8 matches found
CVE-2012-0266
creationtimestamp| type| source ---|---|--- 2012-10-10 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/21841 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/ntractivexcheckbof.rb 2025-02-06 03:13:40+00:00|...
NTR - ActiveX Control 'Check()' Method Buffer Overflow (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 HttpClients::IE, :uaminver = "6.0",...
Secunia Research: NTR ActiveX Control Four Buffer Overflow Vulnerabilities
====================================================================== Secunia Research 11/01/2012 - NTR ActiveX Control Four Buffer Overflow Vulnerabilities - ====================================================================== Table of Contents Affected...
NTR ActiveX Control < 2.0.4.8 Multiple Vulnerabilities
At least one version of the NTR ActiveX control installed on the remote Windows host is earlier than 2.0.4.8. As such, it reportedly is affected by the following vulnerabilities : - Four stack-based buffer overflows exist involving the 'bstrUrl' parameter of the 'StartModule' method, the...
CVE-2012-0266
Multiple stack-based buffer overflows in the NTR ActiveX control before 2.0.4.8 allow remote attackers to execute arbitrary code via 1 a long bstrUrl parameter to the StartModule method, 2 a long bstrParams parameter to the Check method, a long bstrUrl parameter to the 3 Download or 4...
DSquare Exploit Pack: D2SEC_NTR
Name| d2secntr ---|--- CVE| CVE-2012-0266 Exploit Pack| D2ExploitPack Description| NTR ActiveX Buffer Overflow Vulnerability Notes|...
CVE-2012-0266
CVE-2012-0266 : The NTR ActiveX control (pre-2.0.4.8) is affected by multiple stack-based buffer overflows. The vulnerability allows remote code execution via long inputs to: StartModule(bstrUrl), Check(bstrParams), and Download/DownloadModule (bstrUrl) during .ntr pathname or URL construction. E...
CVE-2012-0266
Multiple stack-based buffer overflows in the NTR ActiveX control before 2.0.4.8 allow remote attackers to execute arbitrary code via 1 a long bstrUrl parameter to the StartModule method, 2 a long bstrParams parameter to the Check method, a long bstrUrl parameter to the 3 Download or 4...