28 matches found
EUVD-2017-18474
Malware in sbrugna...
EUVD-2017-18488
Malware in sbrugna...
EUVD-2022-47868
Malicious code in bioql PyPI...
CVE-2022-44939
Efs Software Easy Chat Server Version 3.1 was discovered to contain a DLL hijacking vulnerability via the component TextShaping.dll. This vulnerability allows attackers to execute arbitrary code via a crafted DLL...
CVE-2022-44939
Efs Software Easy Chat Server Version 3.1 was discovered to contain a DLL hijacking vulnerability via the component TextShaping.dll. This vulnerability allows attackers to execute arbitrary code via a crafted DLL...
Design/Logic Flaw
Efs Software Easy Chat Server Version 3.1 was discovered to contain a DLL hijacking vulnerability via the component TextShaping.dll. This vulnerability allows attackers to execute arbitrary code via a crafted DLL...
CVE-2022-44939
Efs Software Easy Chat Server Version 3.1 was discovered to contain a DLL hijacking vulnerability via the component TextShaping.dll. This vulnerability allows attackers to execute arbitrary code via a crafted DLL...
CVE-2022-44939
Efs Software Easy Chat Server Version 3.1 was discovered to contain a DLL hijacking vulnerability via the component TextShaping.dll. This vulnerability allows attackers to execute arbitrary code via a crafted DLL...
CVE-2022-44939
CVE-2022-44939 affects Efs Software Easy Chat Server 3.1; a DLL hijacking flaw in TextShaping.dll allows local attackers to execute arbitrary code via a crafted DLL. Impact: full code execution with high impact. Mitigation/remediation: as per PT-2023-14570, restrict access to TextShaping.dll or a...
PT-2023-14570 · Efs · Efs Software Easy Chat Server
Name of the Vulnerable Software and Affected Versions: Efs Software Easy Chat Server version 3.1 Description: The issue allows attackers to execute arbitrary code via a crafted DLL, exploiting a DLL hijacking vulnerability through the TextShaping.dll component. Recommendations: For Efs Software...
EFS Software Easy File Sharing Web Server sendemail.ghp Stack Buffer Overflow
A buffer overflow vulnerability is found in a function responsible for processing HTTP POST requests in the sendemail.ghp endpoint of EFS Software Easy File Sharing Web Server. The vulnerability is due to a failure on part of the function to properly perform boundary checking on user input. A...
Default credentials
register.ghp in EFS Software Easy Chat Server versions 2.0 to 3.1 allows remote attackers to discover passwords by sending the username parameter in conjunction with an empty password parameter, and reading the HTML source code of the response...
CVE-2017-9557
register.ghp in EFS Software Easy Chat Server versions 2.0 to 3.1 allows remote attackers to discover passwords by sending the username parameter in conjunction with an empty password parameter, and reading the HTML source code of the response...
Design/Logic Flaw
register.ghp in EFS Software Easy Chat Server versions 2.0 to 3.1 allows remote attackers to reset arbitrary passwords via a crafted POST request to registresult.htm...
Stack overflow
There is a remote stack-based buffer overflow SEH in register.ghp in EFS Software Easy Chat Server versions 2.0 to 3.1. By sending an overly long username string to registresult.htm for registering the user, an attacker may be able to execute arbitrary code...
CVE-2017-9544
CVE-2017-9544 affects EFS Software Easy Chat Server, versions 2.0–3.1. The issue is a remote stack-based/SEH buffer overflow in register.ghp when a long username is sent to registresult.htm during user registration, enabling arbitrary code execution. Public references include an exploit example i...
Easy File Sharing Persistent Cross Site Scripting
I saw a posting a month or 2 ago for a BOF in an FTP server belonging to EFS Software here: http://www.securityfocus.com/bid/19243 At first there was no additional details provided and I hunted up and down before finding it after some fuzzing stack smash in password. While on the hunt, I found on...
Exploit EFS Software Easy Chat Server 2.2
No description provided by source. !/usr/bin/ruby Author: John Babio Tested on: Windows XP Sp3 Eng require 'net/http' require 'uri' require 'socket' jmp = \xeb\x06\x90\x90 ppr = \xa2\xb9\01\x10 SSLEAY32.dll pop ebx, pop ebp, ret win32exec - EXITFUNC=seh CMD=calc Size=160 Encoder=PexFnstenvSub...
Easy File Sharing Web Server 6.8 - Stack Buffer Overflow
No description provided by source. Exploit Title: Easy File Sharing Web Server 6.8 stack buffer overflow Date: 10 May 2014 Exploit Author: superkojiman - http://www.techorganic.com Vendor Homepage: http://www.efssoft.com Software Link: http://www.sharing-file.com/efssetup.exe Version: 6.8 Tested...
EFS Easy Chat Server - Authentication Request Handling Buffer Overflow (Metasploit)
$Id: efseasychatserverusername.rb 9966 2010-08-06 20:12:51Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...