应用程序权限执行任意指令。 'tmail'和'dmail'应用程序在从命令行中处理文件夹扩展参数时缺少正确的边界检查,通过提交超长文件夹名可触发基于栈的缓冲区溢出。tmail可允许以root用户权限执行任意指令。 有问题代码如下: tmail.cchar getusername char...
CVE-2008-5002
creationtimestamp| type| source ---|---|--- 2008-11-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6963 2010-09-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16518 2018-05-29 15:50:33+00:00| seen|...