Microsoft Windows Media Encoder 9 - 'wmex.dll' ActiveX Buffer Overflow (MS08-053) (Metasploit)

$Id: ms08053mediaencoder.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

VulnCheck KEV: CVE-2008-3008

Stack-based buffer overflow in the WMEncProfileManager ActiveX control in wmex.dll in Microsoft Windows Media Encoder 9 Series allows remote attackers to execute arbitrary code via a long first argument to the GetDetailsString method, aka "Windows Media Encoder Buffer Overrun Vulnerability."...

JDK unspecified vulnerability in ImageIO component

Unspecified vulnerability in the ImageIO component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and 1.3.127 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the Marc...

IDEAL Administration 2010 10.2 - Local Buffer Overflow

!/usr/bin/env python IDEAL Administration 2010 v10.2 Local Buffer Overflow Exploit Found By: DrIDE Usage: Migrate - Open Migration Project - Bind Shell Download: www.pointdev.com Tested On: Windows XPSP3 windows/shellbindtcp - 696 bytes Encoder: x86/alphamixed EXITFUNC=seh, LPORT=4444 sc =...

Only strings are encoded

The XML encoder only encodes strings. This could make Confluence return non encoded content. This issue is rated HIGH. Please see http://confluence.atlassian.com/x/ZILmD for more security related issue and more information on how we rate issues...

Only strings are encoded

The XML encoder only encodes strings. This could make Confluence return non encoded content. This issue is rated HIGH. Please see http://confluence.atlassian.com/x/ZILmD for more security related issue and more information on how we rate issues...

Sun Java Runtime Environment JPEGImageEncoderImpl Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun's Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within a function responsible for...

CVE-2010-0846

Technical details for CVE-2010-0846 are not provided in the connected documents. No concrete product/version/root-cause/impact/fix details are available here. Monitor for updates from authoritative sources.

JDK unspecified vulnerability in ImageIO component

Unspecified vulnerability in the ImageIO component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and 1.3.127 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the Marc...

Orbital Viewer v1.04 (.orb) 0day Local Universal SEH Overflow Exploit

Exploit for unknown platform in category local exploits ===================================================================== Orbital Viewer v1.04 .orb 0day Local Universal SEH Overflow Exploit ===================================================================== !/usr/bin/python Orbital Viewer...

OtsTurntables Free 1.00.047 - '.olf' Universal Buffer Overflow

!/usr/bin/python OtsTurntables Free v1.00.047 .olf Universal Buffer Overflow Exploit Date: 14-01-2010 Author: mrme Software Link: http://www.otsturntables.com/download-otsturntables-free/ Version: 1.00.047 Tested on: Windows XP sp3 Greetz:...

VideoLAN Client (VLC) Win32 smb:// URI Buffer Overflow

$Id: vlcsmburi.rb 8475 2010-02-13 06:58:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Verm-FTP-Daemon

Stack-Based buffer overflow in Vermillion FTP Deamon 1.31 for Windows allow remote attackers to cause a DoS or execute arbitrary code via a long filename in a read or write request. The vulnerability is caused due to a boundary error in the handling of filenames and can be exploited to cause a...

IntelliTamper 2.07/2.08 - Remote Buffer Overflow (SEH)

IntelliTamper 2.07/2.08 SEH Remote Buffer Overflow Based on PoC: http://www.exploit-db.com/exploits/11217 Author: loneferret Big thanks to: dookie Tested on WinXP SP3 English Just copy the resulting html file on a web server, and point Intelli Tamper to that adress. Should get a calculator Thanks...

BigAnt Server 2.52 - Remote Overflow (SEH)

!/usr/bin/python import socket, sys BigAnt version 2.52 0day Tested on XPSP2 & Win2k3 SP2 Discovered by Lincoln Thanks to muts & remote-exploit 650 or so bytes available after seh, easier to jump back root@BT4VM: ./bigant.py 192.168.87.130 Exploit sent! Connect to remote host on port 4444...

BigAnt Server 2.52 - Remote Overflow (SEH)

BigAnt Server 2.52 - Remote Overflow SEH !/usr/bin/python import socket, sys BigAnt version 2.52 0day Tested on XPSP2 & Win2k3 SP2 Discovered by Lincoln Thanks to muts & remote-exploit 650 or so bytes available after seh, easier to jump back root@BT4VM: ./bigant.py 192.168.87.130 Exploit sent!...

BigAnt Server 2.52 SEH (0day)

No description provided by source. !/usr/bin/python import socket, sys BigAnt version 2.52 0day Tested on XPSP2 & Win2k3 SP2 Discovered by Lincoln Thanks to muts & remote-exploit 650 or so bytes available after seh, easier to jump back root@BT4VM: ./bigant.py 192.168.87.130 Exploit sent! Connect ...

Single Static Bit

Static value for specific bit This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework NOTE: this encoder currently has only be tested using bit 5 set to on. The decoder has been tested with all possible values, but the decode...

Mini-stream Ripper 3.0.1.1 - '.pls' Universal Local Buffer Overflow

/ riptheministreamripper.c Mini-stream ripper = 3.0.1.1 .pls Local Universal Buffer Overflow Exploit exploited by: mrme Greetz to the Corelan Security Team: corelanc0d3r, rick, edi, dellnull, marko T, phifli, corelanc0d3r Visit: corelanc0d3r's blog http://www.corelan.be:8800/ reference:...

gAlan 0.2.1 Buffer Overflow 0day Exploit

No description provided by source. !/usr/bin/perl kpasa.pl AKA gAlan Buffer Overflow 0day Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 12.07.2009 "From Static Analysis to 0day Exploit" Originally a SecurityTubeCon Presentation, which I'm guessing was canceled...