142 matches found
MS Windows Animated Cursor (.ANI) Remote Exploit (eeye patch bypass)
Exploit for unknown platform in category remote exploits ==================================================================== MS Windows Animated Cursor .ANI Remote Exploit eeye patch bypass ==================================================================== Windows Animated Cursor Handling...
ISS PAM.dll ICQ Parser Buffer Overflow
This module exploits a stack buffer overflow in the ISS products that use the iss-pam1.dll ICQ parser Blackice/RealSecure. Successful exploitation will result in arbitrary code execution as LocalSystem. This exploit only requires 1 UDP packet, which can be both spoofed and sent to a broadcast...
CodeRed : The history of one vulnerability
History of one vulnerability It all started with a message from eEye 1 about another discovered buffer overflow vulnerability in IIS. The problem was in the ISAPI filter from Index Service. According to the eEye report, the vulnerability was discovered quite unexpectedly during one of the tests o...
Intel network drivers privilege escalation vulnerability
Overview A buffer overflow vulnerability in Intel PRO Ethernet drivers may allow local attackers to execute code with elevated privileges. Description Intel network adapter drivers are developed and maintained by Intel for Windows and Linux operating systems. A buffer overflow vulnerability exist...
EEYE: Intel Network Adapter Driver Local Privilege Escalation
eEye Research - http://research.eeye.com Intel Network Adapter Driver Local Privilege Escalation Release Date: December 7, 2006 Date Reported: July 10, 2006 Severity: Medium Local Privilege Escalation to Kernel Systems Affected: Windows 2000, XP, 2003, Vista Intel PRO 10/100 - 8.0.27.0 or previou...
EEYE: Adobe Download Manager AOM Stack Buffer Overflow Vulnerability
eEye Research - http://research.eeye.com Adobe Download Manager AOM Stack Buffer Overflow Vulnerability Release Date: December 5, 2006 Date Reported: November 10, 2006 Severity: High Code Execution Systems Affected: Adobe Download Manager 2.1.x and earlier Overview: eEye Digital Security has...
AtomixMP3 <= 2.3 Malformed M3U Buffer Overflow Exploit
Exploit for unknown platform in category local exploits ====================================================== AtomixMP3 November 2006 - Month Of Greg's Media Player Exploits : i'll probably continue it into December Discovered and Reported By: Greg Linares email protected Reported Exploit Date:...
[Full-disclosure] EEYE: Workstation Service NetpManageIPCConnect Buffer Overflow
eEye Research - http://research.eeye.com Workstation Service NetpManageIPCConnect Buffer Overflow Release Date: November 14, 2006 Date Reported: July 25, 2006 Severity: High Remote Code Execution Vendor: Microsoft Systems Affected: Windows 2000 Remote Code Execution Windows XP SP1 Local Privilege...
[EEYEB-20080824] Internet Explorer Compressed Content URL Heap Overflow Vulnerability #2
Internet Explorer Compressed Content URL Heap Overflow Vulnerability 2 http://research.eeye.com/html/advisories/published/AD20060912.html Release Date: September 12, 2006 Date Reported: August 24, 2006 Severity: High Code Execution Systems Affected: Internet Explorer 5 SP4 with MS06-042 - Windows...
IBM eGatherer <= 3.20.0284.0 (ActiveX) Remote Code Execution Exploit
No description provided by source. This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artisti...
D-Link Router UPNP Stack Overflow Denial of Service Exploit (PoC)
Exploit for hardware platform in category dos / poc ================================================================= D-Link Router UPNP Stack Overflow Denial of Service Exploit PoC ================================================================= / routers affected from eEye's advisory. /str0ke...
D-Link Devices - UPNP Stack Overflow Denial of Service (PoC)
/ routers affected from eEye's advisory. /str0ke Routers Affected: DI-524 Rev A DI-524 Rev C DI-524 Rev D DI-604 Rev E DI-624 Rev C DI-624 Rev D DI-784 Rev A EBR-2310 Rev A WBR-1310 Rev A WBR-2310 Rev A / / D-Link Router UPNP DOS PoC Written By: ub3rst4r aka DiGiTALSTR Tested Against: DI-524 Rev....
EEYE: McAfee ePolicy Orchestrator Remote Compromise
McAfee ePolicy Orchestrator Remote Compromise Release Date: July 13, 2006 Severity: High Remote Code Execution Vendor: McAfee Systems Affected: McAfee Common Management EPO Agent versions below version 3.5.5.438 Overview: McAfee ePolicy Orchestrator is the remote security management software for...
[SA21037] McAfee ePolicy Orchestrator Directory Traversal Vulnerability
---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Wanted! Want to work with IDA and BinDiff? Want to write PoC's and Exploits? Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation...
[EEYEB-20060524] Symantec Remote Management Stack Buffer Overflow
Symantec Remote Management Stack Buffer Overflow Release Date: June 12, 2006 Date Reported: May 24, 2006 Severity: High Remote Code Execution Systems Affected: Symantec AntiVirus 10.0.x for Windows all versions Symantec AntiVirus 10.1.x for Windows all versions Symantec Client Security 3.0.x for...
[EEYEB20051011A] - Microsoft Distributed Transaction Coordinator Heap Overflow
Microsoft Distributed Transaction Coordinator Heap Overflow http://www.eeye.com/html/research/advisories/AD20060509a.html Release Date: May 9, 2006 Date Reported: October 11, 2005 Patch Development Time In Days: 210 Severity: High Remote Code Execution Systems Affected: Windows NT 4.0 Windows 200...
[EEYEB20051011B] - Microsoft Distributed Transaction Coordinator Denial of Service
Microsoft Distributed Transaction Coordinator Denial of Service http://www.eeye.com/html/research/advisories/AD20060509b.html Release Date: May 9, 2006 Date Reported: October 11, 2005 Patch Development Time In Days: 210 Severity: Low Denial of Service Systems Affected: Windows NT 4.0 Windows 2000...
[EEYEB-20060227] Juniper Networks SSL-VPN Client Buffer Overflow
Juniper Networks SSL-VPN Client Buffer Overflow Release Date: April 25, 2006 Date Reported: February 27, 2006 Patch Development Time In Days: 57 Days Severity: High Remote Code Execution Vendor: Juniper Networks Software Affected: Juniper SSL-VPN JuniperSetup Control Operating Systems Affected:...
Winny Remote Buffer Overflow Vulnerability
Winny Remote Buffer Overflow Vulnerability Release Date: April 21, 2006 Date Reported: March 22, 2006 Patch Development Time In Days: Severity: High Remote Code Execution Systems Affected: Winny version 2.0 b7.1 and before Systems Affected: Windows NT 4.0 Windows 98 / ME Windows 2000 Windows XP...
[Full-disclosure] EEYE: Temporary workaround for IE createTextRange vulnerability
eEye Digital Security has created a temporary work around for the current Internet Explorer zero day vulnerability within the IE createTextRange functionality. This workaround has been created because currently there is no solution from Microsoft other than the workaround to disable Active...