libpng integer overflow — Mozilla

An integer overflow in the libpng library can lead to a heap-buffer overflow when decompressing certain PNG images. This leads to a crash, which may be potentially exploitable...

MozillaFirefox to 10.0.1 (critical)

MozillaFirefox was updated to 10.0.1 to fix critical bugs and security issue. Following security issue was fixed: CVE-2012-0452: Mozilla developers Andrew McCreight and Olli Pettay found that ReadPrototypeBindings will leave a XBL binding in a hash table even when the function fails. If this...

Firefox 10.x < 10.0.1 Memory Corruption

The installed version of Firefox 10.x is earlier than 10.0.1 and is, therefore, potentially affected by a memory corruption vulnerability. A use-after-free error exists in the method 'nsXBLDocumentInfo::ReadPrototypeBindings' and XBL bindings are not properly removed from a hash table in the even...

SeaMonkey < 2.7.1 Memory Corruption

The installed version of SeaMonkey is earlier than 2.7.1. Such versions are potentially affected by a memory corruption vulnerability. A use-after-free error exists in the method 'nsXBLDocumentInfo::ReadPrototypeBindings' and XBL bindings are not properly removed from a hash table in the event of...

Terry McCorkle

Terry McCorkle, a Seattle-based researcher presented the results of an independent study on Supervisory Control and Data Acquisition Systems SCADA and Industrial Control Systems ICS where he and his research partner Billy Rios attempted to find 100 bugs in 100 days. They wound up finding 1000+ bu...

Samba 3.x < 3.5.21 / 3.6.12 and 4.x < 4.0.2 SWAT Multiple Vulnerabilities (deprecated)

Binary data 6686.prm...

Google Service Reward #1 - ClickJacking Vulnerability

Document Title: =============== Google Service Reward 1 - ClickJacking Vulnerability References: =========== Download: http://www.vulnerability-lab.com/resources/videos/416.wmv View: http://www.youtube.com/watch?v=6N0YS9cTRHw Release Date: ============= 2012-02-06 Vulnerability Laboratory ID VL-I...

Google Service Reward #1 - ClickJacking Vulnerability

Document Title: =============== Google Service Reward 1 - ClickJacking Vulnerability References: =========== Download: http://www.vulnerability-lab.com/resources/videos/416.wmv View: http://www.youtube.com/watch?v=6N0YS9cTRHw Release Date: ============= 2012-02-06 Vulnerability Laboratory ID VL-I...

Opera 11.60 Array Integer Overflow

CAL-2012-0004 opera array integer overflow 1 Affected Products ================= 11.60 and prior 2 Vulnerability Details ===================== Code Audit Labs http://www.vulnhunt.com has discovered a integer overflow vulnerability in array functions like Int32Array,Int16Array... . Opear vendor sa...

sit! support incident tracker 3.64 - Multiple Vulnerabilities

Advisory Details: High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in SiT! Support Incident Tracker, which can be exploited to perform SQL injection, cross-site scripting, cross-site request forgery attacks. 1 Input passed via the "start" GET parameter to...

EdrawSoft Office Viewer Component ActiveX 5.6 Buffer Overflow

EdrawSoft Office Viewer Component ActiveX 5.6 officeviewermme.ocx BoF PoC Vendor: EdrawSoft Product web page: http://www.edrawsoft.com Affected version: 5.6.5781 Summary: Edraw Office Viewer Component contains a standard ActiveX control that acts as an ActiveX document container for hosting Offic...

EdrawSoft Office Viewer Component ActiveX 5.6 - &#039;officeviewermme.ocx&#039; Buffer Overflow (PoC)

EdrawSoft Office Viewer Component ActiveX 5.6 officeviewermme.ocx BoF PoC Vendor: EdrawSoft Product web page: http://www.edrawsoft.com Affected version: 5.6.5781 Summary: Edraw Office Viewer Component contains a standard ActiveX control that acts as an ActiveX document container for hosting Offic...

Solaris 10 (sparc) : 148165-02 (deprecated)

Vulnerability in the Solaris component of Oracle Sun Products Suite subcomponent: Password Policy. Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent...

Solaris 10 (x86) : 148166-02 (deprecated)

Vulnerability in the Solaris component of Oracle Sun Products Suite subcomponent: Password Policy. Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent...

Joomla XBall SQL Injection

Exploit Title : Joomla Component comxball SQL Injection Vulnerability Author : CoBRa21 E-Mail : uykucu at windowslive.com My Team : Lojistik ALLSTAR cyber-warrior.org Google Dork : inurl:index.php?option=comxball Status : High-Risk SQL Vulnerability...

[PT-2011-03] Information disclosure in Kayako Support Suite

----------------------------------------------------------------- PT-2011-03 Positive Technologies Security Advisory Information disclosure in Kayako Support Suite ----------------------------------------------------------------- --- Vulnerable software Kayako Support Suite Version: 3.70.02-stabl...

[PT-2011-02] PHP code Injection in Kayako Support Suite

----------------------------------------------------------------- PT-2011-02 Positive Technologies Security Advisory PHP code Injection in Kayako Support Suite ----------------------------------------------------------------- --- Vulnerable software Kayako Support Suite Version: 3.70.02-stable an...

[PT-2011-04] Cross-Site Scripting in Kayako Support Suite

----------------------------------------------------------------- PT-2011-04 Positive Technologies Security Advisory Cross-Site Scripting in Kayako Support Suite ----------------------------------------------------------------- --- Vulnerable software Kayako Support Suite Version: 3.70.02-stable...

Ladder logic

The devices tested by the Basecamp Project included the D20 PLC by GE, The Modicon Quantum by Schneider Electric, Rockwell and Koyo Electronics. Each device was tested using a number of additional attack vectors. Researchers attempted to upload custom firmware or so-called “ladder logic” for the...

Citrix Provisioning Services Opcode 40020006 Integer Underflow

Added: 01/20/2012 BID: 49803 Background Citrix Provisioning Services dynamically provisions virtual servers to simplify and streamline server management, while reducing software rollout risk. Problem Citrix Provisioning Services 5.6 SP1 and prior are vulnerable to a remotely exploitable integer...