Stack overflow

Stack-based buffer overflow in smtpdll.dll in the SMTP service in 602Pro LAN SUITE 2003 2003.0.03.0828 allows remote attackers to execute arbitrary code via an e-mail message with a long address. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

Heap overflow

Heap-based buffer overflow in OpenOffice.org OOo 2.2.1 and earlier allows remote attackers to execute arbitrary code via a RTF file with a crafted prtdata tag with a length parameter inconsistency, which causes vtable entries to be overwritten...

CVE-2007-2948

Multiple stack-based buffer overflows in stream/streamcddb.c in MPlayer before 1.0rc1try3 allow remote attackers to execute arbitrary code via a CDDB entry with a long 1 album title or 2 category...

Stack overflow

Multiple stack-based buffer overflows in the FViewerLoading ActiveX control FlipViewerX.dll in E-Book Systems FlipViewer before 4.1 allow remote attackers to cause a denial of service crash or execute arbitrary code via long 1 UID, 2 Opf, 3 PAGENO, 4 LaunchMode, 5 SubID, 6 BookID, 7 LibraryID, 8...

Buffer overflow

Multiple buffer overflows in an ActiveX control boisweb.dll in Macrovision FLEXnet Connect 6.0 and Update Service 3.x to 5.x allow remote attackers to execute arbitrary code via the 1 the second parameter to the DownloadAndExecute method and 2 third parameter to the AddFileEx method, a different...

Integer overflow

Multiple integer overflows in the chunksplit function in PHP 5 before 5.2.3 and PHP 4 before 4.4.8 allow remote attackers to cause a denial of service crash or execute arbitrary code via the 1 chunks, 2 srclen, and 3 chunklen arguments...

CVE-2007-2452

Heap-based buffer overflow in the visitoldformat function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036...

Remote file inclusion

PHP remote file inclusion vulnerability in lib/livestatus.lib.php in AdminBot MX 9.0.5 allows remote attackers to execute arbitrary PHP code via a URL in the ROOT parameter...

Stack overflow

Multiple stack-based buffer overflows in ActiveX controls 1 VibeC in a vibecontrol.dll, 2 CallManager and 3 ViewerClient in b StarClient.dll, 4 ComLink in c uicomlink.dll, and 5 WebCamXMP in d wcamxmp.dll in Logitech VideoCall allow remote attackers to cause a denial of service browser crash and...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Mazen's PHP Chat 3.0.0 allow remote attackers to execute arbitrary PHP code via a URL in the basepath parameter to 1 ITX.php, 2 ITError.php, or 3 IT.php in include/pear/...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in FlaP 1.0b 1.0 Beta allow remote attackers to execute arbitrary PHP code via a URL in the pachtofile parameter to 1 skin/html/table.php or 2 login.php...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in OpenBASE Alpha 0.6 allow remote attackers to execute arbitrary PHP code via a URL in the rootprefix parameter to 1 index.php, 2 emailsubscribe.php, 3 download.php, or 4 development.php...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Frequency Clock 0.1b Beta 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the securelib parameter to 1 conf.php or 2 cp2.php...

EUVD-2007-2938

Buffer overflow in a certain ActiveX control in LeadTools Raster Dialog FileD Object LTRDFD14e.DLL 14.5.0.44 allows remote attackers to cause a denial of service Internet Explorer 7 crash or execute arbitrary code via a long DestinationPath property value...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in FirmWorX 0.1.2 allow remote attackers to execute arbitrary PHP code via a URL in the 1 bankdataroot parameter to modules/bank/includes/design/main.inc.php, or the 2 fmdataroot parameter to a includes/config/master.inc.php or b...

CVE-2007-2884

Multiple stack-based buffer overflows in Microsoft Visual Basic 6 allow user-assisted remote attackers to cause a denial of service CPU consumption or execute arbitrary code via a Visual Basic Project vbp file with a long 1 Description or 2 Company Name VersionCompanyName field...

Mazens PHP Chat V3 (basepath) - Remote File Inclusion

Mazen's PHP Chat V3.0.0 Beta1 Remote file inclusion Download script : http://www.scriptbrasil.com.br/script/php/batepapo/mazenphpopenchmt221.tar.gz Thanks Str0ke :D Exploit : http://victim.com/chatpath/include/pear/ITX.php?basepath=shell.txt?...

CVE-2007-0753

Format string vulnerability in the VPN daemon vpnd in Apple Mac OS X 10.3.9 and 10.4.9 allows local users to execute arbitrary code via the -i parameter...

Remote file inclusion

PHP remote file inclusion vulnerability in sample/xls2mysql in ABC Excel Parser Pro 4.0 allows remote attackers to execute arbitrary PHP code via a URL in the parserpath parameter...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in SimpGB 1.46.0 allow remote attackers to execute arbitrary PHP code via a URL in the pathsimpgb parameter to 1 guestbook.php, 2 search.php, 3 mailer.php, 4 avatars.php, 5 ccode.php, 6 comments.php, 7 emoticons.php, 8 gbdownload.php, and possibl...