CVE-2012-1016

CVE-2012-1016 affects MIT Kerberos 5 PKINIT in the KDC, where pkinit_server_return_padata may mis-handle an agility KDF check under crafted Draft 9 requests, enabling a remote attacker to trigger a NULL pointer dereference and daemon crash (DoS). Affected: krb5 PKINIT prior to version 1.10.4. Mit...

Accidental XSRF and DoS consumption-of-space issue

We experienced an unusual growth of our nonspaced attachments that appears to be a DoS vunerability both in an accidental way with a workaround and intentional not easily worked around. This is under Confluence 4.0, but appears to probably apply to 4.3.1 as well. It appears the growing nonspaced...

CVE-2010-5089

SilverStripe before 2.4.2 does not properly restrict access to pages in draft mode, which allows remote attackers to obtain sensitive information...

Information disclosure

SilverStripe before 2.4.2 does not properly restrict access to pages in draft mode, which allows remote attackers to obtain sensitive information...

DEBIAN-CVE-2012-3385

WordPress before 3.4.1 does not properly restrict access to post contents such as private or draft posts, which allows remote authors or contributors to obtain sensitive information via unknown vectors...

CVE-2012-3385

WordPress before 3.4.1 does not properly restrict access to post contents such as private or draft posts, which allows remote authors or contributors to obtain sensitive information via unknown vectors...

Final Draft Script File Parsing Multiple Buffer Overflow Vulnerabilities

This host is installed with Final Draft and is prone to multiple buffer overflow vulnerabilities. OpenVAS Vulnerability Test $Id: gbfinaldraftfileparsingmultbofvuln.nasl 5958 2017-04-17 09:02:19Z teissa $ Final Draft Script File Parsing Multiple Buffer Overflow Vulnerabilities Authors: Rachana...

Final Draft Script File Parsing Multiple Buffer Overflow Vulnerabilities

Final Draft is prone to multiple buffer overflow vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-5059

Stack-based buffer overflow in Final Draft 8 before 8.02 allows remote attackers to execute arbitrary code via a crafted SmartType element, a different vulnerability than CVE-2011-5002. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informati...

Stack overflow

Stack-based buffer overflow in Final Draft 8 before 8.02 allows remote attackers to execute arbitrary code via a crafted SmartType element, a different vulnerability than CVE-2011-5002. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informati...

CVE-2011-5059

CVE-2011-5059 describes a stack-based buffer overflow in Final Draft 8 before 8.02 triggered by a crafted SmartType element, enabling remote code execution. Affected product/version: Final Draft 8 prior to 8.02. Root cause: overflow in parsing the SmartType element (noted as a separate vulnerabil...

CVE-2011-5059

Stack-based buffer overflow in Final Draft 8 before 8.02 allows remote attackers to execute arbitrary code via a crafted SmartType element, a different vulnerability than CVE-2011-5002. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informati...

CVE-2011-5002

Multiple stack-based buffer overflows in Final Draft 8 before 8.02 allow remote attackers to execute arbitrary code via a .fdx or .fdxt file with long 1 Word, 2 Transition, 3 Location, 4 Extension, 5 SceneIntro, 6 TimeOfDay, and 7 Character elements...

Stack overflow

Multiple stack-based buffer overflows in Final Draft 8 before 8.02 allow remote attackers to execute arbitrary code via a .fdx or .fdxt file with long 1 Word, 2 Transition, 3 Location, 4 Extension, 5 SceneIntro, 6 TimeOfDay, and 7 Character elements...

CVE-2011-5002

CVE-2011-5002 affects Final Draft 8 prior to 8.02. Multiple stack-based buffer overflows occur when parsing .fdx/.fdxt files containing long values in Word, Transition, Location, Extension, SceneIntro, TimeOfDay, or Character elements, enabling remote arbitrary code execution. Affected products i...

CVE-2011-5002

Multiple stack-based buffer overflows in Final Draft 8 before 8.02 allow remote attackers to execute arbitrary code via a .fdx or .fdxt file with long 1 Word, 2 Transition, 3 Location, 4 Extension, 5 SceneIntro, 6 TimeOfDay, and 7 Character elements...

KLA10157 ACE vulnerability in Final Draft

A buffer overflow was found in Final Draft. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely a via specially designed file. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...

Security-Assessment.com Release: Hacking Hollywood Slides, Advisories and Exploits

, , . .' '. ', . , '. , ., , / / / ==/ / / / / / / | Y Y / /| / /||| / / /.-. / /:wq x.0 '=.|w|.=' ='"=. presents.. Hacking Hollywood: The Slides, The Bugs and The Exploits. +------------+ |Introduction| +------------+ At Kiwicon V https://www.kiwicon.org and Ruxcon 2011 http://www.ruxcon.org.au,...

Final Draft 8 Multiple Stack Buffer Overflows

Exploit for windows platform in category local exploits Name : Final Draft 8 Multiple Stack Buffer Overflows Vendor Website : http://www.finaldraft.com/index.php Date Released : 29/11/2011 Affected Software : Final Draft in in in in in in in By crafting a file that contains more than 10,032...

Final Draft 8 - Multiple Stack Buffer Overflows (Metasploit)

Name : Final Draft 8 Multiple Stack Buffer Overflows Vendor Website : http://www.finaldraft.com/index.php Date Released : 29/11/2011 Affected Software : Final Draft in in in in in in in By crafting a file that contains more than 10,032 characters in one of the above fields, the Final Draft 8...