HP Operations Agent Opcode coda.exe 0x34 Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'HP Operations Agent Opcode coda.exe...

Microsoft Windows Help Program - 'WinHlp32.exe' Crash (PoC)

!/usr/bin/perl Title : Microsoft Windows Help programWinHlp32.exememory corruption Version : 5.1.2600 Date : 2012-10-24 Vendor : http://www.microsoft.com Crash : http://img69.imageshack.us/img69/7652/helpview.jpg Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested ...

Team SHATTER Security Advisory: Multiple SQL Injection in Oracle Enterprise Manager (SQL Tunning Sets components)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 AppSecInc Team SHATTER Security Advisory Multiple SQL Injection in Oracle Enterprise Manager SQL Tunning Sets components. Risk Level: High Affected versions: Oracle Enterprise Manager Database Control 11.1.0.7, 11.2.0.3 and previous patchsets Remote...

exim: overflow in DKIM handling fixed (critical)

This update fixes a remotely exploitable overflow in DKIM handling...

Microsoft Windows Help Program Memory Corruption

!/usr/bin/perl Title : Microsoft Windows Help programWinHlp32.exememory corruption Version : 5.1.2600 Date : 2012-10-21 Vendor : http://www.microsoft.com Crash : http://img69.imageshack.us/img69/7652/helpview.jpg Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested ...

HP Operations Agent Opcode coda.exe 0x8c Buffer Overflow

This Metasploit module exploits a buffer overflow vulnerability in HP Operations Agent for Windows. The vulnerability exists in the HP Software Performance Core Program component coda.exe when parsing requests for the 0x8c opcode. This Metasploit module has been tested successfully on HP Operatio...

Microsoft Windows Help (WinHlp32.exe) memory corruption

The HLP file is Microsoft Help file documentation for the Windows operating system or Windows programs. The file contains documentation for the Windows operating system or Windows programs. Successful exploits can allow attackers to execute arbitrary code !/usr/bin/perl Title : Microsoft Windows...

NASA Tri-Agency Climate Education (TrACE) v1.0 SQL Injection Vulnerability

Summary The Tri-Agency Climate Education TrACE Catalog provides search and browse access to a catalog of educational products and resources. TrACE focuses on climate education resources that have been developed by initiatives funded through NASA, NOAA, and NSF, comprising a tri-agency collaborati...

Microsoft Office Picture Manager 2010 memory corruption

notice : for testing POC please run the Microsoft Office Picture Manager under a Debugger and then open the POC file Successful exploits can allow attackers to execute arbitrary code Title : Microsoft Office Picture Manager 2010 memory corruption Version : Microsoft Office professional Plus 2010...

Microsoft Office Picture Manager 2010 - Crash (PoC)

Microsoft Office Picture Manager 2010 - Crash PoC Title : Microsoft Office Picture Manager 2010 memory corruption Version : Microsoft Office professional Plus 2010 Crash : http://img715.imageshack.us/img715/7364/pocl.png Date : 2012-10-24 Vendor : http://office.microsoft.com Impact : Med/High...

Microsoft Office Picture Manager 2010 - Crash (PoC)

Title : Microsoft Office Picture Manager 2010 memory corruption Version : Microsoft Office professional Plus 2010 Crash : http://img715.imageshack.us/img715/7364/pocl.png Date : 2012-10-24 Vendor : http://office.microsoft.com Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter :...

Adobe Shockwave 11.6.7.637 contains multiple exploitable vulnerabilities

Overview Adobe Shockwave Player 11.6.7.637 and earlier versions on the Windows and Macintosh operating systems contain critical vulnerabilities that can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Adobe Macromedia Shockwave Player is...

RealPlayer 15.0.6.14 Memory Corruption

!/usr/bin/perl Title : RealPlayer 3GP file handling memory corruption Version : 15.0.6.14 Date : 2012-10-18 Vendor : http://www.real.com/ Impact : High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG Author : coolkaveh Bug : ---- Memory corruption during the handlin...

MitM-vulnerability in Palo Alto Networks GlobalProtect

--------------------------------------------------------------------- SySS-Advisory: MitM-vulnerability in Palo Alto Networks GlobalProtect --------------------------------------------------------------------- Problem discovered: July 12th 2012 Vendor contacted: July 13th 2012 Advisory published:...

[INTREST SEC] Atlassian Confluence Wiki XSS Vulnerability

------------------------------- INTREST SEC | Security Advisory ------------------------------- Product: Confluence Wiki Vendor: Atlassian www.atlassian.com Vulnerability Type: Cross Site Scripting XSS Risk Level: High classified by vendor Discovered by: INTREST SEC - NID Public Diclosure:...

Security weakness in Android App SSL Implementations

The most common approach to protect data during communication on the Android platform is to use the Secure Sockets Layer SSL or Transport Layer Security TLS protocols. Thousands of applications in the Google Play market that are using these implementations. A group of researchers including Sascha...

Solaris 10 (x86) : 127873-02 (deprecated)

Vulnerability in the Solaris component of Oracle Sun Products Suite subcomponent: mailx1. Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized update, inse...

Solaris 10 (sparc) : 127872-02 (deprecated)

Vulnerability in the Solaris component of Oracle Sun Products Suite subcomponent: mailx1. Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized update, inse...

3S CoDeSys Vulnerabilities

Overview This advisory is a follow-up to the alert update, ICS-ALERT-11-336-01A 3S CoDeSys Vulnerabilities, which was released on the ICS-CERT Web page on December 02, 2011. Security researcher Celil Unuver SignalSec LLC and independent researcher Luigi Auriemma have identified vulnerabilities in...

Heap memory corruption issues found using Address Sanitizer — Mozilla

Security researcher Atte Kettunen from OUSPG reported several heap memory corruption issues found using the Address Sanitizer tool. These issues are potentially exploitable, allowing for remote code execution...