[IA48] Photodex ProShow Producer v5.0.3297 Insecure Library Loading Vulnerability

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Uncontrolled Search Path Element CWE-427 Date found: 2013-02-23 Date published: 2013-02-23 CVSSv2 Score: 4,4...

Photodex ProShow Producer 5.0.3297 Insecure Library Load

Photodex ProShow Producer version 5.0.3297 suffers from an insecure library loading vulnerability. Proof of concept code included. 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Uncontrolled Search Path Element CWE-427 Date...

Photodex ProShow Producer 5.0.3297 Insecure Library Load

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Uncontrolled Search Path Element CWE-427 Date found: 2013-02-23 Date published: 2013-02-23 CVSSv2 Score: 4,4...

[IA46] Photodex ProShow Producer v5.0.3297 ColorPickerProc() Memory Corruption

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Improper Restriction of Operations within the Bounds of a Memory BufferCWE-119 Date found: 2013-02-14 Date published: 2013-02-14...

Photodex ProShow Producer 5.0.3297 Buffer Overflow

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Stack-based Buffer Overflow CWE-121 Date found: 2013-02-16 Date published: 2013-02-16 CVSSv2 Score: 6,8 AV:N/AC:M/Au:N/C:P/I:P/A:P...

Photodex ProShow Producer 5.0.3297 Memory Corruption

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Improper Restriction of Operations within the Bounds of a Memory BufferCWE-119 Date found: 2013-02-14 Date published: 2013-02-14...

Photodex ProShow Producer 5.0.3297 - .pxs Memory Corruption

Photodex ProShow Producer 5.0.3297 - .pxs Memory Corruption !/usr/bin/python Exploit Title: Photodex ProShow Producer v5.0.3297 .pxs Memory Corruption Vulnerability Version: = 5.0.3297 Date: 2013-02-14 Author: Julien Ahrens @MrTuxracer Homepage: http://www.inshell.net Software Link:...

[IA33] Serva v2.0.0 DNS Server Remote Denial of Service

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Serva Vendor URL: www.vercot.com Type: Uncaught Exception CWE-248 Date found: 2012-07-08 Date published: 2013-01-14 CVSSv2 Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P CVE: - 2. CREDITS ----------...

Photodex ProShow Producers 5.0.3297 Local Buffer Overflow Vulnerability

Photodex ProShow Producer version 5.0.3297 suffers from a stack-based buffer overflow vulnerability. 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Stack-based Buffer Overflow CWE-121 Date found: 2013-01-26 Date published:...

Photodex ProShow Producers 5.0.3297 Buffer Overflow

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Stack-based Buffer Overflow CWE-121 Date found: 2013-01-26 Date published: 2013-01-26 CVSSv2 Score: 4,4 AV:L/AC:M/Au:N/C:P/I:P/A:P...

Serva 2.0.0 DNS Server Denial Of Service

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Serva Vendor URL: www.vercot.com Type: Uncaught Exception CWE-248 Date found: 2012-07-08 Date published: 2013-01-14 CVSSv2 Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P CVE: - 2. CREDITS ----------...

Serva 2.0.0 HTTP Server Denial Of Service

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Serva Vendor URL: www.vercot.com Type: Uncaught Exception CWE-248 Date found: 2012-12-07 Date published: 2013-01-14 CVSSv2 Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P CVE: - 2. CREDITS ----------...

Zoner Photo Studio 15 Buffer Overflow Vulnerability

Zoner Photo Studio 15 builds 2 and 3 suffer from a stack-based buffer overflow vulnerability. Full proof of concept code included. 1. ADVISORY INFORMATION ----------------------- Product: Zoner Photo Studio Vendor URL: www.zoner.com Type: Stack-based Buffer Overflow CWE-121 Date found: 2012-10-17...

Zoner Photo Studio 15 Buffer Overflow

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Zoner Photo Studio Vendor URL: www.zoner.com Type: Stack-based Buffer Overflow CWE-121 Date found: 2012-10-17 Date published: 2012-11-09 CVSSv2 Score: 4,4 AV:L/AC:M/Au:N/C:P/I:P/A:P CVE: - 2...

NCMedia Sound Editor Pro 7.5.1 Buffer Overflow

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Sound Editor Pro v7.5.1 Vendor URL: www.soundeditorpro.com Type: Stack-based Buffer Overflow CWE-121 Date found: 2012-08-15 Date published: 2012-09-16 CVSSv2 Score: 6,9...

aoop CMS 0.3.6 - Multiple Vulnerabilities

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Aoop CMS Vendor URL: www.annonyme.de Type: Cross-site Scripting CWE-79, SQL-Injection CWE-89 Date found: 2012-04-07 Date published: 2012-08-24 CVSSv2 Score: 7,5 AV:N/AC:L/Au:N/C:P/I:P/A:P...

aoop CMS 0.3.6 - Multiple Vulnerabilities

aoop CMS 0.3.6 - Multiple Vulnerabilities Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Aoop CMS Vendor URL: www.annonyme.de Type: Cross-site Scripting CWE-79, SQL-Injection CWE-89 Date found: 2012-04-07 Date published: 2012-08-24 CVSSv2...

Aoop CMS 0.3.6 SQL Injection / Cross Site Scripting

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Aoop CMS Vendor URL: www.annonyme.de Type: Cross-site Scripting CWE-79, SQL-Injection CWE-89 Date found: 2012-04-07 Date published: 2012-08-24 CVSSv2 Score: 7,5 AV:N/AC:L/Au:N/C:P/I:P/A:P...

Photodex ProShow Producer 5.0.3256 - Local Buffer Overflow

Exploit Title: Photodex ProShow Producer v5.0.3256 - Local Buffer Overflow Exploit Date: 22/07/2012 Author: mr.pr0n @pr0n Homepage: http://ghostinthelab.wordpress.com/ Software Link: http://files.photodex.com/release/pspro503256.exe Version: v5.0.3256 Tested on: Windows XP SP3...

Photodex ProShow Producer v5.0.3256 Local Buffer Overflow Exploit

Exploit for windows platform in category local exploits Exploit Title: Photodex ProShow Producer v5.0.3256 - Local Buffer Overflow Exploit Date: 22/07/2012 Author: mr.pr0n @pr0n Homepage: http://ghostinthelab.wordpress.com/ Software Link: http://files.photodex.com/release/pspro503256.exe Version:...