Audio File Library 0.2.6 - libaudiofile 'msadpcm.c .WAV' File Processing Buffer Overflow

source: https://www.securityfocus.com/bid/33066/info Audio File Library 'libaudiofile' is prone to a heap-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data. An attacker can exploit this issue to execute arbitrary machine code in the context of...

PowerStrip 3.84 - pstrip.sys Local Privilege Escalation

PowerStrip 3.84 - pstrip.sys Local Privilege Escalation //////////////////////////////////////////////////////////////////////////////////// // +----------------------------------------------------------------------------+ // // | | // // | EnTech Taiwan - http://www.entechtaiwan.com/ | // // | |...

CVE-2008-6528

creationtimestamp| type| source ---|---|--- 2008-12-12 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/7442...

CVE-2008-5559

creationtimestamp| type| source ---|---|--- 2008-12-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/7398...

BitDefender - Module pdf.xmd Infinite Loop Denial of Service (PoC)

BitDefender - Module pdf.xmd Infinite Loop Denial of Service PoC Deny Of Service and infinite loop in BitDefender module pdf.xmd / ProTeuS @ cih.ms / tested on pdf.xmd BitDefender's pdf engine by Alexandru Matei 0.1,Oct 8 2008, CRC32=A393F805 and on pdf.xmd last update by the moment of publicatio...

VBA32 Personal AntiVirus 3.12.8.x - Malformed Archive Denial of Service

------------------------------------------------------------------------------------------------------------------------------ VBA32 Personal Antivirus 3.12.8.x malformed archive Denial of Service PoC Summary: Antivirus program for personal computers running Windows which is a reliable and, it is...

K-Lite Mega Codec Pack 3.5.7.0 - Local Windows Explorer Denial of Service (PoC)

K-Lite Mega Codec Pack 3.5.7.0 - Local Windows Explorer Denial of Service PoC K-Lite Mega Codec Pack based Local Windows Explorer DOS PoC. Version:3.5.7.0 "vsfilter.dll"Version 1.0.1.4 that comes bundled with the above Codec Pack crashes when we try to use,select or even highlight the attached...

K-Lite Mega Codec Pack 3.5.7.0 - Local Windows Explorer Denial of Service (PoC)

K-Lite Mega Codec Pack based Local Windows Explorer DOS PoC. Version:3.5.7.0 "vsfilter.dll"Version 1.0.1.4 that comes bundled with the above Codec Pack crashes when we try to use,select or even highlight the attached "Test7.flv" file in Windows Explorer,causing Explorer to Crash. Greetz fly out t...

CVE-2008-6402

creationtimestamp| type| source ---|---|--- 2008-09-23 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6539...

CVE-2008-5097

creationtimestamp| type| source ---|---|--- 2008-09-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6501...

Epic Games Unreal Engine 436 - Multiple Format String Vulnerabilities

Epic Games Unreal Engine 436 - Multiple Format String Vulnerabilities source: https://www.securityfocus.com/bid/31141/info Unreal Engine is prone to multiple remote format-string vulnerabilities. Attackers can exploit the issues to execute arbitrary code within the context of a client application...

Netrw Vim Script - s:BrowserMaps() Command Execution

Netrw Vim Script - s:BrowserMaps Command Execution source: https://www.securityfocus.com/bid/30254/info Netrw is prone to a command-execution vulnerability because the application fails to sufficiently sanitize user-supplied data. Successfully exploiting this issue can allow an attacker to execut...

CVE-2008-6813

creationtimestamp| type| source ---|---|--- 2008-07-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5998...

CVE-2008-7171

creationtimestamp| type| source ---|---|--- 2008-06-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5873...

SNMPv3 - HMAC Validation error Remote Authentication Bypass

SNMPv3 - HMAC Validation error Remote Authentication Bypass snmpv3exp.sh exploit the vulnerability described in CVE-2008-0960, the HMAC check problem on multiple vendor Copyright c 2008 @ Mediaservice.net Srl. All rights reserved Wrote by Maurizio Agazzini http://lab.mediaservice.net/...

CVE-2008-6419

creationtimestamp| type| source ---|---|--- 2008-05-31 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5701...

OpenSSL 0.9.8c-1 0.9.8g-9 (Debian and Derivatives) - Predictable PRNG Brute Force SSH (Ruby)

OpenSSL 0.9.8c-1 0.9.8g-9 Debian and Derivatives - Predictable PRNG Brute Force SSH Ruby !/usr/bin/ruby Debian SSH Key Tester L4teral This tool helps to find user accounts with weak SSH keys that should be regenerated with an unaffected version of openssl. You will need the precalculated keys...

OpenSSL 0.9.8c-1 < 0.9.8g-9 (Debian and Derivatives) - Predictable PRNG Brute Force SSH

the debian openssl issue leads that there are only 65.536 possible ssh keys generated, cause the only entropy is the pid of the process generating the key. This leads to that the following perl script can be used with the precalculated ssh keys to brute force the ssh login. It works if such a key...

SMF 1.1.4 - Audio CAPTCHA Security Bypass

source: https://www.securityfocus.com/bid/28866/info SMF Simple Machine Forum is prone to a security-bypass vulnerability that occurs in the audio CAPTCHA protocol. Successfully exploiting this issue may allow attackers to send unsolicited spam or perform other automated attacks...

Apache Tomcat Connector jk2-2.0.2 mod_jk2 - Remote Overflow

Apache Tomcat Connector jk2-2.0.2 modjk2 - Remote Overflow / Fedora Core 6,7,8 exec-shield based Apache Tomcat Connector jk2-2.0.2modjk2 remote overflow exploit by INetCop Security Advanced exploitation in exec-shield Fedora Core case study URL: http://www.milw0rm.com/papers/151 IOActive Security...