Websites Conducting Port Scans

Security researcher Charlie Belmer is reporting that commercial websites such as eBay are conducting port scans of their visitors. Looking at the list of ports they are scanning, they are looking for VNC services being run on the host, which is the same thing that was reported for bank sites. I...

FirePHP Firefox Plugin 0.7.1 - Remote Command Execution

No description provided by source. Exploit Title: Firephp firefox plugin RCE Date: 17/04/2013 Exploit Author: Wireghoul Vendor Homepage: www.firephp.org Software Link: https://addons.mozilla.org/en-US/firefox/addon/firephp/versions/ Version: All versions up to and including 0.7.1 Tested on: Windo...

DX Studio Player < 3.0.29.1 Firefox plug-in Command Injection Vuln

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ DX Studio Player Firefox plug-in command injection 1. Advisory Information Title: DX Studio Player Firefox plug-in command injectio...

AOL Products downloadUpdater2 Plugin SRC Parameter Remote Code Execution

No description provided by source. AOL Products downloadUpdater2 Plugin SRC Parameter Remote Code Execution tested against: Microsoft Windows Vista sp2 Microsoft Windows Server 2003 r2 sp2 Mozilla Firefox 14.0.1 download url:...

Foxit Reader <= 5.4.4.1128 Firefox Plugin npFoxitReaderPlugin.dll Stack Buffer Overflow

No description provided by source. ?php / Foxit Reader = 5.4.4.1128 Plugin for Firefox npFoxitReaderPlugin.dll Overlong Query String Remote Stack Buffer Overflow PoC --------------------------- rgod listener Tested against Microsoft Windows Mozilla Firefox 17.0.1 Foxit Reader 5.4.3.0920 Foxit...

RHEL 5 / 6 : flash-plugin (RHSA-2013:1818)

An updated Adobe Flash Player package that fixes two security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give...

FirePHP Firefox Plugin 0.7.1 - Remote Command Execution

Exploit Title: Firephp firefox plugin RCE Date: 17/04/2013 Exploit Author: Wireghoul Vendor Homepage: www.firephp.org Software Link: https://addons.mozilla.org/en-US/firefox/addon/firephp/versions/ Version: All versions up to and including 0.7.1 Tested on: Windows 7 Advisory:...

FirePHP Firefox Plugin 0.7.1 - Remote Command Execution

FirePHP Firefox Plugin 0.7.1 - Remote Command Execution Exploit Title: Firephp firefox plugin RCE Date: 17/04/2013 Exploit Author: Wireghoul Vendor Homepage: www.firephp.org Software Link: https://addons.mozilla.org/en-US/firefox/addon/firephp/versions/ Version: All versions up to and including...

Foxit Reader Plugin for Firefox URL Filename Stack Buffer Overflow

Added: 01/12/2013 BID: 57174 OSVDB: 89030 Background Foxit Reader is a free PDF reader for Microsoft Windows systems. Problem Foxit Reader plugin for Firefox npFoxitReaderPlugin.dll is vulnerable to remote code execution as a result of failure to check boundary conditions when processing a URL...

A lot of the rebate built Station system V8 installation vulnerability-vulnerability warning-the black bar safety net

Brief description of the A lot of the rebate built Station system after installing the site, will put the install folder of the install. php renamed the install. php. lock, but in this file we can access to, so use the capture tool, you can reinstall the site. The use of Description 1, FireFox to...

php.s3.to Upload Script Shell Upload

Explit Title : "PHP S3 TO" Remote File Upload Download : http://php.s3.to/script.php Author : MR.XpR Test on : LinuX R3dH4t Bug discovered by : IRANHACK SecuRITY TEAM + Exploit : ProtocolSite.CoM/dir/up/upload.php -------------------------------------------------------------- + Load files From :...

CVE-2011-2996

Unspecified vulnerability in the plugin API in Mozilla Firefox 3.6.x before 3.6.23 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

spice-xpi: unitialized pointer writes possible when getting plugin properties

The SPICE Firefox plug-in spice-xpi 2.4, 2.3, 2.2, and possibly other versions allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via vectors related to 1 plugin/nsScriptablePeer.cpp and 2 plugin/plugin.cpp, which trigger multiple uses of an uninitializ...

Real Networks RealPlayer SP 'RecordClip' Method Remote Code Execution

Exploit for windows platform in category remote exploits Written by Sean de Regge seanderegge hotmail.com Exploit for the parameter injection bug in Realplayers RecordClip activeX function and firefox plugin http://www.zerodayinitiative.com/advisories/ZDI-10-211/ C:\Program...

Real Networks RealPlayer SP - &#039;RecordClip&#039; Method Remote Code Execution

Sources: https://www.securityfocus.com/bid/44443/info http://packetstormsecurity.org/files/view/97522/recordingmanager-ie.txt Written by Sean de Regge seanderegge hotmail.com Exploit for the parameter injection bug in Realplayers RecordClip activeX function and firefox plugin...

RealNetworks Realplayer RecordClip Parameter Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the browser plugins provided by...

spice-xpi/qspice-client unix socket race

Race condition in the SPICE aka spice-xpi plug-in 2.2 for Firefox allows local users to obtain sensitive information, and conduct man-in-the-middle attacks, by providing a UNIX socket for communication between this plug-in and the client aka qspice-client in qspice 0.3.0, and then accessing this...

spice-xpi/qspice-client unix socket race

Race condition in the SPICE aka spice-xpi plug-in 2.2 for Firefox allows local users to obtain sensitive information, and conduct man-in-the-middle attacks, by providing a UNIX socket for communication between this plug-in and the client aka qspice-client in qspice 0.3.0, and then accessing this...

Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:075)

This updates provides a security update to the OpenOffice.org described as follow : OpenOffice's xmlsec uses a bundled Libtool which might load .la file in the current working directory allowing local users to gain privileges via a Trojan horse file. For enabling such vulnerability xmlsec has to...

Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:035)

This updates provides a new OpenOffice.org version 3.1.1. It holds security and bug fixes described as follow : An integer underflow might allow remote attackers to execute arbitrary code via crafted records in the document table of a Word document, leading to a heap-based buffer overflow...