6692 matches found
IBM UniVerse 10.0 .0.9 uvadmsh Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8203/info A vulnerability has been reported in the IBM U2 UniVerse uvadmsh program that could permit the uvadm user to execute arbitrary code with elevated privileges. The -uv.install option of the vulnerable program allo...
Altap Salamander 2.5 PE Viewer Buffer Overflow
No description provided by source. $Id: altapsalamanderpdb.rb 11353 2010-12-16 20:11:01Z egypt $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...
Netcat 1.10 - NT Stack Buffer Overflow
No description provided by source. $Id: netcat110nt.rb 9587 2010-06-22 23:57:05Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Dr.Web 4.x Virus Scanner Folder Name Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7022/info A buffer overflow vulnerability has been reported for Dr. Web virus scanner. The vulnerability is due to insufficient bounds checking when processing folder names. An attacker is able to exploit this vulnerabili...
LiquidXML Studio 2012 ActiveX Insecure Method Executable File Creation 0day
No description provided by source. html object classid='clsid:8AEEAB4A-E1DA-4354-B800-8F0B553770E1' id='target'//object script var sofa = ..\..\..\..\..\..\..\..\..\Documents and Settings\All Users\Start Menu\Programs\Startup\thedoctorisin.hta; var king = Oh noz, Look what DrIDE...
os-x/PPC/x86 execve("/bin/sh",{"/bin/sh",NULL},NULL) 121 bytes
No description provided by source. / - dual.c - by [email protected] execve/bin/sh,/bin/sh,NULL,NULL shellcode for osx both the ppc and x86 version. Sample output: -nemo@squee:/shellcode$ file dual-ppc dual-ppc: Mach-O executable ppc -nemo@squee:/shellcode$ ./dual-ppc sh-2.05b$ exit...
McAfee 4.0,Network Associates for Windows NT 4.0.2/4.0.3 a,Norton AntiVirus 2000 Recycle Bin Exclusion
No description provided by source. McAfee VirusScan 4.0,Network Associates VirusScan for Windows NT 4.0.2/4.0.3 a,Symantec Norton AntiVirus 2000 Recycle Bin Exclusion Vulnerability source: http://www.securityfocus.com/bid/956/info Many commercial virus scanners for Windows platforms exclude the...
Microsoft IIS 4.0/5.0 Executable File Parsing Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1912/info When Microsoft IIS receives a valid request for an executable file, the filename is then passed onto the underlying operating system which executes the file. In the event that IIS receives a specially formed...
Qualcomm Eudora 5/6 File Attachment Spoofing Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/5432/info Eudora is reported to be prone to an issue which may allow attackers to spoof the file extension in an attachment. This may aid an attacker in enticing a user of the e-mail client into executing malicious conten...
FreeBSD 3.3,Linux Mandrake 7.0 'xsoldier' Buffer Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/871/info Certain versions of FreeBSD 3.3 Confirmed and Linux Mandrake confirmed ship with a vulnerable binary in their X11 games package. The binary/game in question, xsoldier, is a setuid root binary meant to be run via ...
Microsoft Internet Explorer 5.x Valid File Drag and Drop Embedded Code Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11466/info The Microsoft cumulative Internet Explorer patch MS04-038 attempted to limit what files may be dragged and dropped onto the local computer from the Internet Zone to prevent executable objects from being placed ...
DivX Player 2.6 Skin File Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12332/info DivX Player is reported prone to a directory traversal vulnerability. The issue presents itself when DPS '.dps', archive files are processed. Ultimately an attacker may exploit this issue to save a script or...
Solaris 2.5.1/2.6/7/8 rlogin /bin/login - Buffer Overflow Exploit (SPARC)
No description provided by source. / $Id: raptorrlogin.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorrlogin.c - rlogin, Solaris/SPARC 2.5.1/2.6/7/8 Copyright c 2004 Marco Ivaldi [email protected] Buffer overflow in login in various System V based operating systems allows remote attackers to...
OneHTTPD 0.8 - Crash PoC
No description provided by source. Exploit Title: onehttpd 0.8 Crash PoC Date: Feb 7,2014 Exploit Author: Mahmod Mahajna Mahy Version: 0.8 Software Link: https://onehttpd.googlecode.com/files/onehttpd-0.8.exe Tested on: Windows XP SP3 Email: [email protected] from requests import...
Perl2Exe 1.0 9/5.0 2/6.0 Code Obfuscation Weakness
No description provided by source. source: http://www.securityfocus.com/bid/6909/info Perl2Exe obfuscates Perl source code using a reversible algorithm when converting it to an executable format. This occurs when the encrypt option is selected. Those who use Perl2Exe with the expectation that the...
Stelian Pop dump 0.4 restore Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1330/info A buffer overflow exists in the 'restore' program, part of the dump 0.4b15-1 package, distributed with RedHat Linux 6.2. By supplying a long string containing machine executable code at the prompt for a tape nam...
LiquidXML Studio 2010 ActiveX Remote 0day
No description provided by source. html object classid='clsid:E68E401C-7DB0-4F3A-88E1-159882468A79' id='target'//object script var sofa = ..\..\..\..\..\..\..\..\..\Documents and Settings\All Users\Start Menu\Programs\Startup\thedoctorisin.hta; var king = Oh noz, Look what DrIDE...
Zinf 2.2.1 - Local Buffer Overflow Exploit
No description provided by source. / -------------------------------Advisory---------------------------------- Luigi Auriemma aluigiaaaattttttautisticiD000torg I don't know why this bug has not been tracked but moreover I don't completely know why it has not been fixed yet in the Windows version ...
RedHat 4.x/5.x/6.x,RedHat man 1.5,Turbolinux man 1.5,Turbolinux 3.5/4.x man Buffer Overrun (2)
No description provided by source. / source: http://www.securityfocus.com/bid/1011/info RedHat 4.0/4.1/4.2/5.0/5.1/5.2/6.0/6.2,RedHat man 1.5,Turbolinux man 1.5,Turbolinux 3.5/4.2/4.4 man Buffer Overrun Vulnerability A buffer overflow exists in the implementation of the 'man' program shipped with...
VMWare Setuid vmware-mount Unsafe popen(3)
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require...