UBUNTU-CVE-2015-8750

libdwarf 20151114 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and crash via a debugabbrev section marked NOBITS in an ELF file...

Microsoft Office Word Malicious Macro Execution Exploit

This Metasploit module generates a macro-enabled Microsoft Office Word document. The comments metadata in the data is injected with a Base64 encoded payload, which will be decoded by the macro and execute as a Windows executable. For a successful attack, the victim is required to manually enable...

SumatraPDF 3.1.2 DLL Hijacking

Hi @ll, the executable installer deg and the "portable" version of SumatraPDF 3.1.2 available from are vulnerable to DLL hijacking ': The executable installers SumatraPDF-3.1.2-install.exe and SumatraPDF-3.1.2-64-install.exe load and execute tested on a fully patched Windows 7 SP1 at least...

Microsoft Office Word Malicious Macro Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex/zip' class MetasploitModule "Microsoft Office Word Malicious Macro Execution", 'Description' = %q This module generates a macro-enabled...

VMware Workstation Player Multiple Code Execution Vulnerabilities (Feb 2017) - Windows

VMware Workstation Player is prone to multiple code execution vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

UBUNTU-CVE-2016-2050

The getabbrevarrayinfo function in libdwarf-20151114 allows remote attackers to cause a denial of service out-of-bounds write via a crafted elf file...

GLSA-201701-69 : Ark: Unintended execution of scripts and executable files

The remote host is affected by the vulnerability described in GLSA-201701-69 Ark: Unintended execution of scripts and executable files A vulnerability was discovered in how Ark handles executable files while browsing a compressed archive. A user could unintentionally execute a malicious script...

Ark: Unintended execution of scripts and executable files

Background Ark is a graphical file compression/decompression utility with support for multiple formats. Description A vulnerability was discovered in how Ark handles executable files while browsing a compressed archive. A user could unintentionally execute a malicious script which has the...

Foxit PDF Toolkit Detection (Windows SMB Login)

SMB login and WMI file search based detection of Foxit PDF Toolkit. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2016-5237

Valve Steam 3.42.16.13 uses weak permissions for the files in the Steam program directory, which allows local users to modify the files and possibly gain privileges as demonstrated by a Trojan horse Steam.exe file...

About the security content of Apple TV 7.2.1 - Apple Support

For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available. To learn more about Apple Product Security, see the Apple Product Security website. For information about...

Python 2.x Buffer Overflow

!/usr/bin/env python Exploit : Python 2.x Buffer Overflow POC Tested on : Windows XP , Windows 7 Authors : Sultan Albalawi & Chaitanya @bofheaded Discovery date : 21/jan/2017 GitHub : https://github.com/ChaitanyaHaritash/My-Exploits/blob/master/python2.xbof.py Video : https://youtu.be/hcc6Y55PWBg...

openSUSE Security Update : ark (openSUSE-2017-92)

This update for ark fixes the following issues : - CVE-2017-5330: ark could run executable scripts when clicking on them boo1018648 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

ImageMagick 'coders/rle.c' Remote Buffer Overflow Vulnerability - Mac OS X

ImageMagick is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:imagemagick:imagemagick"...

OPENSUSE-SU-2017:0140-1 Security update for ark

This update for ark fixes the following issues: - CVE-2017-5330: ark could run executable scripts when clicking on them boo1018648...

OPENSUSE-SU-2017:0150-1 Security update for ark

This update for ark fixes the following issues: - CVE-2017-5330: ark could run executable scripts when clicking on them boo1018648...

CVE-2016-8204

A Directory Traversal vulnerability in FileReceiveServlet in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to upload a malicious file in a section of the file system where it can be executed...

CVE-2017-5333

Integer overflow in the extractgroupiconcursorresource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local users to cause a denial of service process crash or execute arbitrary code via a crafted executable file...

CVE-2017-5332

The extractgroupiconcursorresource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service process crash and execute arbitrary code via a crafted executable...

PT-2017-16436 · Icoutils +3 · Icoutils +3

Name of the Vulnerable Software and Affected Versions: icoutils versions prior to 0.31.1 Description: The issue is related to an integer overflow in the check offset function, which can be exploited by local users through a crafted executable. This can lead to a denial of service, causing the...