73 matches found
Novell NetMail IMAP SUBSCRIBE Buffer Overflow
This module exploits a stack buffer overflow in Novell's NetMail 3.52 IMAP SUBSCRIBE verb. By sending an overly long string, an attacker can overwrite the buffer and control program execution. This module requires Metasploit: https://metasploit.com/download Current source:...
mIRC IRC URL Buffer Overflow
This module exploits a stack buffer overflow in mIRC 6.1. By submitting an overly long and specially crafted URL to the 'irc' protocol, an attacker can overwrite the buffer and control program execution. This module requires Metasploit: https://metasploit.com/download Current source:...
Sendmail 8.13.5 - Remote Signal Handling (PoC)
!/usr/bin/env python [email protected] Sendmail 8.13.5 and below Remote Signal Handling exploit usage: rbl4ck-sendmail.py 127.0.0.1 0 25 this exploit was leaked to the PHC Phrack High Council so instead of only letting them have a copy, we figure everyone should have what they have. :-...
ActivePerl 5.x / Larry Wall Perl 5.x - Duplication Operator Integer Overflow
source: https://www.securityfocus.com/bid/10380/info ActiveState Perl is reported to be prone to an integer overflow vulnerability. It is revealed through testing that other implementations are also vulnerable. The issue is reported to exist due to a lack of sufficient bounds checking that is...
Yahoo! Messenger 5.6 - 'YInsthelper.dll' Multiple Buffer Overflow Vulnerabilities
source: https://www.securityfocus.com/bid/10199/info Yahoo! Messenger COM objects YInstHelper.YInstStarter.1 and YInstHelper.YSearchSetting2 have been reported prone to remotely exploitable buffer overflow vulnerabilities. The conditions are triggered when properties are assigned values strings o...
Microsoft Windows Messenger Service (French) - Remote (MS03-043)
Microsoft Windows Messenger Service French - Remote MS03-043 // / Crpt MS03-043 - Messenger exploit by MrNice Crpt / / --------------------------------------------------------------- / / / / This Sploit use the unhandledexceptionfilter to redirect / / the execution. When overflow occur we have : ...
Microsoft Windows Messenger Service (French) - Remote (MS03-043)
// / Crpt MS03-043 - Messenger exploit by MrNice Crpt / / --------------------------------------------------------------- / / / / This Sploit use the unhandledexceptionfilter to redirect / / the execution. When overflow occur we have : / / / / mov eax,esi+8 / / mov ecx,esi+Ch / / mov dword ptr...
Trend Micro PC-cillin 2000/2002/2003 - Mail Scanner Buffer Overflow
source: https://www.securityfocus.com/bid/6350/info A buffer overflow vulnerability has been reported for PC-cillin's mail scanning utility. An attacker can exploit this vulnerability by connecting to a vulnerable pop3trap.exe service and sending an overly long string. This will result in the...
Security Advisory: IOS HTTP authorization vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Security Advisory: IOS HTTP authorization vulnerability Revision 1.0 - INTERIM For public release 2001 June 27 08:00 UTC -0800 Summary When HTTP server is enabled and local authorization is used, it is possible, under some circumstances, to bypass the...
Security Hole in ECL Feature of Java VM Embedded in Lotus Notes Client R5
========================================================================= Security Hole in ECL Feature of Java VM Embedded in Lotus Notes Client R5 http://java-house.etl.go.jp/ml/archive/j-h-b/038904.html ========================================================================= The security hole...
Lotus Notes Client R5 File Existence Verification Vulnerability
Description Lotus Notes Client R5 is a messaging and collaboration tool that contains a built in web browser. The web browser implements a Java Virtual Machine VM designed specifically for Lotus Notes. A security vulnerability exists in the Execution Control List ECL feature within the Java VM th...
Nevis Systems All-Mail 1.1 - Remote Buffer Overflow
Nevis Systems All-Mail 1.1 - Remote Buffer Overflow // source: https://www.securityfocus.com/bid/1789/info All-mail is an smtp server for Windows NT and 2000 platforms offered by Nevis Systems. It is vulnerable to remotely exploitable buffer overflow attacks that may lead to an attacker gaining...
Eric Allman Sendmail 8.8.x - Socket Hijack
Eric Allman Sendmail 8.8.x - Socket Hijack // source: https://www.securityfocus.com/bid/774/info Through exploiting a combination of seemingly low-risk vulnerabilities in sendmail, it is possible for a malicious local user to have an arbitrary program inherit or "hijack" the file descriptor for t...