17 matches found
EUVD-2018-18388
Malware in sbrugna...
EUVD-2016-10480
Malware in sbrugna...
Exploit for Integer Overflow or Wraparound in Tesla Model_3_Firmware
CVE-2025-2082 – Function Pointer Overwrite PoV VCSEC-style...
CVE-2012-10055
CVE-2012-10055 affects ComSndFTP FTP Server v1.3.7 Beta. The vulnerability is a format-string flaw in the handling of the USER command that can overwrite a hardcoded function pointer (WSACleanup from Ws2_32.dll) in memory, enabling an attacker to redirect control flow and bypass DEP via a ROP cha...
CVE-2012-10055 ComSndFTP v1.3.7 Beta USER Format String RCE
ComSndFTP FTP Server version 1.3.7 Beta contains a format string vulnerability in its handling of the USER command. By sending a specially crafted username containing format specifiers, a remote attacker can overwrite a hardcoded function pointer in memory specifically WSACleanup from Ws232.dll...
SUSE-SU-2020:1873-1 Security update for LibVNCServer
This update for LibVNCServer fixes the following issues: - CVE-2017-18922: Fixed an issue which could have allowed to an attacker to pre-auth overwrite a function pointer which subsequently used leading to potential remote code execution bsc1173477...
Citrix Provisioning Services 7.x < 7.12 Multiple Vulnerabilities (CTX219580)
The version of Citrix Provisioning Services running on the remote Windows host is either 7.x prior to 7.12 or 7.6 LTSR prior to 7.6.4 LTSR. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists due to an overflow condition caused by improper...
Sybase Advantage Data Architect - "*.SQL" Format Heap Oveflow
No description provided by source. Exploit Title: Sybase Advantage Data Architect .SQL Format Heap Oveflow RCE Date: 2010-10-16 Author: d0lc3 @rmallof - http://elotrolad0.blogspot.com/ Software Link: http://www.sybase.com/products/databasemanagement/advantagedatabaseserver/data-architect-utility...
Telnetd encrypt_keyid: Remote Root function pointer overwrite
No description provided by source. / telnetd-encryptkeyid.c Mon Dec 26 20:37:05 CET 2011 Copyright 2011 Jaime Penalba Estebanez NighterMan Copyright 2011 Gonzalo J. Carracedo BatchDrake [email protected] - [email protected] [email protected] - [email protected] / / // / / / // /\ \...
Microsoft Publisher Function Pointer Overwrite (MS11-091) - Ver2 (CVE-2011-1508)
A memory corruption vulnerability has been reported in Microsoft Publisher. The vulnerability is due to the way Microsoft Publisher does not properly handle memory for function pointers while parsing specially crafted Publisher files. A remote attacker may exploit this vulnerability by enticing a...
CVE-2012-0257
Heap-based buffer overflow in the WWCabFile ActiveX component in the Wonderware System Platform in Invensys Wonderware Application Server 2012 and earlier, Foxboro Control Software 3.1 and earlier, InFusion CE/FE/SCADA 2.5 and earlier, Wonderware Information Server 4.5 and earlier, ArchestrA...
Heap overflow
Heap-based buffer overflow in the WWCabFile ActiveX component in the Wonderware System Platform in Invensys Wonderware Application Server 2012 and earlier, Foxboro Control Software 3.1 and earlier, InFusion CE/FE/SCADA 2.5 and earlier, Wonderware Information Server 4.5 and earlier, ArchestrA...
CVE-2012-0257
Heap-based buffer overflow in the WWCabFile ActiveX component in the Wonderware System Platform in Invensys Wonderware Application Server 2012 and earlier, Foxboro Control Software 3.1 and earlier, InFusion CE/FE/SCADA 2.5 and earlier, Wonderware Information Server 4.5 and earlier, ArchestrA...
[SECURITY] [DSA 2357-1] evince security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2357-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez December 03, 2011 http://www.debian.org/security/faq -...
Sybase Advantage Data Architect Heap Overflow
Exploit Title: Sybase Advantage Data Architect ".SQL" Format Heap Oveflow RCE Date: 2010-10-16 Author: d0lc3 @rmallof - http://elotrolad0.blogspot.com/ Software Link: http://www.sybase.com/products/databasemanagement/advantagedatabaseserver/data-architect-utility Version: 10.0 Tested on: Windows ...
MagicISO 5.4 (build239) - .cue Heap Overflow (PoC)
MagicISO 5.4 build239 - .cue Heap Overflow PoC !/usr/bin/env ruby Credits to n00b for finding this bug. Magic iso has a stacked based buffer over-flow when We pass an overly-long file name inside the .cue file We are able to control alot of the registers so Command execution is possible,But im...
pkc001.txt
/ pkc001.txt / -= SECURITY ADVISORY 001 =- | \ www.pkcrew.org / \ \ | / \ | | | | | / | | | | | / | | | | / | | / / | | | / | Application : Oops proxy server 1.4.22 1.4.6 and maybe prior Type: heap buffer overflow --- The problem --- Function listparser in ftputils.c : line is the line sent by th...