KenWard's Zipper 1.400 - Buffer Overflow - Method 2

No description provided by source. !/usr/bin/python KenWard's Zipper v1.400 File Name Buffer Overflow Coded by sinn3r x90.sinneratgmaild0tcom Tested on: Windows XP SP3 ENG Reference: http://www.exploit-db.com/exploits/11834 Big thanks to mrme, and corelanc0d3r. greetz to all the friends at Corela...

ASP2PHP 0.76.23 Preparse Token Variable Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12014/info asp2php is prone to a buffer overflow vulnerability. This issue is exposed when the application is used to convert an ASP file to PHP. The particular issue is related to parsing of tokens in ASP files. Since AS...

Flex Timesheet Authentication Bypass Vulnerability

No description provided by source. =================================================== Flex Timesheet - Authentication Bypass Vulnerability =================================================== My + Author : KnocKout Contact : [email protected] + Greatz : h4x0reSEC / Inj3ct0r Team / Exploit-DB H4X0...

Apache 1.2 Web Server DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2216/info Apache Web Server 1.2 and previous versions are subject to a denial of service. By requesting a malformed GET request composed of an unusually large number of '/' characters, an attacker can cause CPU usage to...

SDL_image 1.2.6 Invalid GIF File LWZ Minimum Code Size Remote Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27417/info The SDLimage library is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. The issue occurs when handling malformed GIF images. Attacker...

TrackMania 2.11.11 - Multiple Remote Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/35807/info TrackMania is prone to multiple vulnerabilities. Successful exploits may allow attackers to execute arbitrary code with the privileges of a user running the software or cause denial-of-service conditions. This...

Yahoo! Messenger 8.1 KDU_V32M.DLL - Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25330/info Yahoo! Messenger is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to crash the affected application, denying service to legitimate users. This issue affects Yahoo!...

[oss-security] OpenFiler - Arbitrary Code Execution & Stored XSS

hi, Multiple vulnerabilities were discovered in the latest version of OpenFiler appliance, 2.99.1 as reported herehttps://forums.openfiler.com/index.php?/topic/6720-arbitrary-code-execution-stored-xss-vulnerability-in-openfiler-latest-version-2991/, here http://www.exploit-db.com/exploits/33247 a...

EFS Easy Chat Server 3.1 - Remote Stack Buffer Overflow

Exploit-DB Note: The offset to SEH is influenced by the installation path of the program. For this specific exploit to work, easy chat must be installed to: 'C:\Program Files\EFS Software\Easy Chat Server' Exploit Title: Easy Chat Server 3.1 stack buffer overflow Date: 9 May 2014 Exploit Author:...

McAfee Asset Manager Multiple Vulnerabilities

McAfee Asset Manager is prone to directory traversal and SQL injection vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

MS14-012 Internet Explorer CMarkup Use-After-Free

mxmlc.exe AsXploit.as -o AsXploit.swf E-DB Note: http://www.exploit-db.com/sploits/32851-AsXploit.as -- var garr = ; var arrLen = 0x250; function dword2datadword var d = Numberdword.toString16; while d.length 8 d = '0' + d; return unescape'%u' + d.substr4, 8 + '%u' + d.substr0, 4; function eXpl v...

Microsoft Internet Explorer 10 - CMarkup Use-After-Free (MS14-012)

mxmlc.exe AsXploit.as -o AsXploit.swf Exploit-DB Mirror: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/32851-AsXploit.as -- var garr = ; var arrLen = 0x250; function dword2datadword var d = Numberdword.toString16; while d.length 8 d = '0' + d; return unescape'%u...

Microsoft Internet Explorer 10 - CMarkup Use-After-Free (MS14-012)

Microsoft Internet Explorer 10 - CMarkup Use-After-Free MS14-012 mxmlc.exe AsXploit.as -o AsXploit.swf Exploit-DB Mirror: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/32851-AsXploit.as -- var garr = ; var arrLen = 0x250; function dword2datadword var d =...

Adobe Reader 'AcroPDF.DLL' Denial of Service Vulnerability - Linux

Adobe Reader is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

BlazeDVD Pro Player 6.1 - Stack Buffer Overflow Jump ESP

Exploit-DB Note: XPSP3 - my $eip = pack'V',0x7c868667; jmp ESP on kernel32.dll Date: Tue Apr 8 2014 Vendor link: http://www.blazevideo.com/download.htmm Software Link: http://www.blazevideo.com/download.php?product=BlazeDVDPro App Version: 6.1 Tested on: Windows XP service pack 2 en my $file=...

Adobe Reader 'Download Manager' Privilege Escalation Vulnerability - Mac OS X

Adobe Reader is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

plexusCMS 0.5 - Cross-Site Scripting Remote Shell Credentials Leak

plexusCMS 0.5 - Cross-Site Scripting Remote Shell Credentials Leak Exploit Title: plexusCMS 0.5 XSS Remote Shell Exploit Google Dork: allinurl: plx-storage Date: 22.02.2013 Exploit Author: neglomaniac Vendor Homepage: http://plexus-cms.org/ Version: 0.5 --- FILES backdoor.php simple commend execu...

Pompem - Exploit Finder

Pompem is an open source tool, which is designed to automate the search for exploits in major databases. Developed in Python, has a system of advanced search, thus facilitating the work of pentesters and ethical hackers. In its current version, performs searches in databases: Exploit-db, 1337day,...

MP3Info 0.8.5a - Local Buffer Overflow (SEH)

Exploit Title: mp3info SEH exploit Date: 18 March 2014 Exploit Author: Ayman Sagy Vendor Homepage: http://ibiblio.org/mp3info/ Software Link: https://www.exploit-db.com/apps/cb7b619a10a40aaac2113b87bb2b2ea2-mp3info-0.8.5a.tgz Version: MP3Info 0.8.5 Tested on: Windows 7 Ultimate 64 and 32 bit CVE ...

Re: Medium severity flaw in BlackBerry QNX Neutrino RTOS

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Nth Dimension Security Advisory NDSA20140311 Date: 11th March 2014 Author: Tim Brown mailto:[email protected] URL: http://www.nth-dimension.org.uk/ / http://www.machine.org.uk/ Product: QNX Neutrino RTOS 6.5.0...