NSOADV-2010-005: SonicWALL E-Class SSL-VPN ActiveX Control format string overflow

-------------------------- NSOADV-2010-005 --------------------------- SonicWALL E-Class SSL-VPN ActiveX Control format string overflow 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11...

SonicWALL E-Class SSL-VPN ActiveX Control Format String Overflow

Exploit for windows platform in category dos / poc ================================================================ SonicWALL E-Class SSL-VPN ActiveX Control Format String Overflow ================================================================ Title: SonicWALL E-Class SSL-VPN ActiveX Control...

SonicWALL E-Class SSL-VPN - ActiveX Control Format String Overflow

-------------------------- NSOADV-2010-005 --------------------------- SonicWALL E-Class SSL-VPN ActiveX Control format string overflow 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11...

Httpdx 1.5.4 Multiple (http-ftp) PoC

Exploit for windows platform in category dos / poc ==================================== Httpdx 1.5.4 Multiple http-ftp PoC ==================================== !/usr/bin/env python Title: httpdx v1.5.4 Remote HTTP Server DoS 0day By: DrIDE Tested: XPSP3 Download: http://httpdx.sourceforge.net Not...

MS Windows nt!NtCreateThread Race Condition Invalid Code (MS10-047)

Exploit for windows platform in category dos / poc =================================================================== MS Windows nt!NtCreateThread Race Condition Invalid Code MS10-047 =================================================================== Microsoft Windows nt!NtCreateThread race...

Microsoft Windows - nt!NtCreateThread Race Condition with Invalid Code Segment (MS10-047)

Microsoft Windows nt!NtCreateThread race condition with invalid code segment ---------------------------------------------------------------------------- CVE-2010-1888 Creating a new thread on windows involves passing several structures to NtCreateThread. These structures describe the execution...

Microsoft Windows - KTM Invalid Free with Reused Transaction GUID (MS10-047)

Microsoft Windows - KTM Invalid Free with Reused Transaction GUID MS10-047 Microsoft Windows KTM Invalid Free with reused transaction GUID ---------------------------------------------------------------------------- CVE-2010-1889 The Kernel Transaction Manager ktm was introduced in Windows Vista...

Fedora 13 : drupal-6.19-1.fc13 (2010-12753)

DRUPAL-SA-CORE-2010-002 Remember to log in to your site as the admin user before upgrading this package. After upgrading the package, browse to http://host/drupal/update.php to run the upgrade script, for each site. Advisory ID: DRUPAL-SA-CORE-2010-002 Project: Drupal core Version: 5.x, 6.x Date:...

Microsoft Office Excel PivotTable Cache Data Record Buffer Overflow

Core Security - CoreLabs Microsoft Office Excel PivotTable Cache Data Record Buffer Overflow 1. Advisory Information Title: Microsoft Office Excel PivotTable Cache Data Record Buffer Overflow Advisory Id: CORE-2010-0407 Advisory URL:...

Allinta CMS 22.07.2010 - Multiple SQL Injections / Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/42320/info Allinta CMS is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...

Mini-stream Ripper v3.1.2.1 Buffer Overflow (DEP Bypass)

Exploit for windows platform in category local exploits ======================================================== Mini-stream Ripper v3.1.2.1 Buffer Overflow DEP Bypass ======================================================== / DISCLAIMER THIS PROGRAM IS NOT INTENDED TO BE USED ON OTHER COMPUTERS...

Mini-stream Ripper 3.1.2.1 - Local Buffer Overflow (DEP Bypass)

/ DISCLAIMER THIS PROGRAM IS NOT INTENDED TO BE USED ON OTHER COMPUTERS AND IT IS DESTINED FOR PERSONAL RESEARCH ONLY!!!! The programs are provided as is without any guarantees or warranty. The author is not responsible for any damage or losses of any kind caused by the use or misuse of the...

Apple iTunes 9.00.70 / 9.2.15 Cross Site Scripting

+===============================================================================+ + © 2000–2010 Itunes 9 & XSS Vulnerabilities + +===============================================================================+ Authors: Ivan Sanchez Date: 31/07/2010 Product: Itunes 9 Web:...

HP OpenView Network Node Manager (OV NNM) 7.53 - OvJavaLocale Buffer Overflow

HP OpenView Network Node Manager OV NNM 7.53 - OvJavaLocale Buffer Overflow HP OPENVIEW NNM OVJAVALOCALE BUFFER OVERFLOW VULNERABILITY 1. ADVISORY INFORMATION Title: HP OpenView NNM OvJavaLocale Buffer Overflow Vulnerability Advisory Id: CORE-2010-0608 Advisory URL:...

OpenTTD 'NetworkSyncCommandQueue()' Denial of Service Vulnerability

OpenTTD is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Says IE8 Weakness Not an Exploitable Flaw

Microsoft on Friday said that a weakness in Internet Explorer 8 identified by security researcher Ruben Santamarta recently is not an exploitable vulnerability, but rather a “technique for bypassing ASLR.” ASLR Address Space Layout Randomization is a memory protection that, along with DEP Data...

Wiki Web Help 0.28 SQL Injection

Version: v0.28 Possible all versions Vendor: Richard Bondi - http://wikiwebhelp.org Download: http://wikiwebhelp.org/release/wwh-0.2.8.zip Description: "The goal of this project is to create a help application that is editable by the community. Standard wiki systems are great for many application...

Joomla Jobs Pro Blind SQL Injection

Name : Joomla Jobs Pro BSqli Vulnerability Date : july 6,2010 Critical Level : HIGH vendor URL :http://www.instantphp.com/ Price:$105.00 Author : Sid3^effects aKa HaRi special thanks to : r0073r inj3ct0r.com,L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger greetz to :www.topsecure.net ,All ICW...

WikiWebHelp 0.28 - SQL Injection

Version: v0.28 Possible all versions Vendor: Richard Bondi - http://wikiwebhelp.org Download: http://wikiwebhelp.org/release/wwh-0.2.8.zip Description: "The goal of this project is to create a help application that is editable by the community. Standard wiki systems are great for many application...

Fedora 11 : drupal-views-6.x.2.11-1.fc11 (2010-10197)

Advisory ID: DRUPAL-SA-CONTRIB-2010-067 http://drupal.org/node/829840 Project: Views third-party module Version: 5.x, 6.x Date: 2010-June-16 Security risk: Less critical Exploitable from: Remote - Vulnerability: Multiple vulnerabilities -------- DESCRIPTION...