Ubuntu: Security Advisory (USN-748-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Safari 3.2.2 XML Crash Exploit

Author : Ahmed Obied [email protected] - Tested using: - Safari 3.2.2 on Windows - Safari 4 BETA on Windows Usage : python safari.py port import sys, socket from BaseHTTPServer import HTTPServer, BaseHTTPRequestHandler class RequestHandlerBaseHTTPRequestHandler: def getexploitself: exploit = ...

Apple Safari 3.2.2/4b - nested elements XML Parsing Remote Crash

Author : Ahmed Obied [email protected] - Tested using: - Safari 3.2.2 on Windows - Safari 4 BETA on Windows Usage : python safari.py port import sys, socket from BaseHTTPServer import HTTPServer, BaseHTTPRequestHandler class RequestHandlerBaseHTTPRequestHandler: def getexploitself: exploit = ...

Microsoft Internet Explorer 7 - Memory Corruption (MS09-002)

Microsoft Internet Explorer 7 - Memory Corruption MS09-002 Author : Ahmed Obied [email protected] - Based on the code found by str0ke in the wild for MS09-002 - Tested using Internet Explorer 7.0.5730.11 on Windows XP SP2 Usage : python iems09002.py port import sys, socket from BaseHTTPServer...

MS Internet Explorer 7 Memory Corruption Exploit (MS09-002) (fast)

Exploit for unknown platform in category remote exploits ================================================================== MS Internet Explorer 7 Memory Corruption Exploit MS09-002 fast ================================================================== Author : Ahmed Obied email protected - Base...

Adobe util.printf() Buffer Overflow

This module exploits a buffer overflow in Adobe Reader and Adobe Acrobat Professional 'Adobe util.printf Buffer Overflow', 'Description' = %q This module exploits a buffer overflow in Adobe Reader and Adobe Acrobat Professional MSFLICENSE, 'Author' = 'MC', 'Didier Stevens ' , 'References' = 'CVE'...

Zenturi ProgramChecker ActiveX Control Arbitrary File Download

This module allows remote attackers to place arbitrary files on a users file system via the Zenturi ProgramChecker sasatl.dll 1.5.0.531 ActiveX Control. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

CVE-2008-1891

Directory traversal vulnerability in WEBrick in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2, when using NTFS or FAT filesystems, allows remote attackers to read arbitrary CGI files via a trailing 1 + plus, 2 %2b encode...

Ruby 1.8.6 (Webrick Httpd 1.3.1) Directory Traversal Vulnerability

No description provided by source. ------------------------------------------------------------------------------------ Digital Security Research Group DSecRG Advisory DSECRG-08-018...

Cross site scripting

Cross-site scripting XSS vulnerability in the embedded webserver in Daniel Naber LanguageTool before 0.8.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving an error message, possibly the demultiplex method in HTTPServer.java...

AOL SuperBuddy ActiveX Control Remote Code Execution Exploit (meta)

No description provided by source. require 'msf/core' module Msf class Exploits::Windows::Browser::AOLSuperBuddyLinkSBIcons 'AOL Sb.Superbuddy vulnerability', 'Description' = %q This module exploits a flaw in AOL Sb.SuperBuddy. We stole this code from a pre-existing metasploit module. ,...

MS06-057 Microsoft Internet Explorer WebViewFolderIcon setSlice() Overflow

This module exploits a flaw in the WebViewFolderIcon ActiveX control included with Windows 2000, Windows XP, and Windows 2003. This flaw was published during the Month of Browser Bugs project MoBB 18. This module requires Metasploit: https://metasploit.com/download Current source:...

VUPlayer M3U/PLS播放列表解析缓冲区溢出漏洞

VUPlayer是Windows平台下的一款免费音频播放器，支持多种格式。 VUPlayer在处理畸形的M3U及PLS文件时存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞在用户机器上执行任意指令。 VUPlayer在解析包含有超长文件名（大于1012字节）的M3U和PLS播放列表文件时存在栈溢出漏洞。如果用户受骗加载了恶意的播放列表文件的话就会触发这个漏洞，导致执行任意指令。 VUPlayer VUPlayer 2.44 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.vuplayer.com/vuplayer.php...

Mabry Software HTTPServer/X 1.0 0.047 - File Disclosure

source: https://www.securityfocus.com/bid/8166/info Mabry Software HTTPServer/X is prone to directory traversal attacks. This could be exploited by a remote attacker to gain access to sensitive files on a system hosting the web server implementation...