EUVD-2010-1019

Malware in sbrugna...

PT-2024-19051 · Realtek · Realtek Rtl819X Jungle Sdk

Name of the Vulnerable Software and Affected Versions: Realtek rtl819x Jungle SDK version 3.4.11 Description: A heap-based buffer overflow vulnerability exists in the configuration file mib init value array functionality. A specially crafted .dat file can lead to arbitrary code execution. An...

Realtek rtl819x Jungle SDK Security Vulnerability

The Realtek rtl819x Jungle SDK is a driver for a wireless LAN chip from China-based Realtek Semiconductor Realtek. A security vulnerability exists in Realtek rtl819x Jungle SDK version v3.4.11, which stems from the presence of a heap-based buffer overflow vulnerability, where a specially crafted...

SUSE CVE-2008-4696

Cross-site scripting XSS vulnerability in Opera.dll in Opera before 9.61 allows remote attackers to inject arbitrary web script or HTML via the anchor identifier aka the "optional fragment", which is not properly escaped before storage in the History Search database aka md.dat...

MiniCMS 跨站请求伪造漏洞

MiniCMS is content management system. A cross-site request forgery vulnerability exists in MiniCMS v1.11. An attacker can exploit this vulnerability to delete any local .dat file by clicking a malicious link...

CVE-2021-42771

Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files containing serialized Python objects via directory traversal, leading to code execution...

NCH Quorum 访问控制错误漏洞

NCH Quorum is a teleconference server software. It can turn any computer into a conference call server. An information disclosure vulnerability exists in NCH Quorum, which stems from the fact that the product does not add valid permissions for access to the local .dat file, which could be exploit...

Trend Micro OfficeScan ServerMigrationTool DAT File Parsing Double Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro OfficeScan ServerMigrationTool. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

CVE-2019-14707

An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. The firmware update process is insecure, leading to remote code execution. The attacker can provide arbitrary firmware in a .dat file via a webparam?system&action=set&upgrade URI...

CVE-2014-8390

Multiple buffer overflows in Schneider Electric VAMPSET before 2.2.168 allow local users to gain privileges via malformed disturbance-recording data in a 1 CFG or 2 DAT file...

Buffer overflow

Multiple buffer overflows in Schneider Electric VAMPSET before 2.2.168 allow local users to gain privileges via malformed disturbance-recording data in a 1 CFG or 2 DAT file...

CVE-2010-0994

CVE-2010-0994 concerns the Visualization Library vulnerability in src/vl/vlDAT.cpp (vl::loadDAT, vl::isDAT). It describes boundary/buffer overflow errors in DAT file parsing that allow user‑assisted remote code execution in Visualization Library 2009.08.812. Exploitation requires a crafted DAT fi...

CVE-2010-0994

Multiple buffer overflows in src/vl/vlDAT.cpp in Visualization Library 2009.08.812 allow user-assisted remote attackers to execute arbitrary code via a crafted DAT file, related to the 1 vl::loadDAT and 2 vl::isDAT functions...

McAfee Antivirus ZIP / RAR Scan Evasion

The McAfee antivirus application installed on the remote host is affected by a scan evasion vulnerability due to the virus definitions being out of date. In this case, the DAT file version of the installed antivirus product is prior to 5600. An attacker can exploit this, by embedding malicious co...

Information disclosure

Microsoft Windows Media Player WMP 9.0 through 11 allows user-assisted attackers to cause a denial of service application crash via a malformed 1 MIDI or 2 DAT file, related to "MThd Header Parsing." NOTE: the provenance of this information is unknown; the details are obtained solely from third...

CVE-2007-3423

cgi-bin/cgi-lib/instantmessage.pl in web-app.org WebAPP before 0.9.9.7 uses the From field of an instant message as the beginning of the .dat file name when the 1 imview2 or 2 imview3 function reads a an internal IM, or a message from a b guest or c removed member, which has unknown impact and...

forumv04c.txt

!/usr/bin/perl Affected.scr..: µforum v0.4c Poc.ID........: 08060901 Type..........: Member's passwords are stored in .dat file no protected by a .htaccess file Risk.level....: Medium Vendor.Status.: Unpatched Src.download..: comscripts.com/scripts/php.forum.1568.html Poc.link......:...

Ultimate PHP Board <= 1.9.6 GOLD users.dat Password Decryptor

No description provided by source. !/usr/bin/perl Passwords Decrypter for UPB = 1.9.6 Related advisory: http://www.securityfocus.com/archive/1/402461/30/0/threaded Discovered and Coded by Alberto Trivero Password file is located at: http://www.example.com/upb/db/users.dat /str0ke use Getopt::Std;...