Microsoft Internet Explorer - WebViewFolderIcon setSlice() (1)

Microsoft Internet Explorer - WebViewFolderIcon setSlice 1 !/usr/bin/perl Microsoft Internet Explorer WebViewFolderIcon setSlice D0wnLoad & Exec POC Author: Vampyroteuthis Infernalis Greetz: H D Moor, Dark Eagle, Jamikazu use strict; my $sco =...

Microsoft Internet Explorer - 'VML' Remote Buffer Overflow

/ ----------------------------------------------------------------------- vml.c - Internet Explorer VML Buffer Overflow Download Exec Exploit !!! 0day !!! Public Version !!! Copyright C 2006 XSec All Rights Reserved. Author : nop : nopxsec.org : http://www.xsec.org : Tested : Windows 2000 Server ...

Microsoft Internet Explorer - COM Object Remote Heap Overflow

/ ----------------------------------------------------------------------- daxctle2.c - Internet Explorer COM Object Heap Overflow Download Exec Exploit !!! 0day !!! Public Version !!! Copyright C 2006 XSec All Rights Reserved. Author : nop : nopxsec.org : http://www.xsec.org : Tested : Windows 20...

MS Internet Explorer COM Object Remote Heap Overflow Exploit

Exploit for unknown platform in category remote exploits ============================================================ MS Internet Explorer COM Object Remote Heap Overflow Exploit ============================================================ /...

Symantec Veritas Backup Exec for Windows Server vulnerable to heap-based buffer overflow

Overview Symantec Veritas Backup Exec for Windows Server contains multiple heap-based buffer overflow vulnerabilities which can allow a remote, authenticated attacker to cause a denial of service or execute arbitrary code. Description VERITAS Backup Exec for Windows Server is a data backup and...

Symantec Backup Exec Multiple Heap Overflow RCE (SYM06-014)

The Windows remote host contains Symantec Backup Exec for Windows Server or Backup Exec Continuous Protection Server, a commercial backup product. The version of the software installed on the remote host is affected by multiple heap overflow conditions involving specially crafted calls to its RPC...

CVE-2006-4128

Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 all builds, Backup Exec Continuous Protection Server Remote Agent for Windows Server 10.1 builds 10.1.325.6301, 10.1.326.1401, 10.1.326.2501, 10.1.326.3301, and...

CVE-2006-4128

Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 all builds, Backup Exec Continuous Protection Server Remote Agent for Windows Server 10.1 builds 10.1.325.6301, 10.1.326.1401, 10.1.326.2501, 10.1.326.3301, and...

(Security Advisory) SYM06-014 Symantec Backup Exec Internal RPC Overflow

Any further revisions to this information, if required, will be posted to the official advisory located at : http://www.symantec.com/avcenter/security/Content/2006.08.11.html Symantec Security Advisory SYM06-014 BID 19479 11 August 2006 Symantec Backup Exec for Windows Server: RPC Interface Heap...

Symantec Backup Exec buffer overflow

Buffer overflow in internal RPC-based protocol...

CVE-2006-3461

CVE-2006-3461 is a heap-based buffer overflow in the PixarLog decoder of libtiff, tracked in CVE-2006-3461. Affected component: libtiff prior to 3.8.2. Impact described: context-dependent attackers could potentially execute arbitrary code. Public references in connected sources corroborate that t...

TinyPHPForum 3.6 - 'UpdatePF.php' Authentication Bypass

source: https://www.securityfocus.com/bid/19281/info TinyPHPForum is prone to an authentication-bypass vulnerability because it fails to prevent an attacker from accessing admin scripts directly without requiring authentication. A remote attacker can exploit this issue to perform administrative...

TinyPHPForum 3.6 - UpdatePF.php Authentication Bypass

TinyPHPForum 3.6 - UpdatePF.php Authentication Bypass source: https://www.securityfocus.com/bid/19281/info TinyPHPForum is prone to an authentication-bypass vulnerability because it fails to prevent an attacker from accessing admin scripts directly without requiring authentication. A remote...

security flaw

fs/exec.c in Linux 2.6, when one thread is tracing another thread that shares the same memory map, might allow local users to cause a denial of service deadlock by forcing a core dump when the traced thread is in the TASKTRACED state...

linux/x86 stdin re-open and /bin/sh exec shellcode

linux/x86 stdin re-open and /bin/sh exec shellcode. Shellcode exploit for linx86 platform / $Id: gets-linux.c,v 1.3 2004/06/02 12:22:30 raptor Exp $ gets-linux.c - stdin re-open shellcode for Linux/x86 Copyright c 2003 Marco Ivaldi Local shellcode for stdin re-open and /bin/sh exec. It closes std...

CentOS 4 : kdenetwork (CESA-2005:639)

Updated kdenetwork packages to correct a security flaw in Kopete are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. The kdenetwork package contains networking applications for the K Desktop...

In the PHP implementation of the system to external command-and-vulnerability warning-the black bar safety net

PHP as a server side scripting language, like writing a simple, or a complex dynamic web page such a task, it is fully able to do the job. But the thing is not always the case, sometimes in order to achieve a certain function, it must be by means of theoperating systemof the external program, or...

[Full-disclosure] [SECURITY] [DSA 1090-1] New spamassassin packages fix remote command execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1090-1 [email protected] http://www.debian.org/security/ Martin Schulze June 6th, 2006 http://www.debian.org/security/faq -...

Remote file inclusion

PHP remote file inclusion vulnerability in includes/config.php in Jetbox CMS 2.1 allows remote attackers to execute arbitrary code via a URL in the relativescriptpath parameter...

linux/amd64 - connect-back semi-stealth shellcode 88+ bytes

linux/amd64 connect-back semi-stealth shellcode 88+ bytes. Shellcode exploit for linamd64 platform include include include include include include include / usual rant here.. this is just a doodle.. i was curious about the amd64 and since i dont think a simple exec /bin/sh is worth releasing i gi...