Microsoft Internet Explorer CVE-2015-1652 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

Microsoft Internet Explorer 'CAttrArray' Objects Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

Microsoft Internet Explorer CVE-2014-2774 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successfully exploiting this issue may allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will result in denial-of-service conditions. Internet Explorer ...

Microsoft Internet Explorer CVE-2014-2797 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successfully exploiting this issue may allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will result in denial-of-service conditions. Internet explorer...

AoA Mp4 converter 4.1.0 - ActiveX Stack Overflow Exploit

No description provided by source. Exploit Title: AoA Mp4 converter v4.1.0 Activex Date: Febrary 07 2011 Author: Carlos Mario Penagos Hollmann Software Link: http://www.aoamedia.com/AoAMP4Converter.exe Version: v4.1.0 Tested on: Windows xp sp3 running on VMware Fusion 3.1 and VirtualBox 3.2.8 htm...

Microsoft Internet Explorer iepeers.dll Use-After-Free Exploit (meta)

No description provided by source. ieiepeerspointer.rb Microsoft Internet Explorer iepeers.dll use-after-free exploit for the Metasploit Framework Tested successfully on the following platforms: - Microsoft Internet Explorer 7, Windows Vista SP2 - Microsoft Internet Explorer 7, Windows XP SP3 -...

Apache <= 2.2.6 'mod_negotiation' HTML Injection and HTTP Response Splitting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27409/info Apache 'modnegotiation' is prone to an HTML-injection and an HTTP response-splitting vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated...

Invision Power Board 3.0.0b5 Active XSS & Path Disclosure Vulns

No description provided by source. ================================================================================ Found : brainpillow Dork : Powered By IP.Board 3.0.0 Beta 5 Visit : brainpillow.cc, forum.antichat.ru, raz0r.name Greetz: slider, halkfild, m0nzt3r, c411k, ettee Mail :...

Adobe Flash Player 11.3 Font Parsing Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

Microsoft Internet Explorer CVE-2014-2768 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successfully exploiting this issue may allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will result in denial-of-service conditions. Internet explorer ...

Internet Explorer zero-day vulnerability actively being exploited in the wild

Security researchers at FireEye have detected a new series of drive-by attacks based on a new Internet Explorer zero-day vulnerability. The attackers breached a website based in the US to deploy the exploit code to conduct a classic watering hole attack. The discovery was announced just a few day...

Aladdin Knowledge Systems Ltd. PrivAgent - ActiveX Control Overflow

Aladdin Knowledge Systems Ltd. PrivAgent ActiveX Control Overflow // heap spray for IE7 //calc - 196 bytes var shellcode =...

IBM SPSS SamplePower C1Tab ActiveX Heap Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 HttpClients::IE,...

InduSoft Web Studio ISSymbol.ocx InternationalSeparator() Overflow

This Metasploit module exploits a heap overflow found in InduSoft Web Studio HttpClients::IE, :uaminver = "6.0", :uamaxver = "9.0", :javascript = true, :osname = OperatingSystems::WINDOWS, :rank = NormalRanking, :classid = "3c9dff6f-5cb0-422e-9978-d6405d10718f", :method = "InternationalSeparator"...

Crystal Reports CrystalPrintControl ActiveX ServerResourceVersion Property Overflow

This module exploits a heap based buffer overflow in the CrystalPrintControl ActiveX, while handling the ServerResourceVersion property. The affected control can be found in the PrintControl.dll component as included with Crystal Reports 2008. This module has been tested successfully on IE 6, 7...

Apple QuickTime 7.7.2 TeXML Style Element font-table Field Stack Buffer Overflow

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

HP ALM Remote Code Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 HttpClients::IE,...

Oracle AutoVue ActiveX Control SetMarkupMode Buffer Overflow

This module exploits a vulnerability found in the AutoVue.ocx ActiveX control. The vulnerability, due to the insecure usage of an strcpy like function in the SetMarkupMode method, when handling a specially crafted sMarkup argument, allows to trigger a stack based buffer overflow which leads to co...

Microsoft Windows - OLE Object File Handling Remote Code Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 "Microsoft Windows OLE Object File...

MS10-026 Microsoft MPEG Layer-3 Audio Stack Based Overflow

Exploit for windows platform in category remote exploits $Id: ms10026avinsamplespersec.rb 13555 2011-08-13 02:15:05Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more...