1393 matches found
Michael Kohn Ringtone Tools 2.22 EMelody File Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12010/info Ringtone Tools is reported prone to a remote buffer overflow vulnerability. This issue arises because the application fails to carry out proper boundary checks before copying user-supplied data in to sensitive...
Photodex ProShow Producer 5.0.3256 - Local Buffer Overflow Exploit
No description provided by source. Exploit Title: Photodex ProShow Producer v5.0.3256 - Local Buffer Overflow Exploit Date: 22/07/2012 Author: mr.pr0n @pr0n Homepage: http://ghostinthelab.wordpress.com/ Software Link: http://files.photodex.com/release/pspro503256.exe Version: v5.0.3256 Tested on:...
Microsoft Windows 98 a/98 b/98SE,Solaris 2.6 IRDP Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/578/info This discussion is verbatim from the LHI Advisory referenced in the Reference Section of this vulnerability entry with very few changes The ICMP Router Discovery Protocol IRDP comes enabled by default on DHCP...
Sendmail 8.11/8.12 Debugger Arbitrary Code Execution Vulnerability (4)
No description provided by source. source: http://www.securityfocus.com/bid/3163/info An input validation error exists in Sendmail's debugging functionality. The problem is the result of the use of signed integers in the program's tTflag function, which is responsible for processing arguments...
Centrinity FirstClass 5.77 0 Intranet Server Long Header Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1421/info If an E-mail containing an excessively long To: field in the header 1.5 MB is processed by First Class Intranet Services FCIS, a Denial of Service can occur. http://www.exploit-db.com/sploits/20052.tar.gz...
Joomla Component com_football SQL Injection Vulnerability
No description provided by source. Title : Joomla Component comfootball SQL Injection Vulnerability Author: DevilZ TM Data : 2010-04-02 InformatioN Title : Joomla Component comfootball SQL Injection Vulnerability Author : DevilZ TM By D3v1l Homepage : http://www.DEVILZTM.com Email :...
Joomla Component com_television SQL Injection Vulnerability
No description provided by source. Title : Joomla Component comtelevision SQL Injection Vulnerability Author: DevilZ TM Data : 2010-03-29 InformatioN Title : Joomla Component comtelevision SQL Injection Vulnerability Author : DevilZ TM By D3v1l Homepage : http://www.DEVILZTM.com Email :...
Joomla Component com_network SQL Injection Vulnerability
No description provided by source. Title : Joomla Component comnetwork SQL Injection Vulnerability Author: DevilZ TM Data : 2010-04-01 InformatioN Title : Joomla Component comnetwork SQL Injection Vulnerability Author : DevilZ TM By D3v1l Homepage : http://www.DEVILZTM.com Email :...
winiso 5.3 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17721/info Reportedly, an attacker can carry out attacks using directory-traversal strings. These issues occur when the application processes malicious archives. A successful attack can allow the attacker to place...
Marketing Web Design Multiple Vulnerabilities
No description provided by source. ======================================================================= Marketing Web Design Multiple Vulnerabilities ======================================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0...
Opium OPI Server and CyanPrintIP - Format String and Denial of Service Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/27734/info Opium OPI Server and CyanPrintIP are prone to a denial-of-service vulnerability and a format-string vulnerability. An attacker can exploit these issues to execute arbitrary code within the context of the affect...
EmbeddedWB Web Browser ActiveX Control - Remote Code Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22755/info EmbeddedWB Web Browser ActiveX control is prone to a remote code-execution vulnerability. Exploiting this issue allows remote attackers to execute arbitrary machine code in the context of applications using the...
PGN2WEB 0.3 - Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12023/info It is reported that pgn2web is susceptible to a buffer overflow vulnerability. This issue is due to a failure of the application to properly bounds check user-supplied data prior to copying it into a fixed-size...
Joomla KISS Advertiser Remote File & Bypass Upload Vulnerability
No description provided by source. Exploit Title: Joomla comKSAdvertiser Remote File & Bypass Upload Vulnerability Google Dork: inurl:index.php?option=comksadvertiser Date: 12-07-2012 Author: Daniel Barragan D4NB4R Twitter: @D4NB4R site: http://www.insecurityperu.org/ vendor Link:...
PHP-Nuke 6.0 Web Mail Remote PHP Script Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6399/info A vulnerability has been discovered in the PHP-Nuke Web Mail module. When a user opens an email that contains an attachment, the file will be put in a remotely accessible web directory. It has been reported that...
GOM Player 2.2.53.5169 - SEH Buffer Overflow (.reg)
No description provided by source. !/usr/bin/perl Exploit Title: GOM Player 2.2.53.5169 - SEH Buffer Overflow .reg Date: 11-26-2013 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software/Version: GOM Player 2.2.53.5169 Vendor Site: http://player.gomlab.com/eng/ Vulnerable Softwa...
Linux Kernel < 2.6.19 - udp_sendmsg Local Root Exploit (x86/x64)
No description provided by source. / second verse, same as the first CVE-2009-2698 udpsendmsg, x86/x64 Cheers to Julien/Tavis for the bug, p0c73n1 for just throwing code at NULL and finding it executed This exploit is a bit more nuanced and thoughtful ; use ./therebel.sh for everything At this...
PHP-Nuke 6.0 Web Mail Script Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6400/info A vulnerability has been discovered in the PHP-Nuke web mail module. Due to insufficient sanitization of HTML emails it is possible for an attacker to embed script code into malicious messages. Opening an email...
Cisco CBOS 2.x Multiple TCP Connection Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3236/info CBOS is the Cisco Broadband Operating System, firmware designed for use on Cisco 600 series routers. It is maintained and distributed by Cisco Systems. CBOS becomes unstable when it receives multiple TCP...
Trellian FTP Client 3.01 PASV Remote Buffer Overflow
No description provided by source. $Id: trellianclientpasv.rb 9525 2010-06-15 07:18:08Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...