HPSBPI02698 SSRT100404 rev.3 - HP Easy Printer Care Software Running on Windows, Remote Execution of Arbitrary Code

Potential Security Impact Remote execution of arbitrary code VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP Easy Printer Care Software Running on Windows. The vulnerability can be remotely exploited to write arbitrary files to the system and execute them via...

PHPFood CMS 2.00 SQL Injection

PhpFood CMS restaurant.php?id= SQL Injection Vulnerability Author : kaMtiEz [email protected] / / Homepage : http://www.indonesiancoder.com / http://exploit-id.com / http://magelangcyber.web.id Date : 3 July, 2011 Software Information + Vendor : http://www.phpfood.com/ + Download :...

When Angry Birds Attack: Android Edition

It’s been about six months since I reported a vulnerability in the Android mobile platform that allowed the unprompted installation of arbitrary applications with arbitrary permissions on a victim’s device. While the vulnerability has long been fixed on Android handsets around the world, I’ve yet...

BarCodeWiz ActiveX LoadProperties Buffer Overflow

Added: 05/23/2011 CVE: CVE-2010-2932 BID: 42097 OSVDB: 66882 Background BarCodeWiz Barcode ActiveX Control is a tool for generating barcodes in Microsoft Office documents, and for Visual Basic, Visual C++, VB.NET, C, or Delphi developer looking to include barcodes in programs. Problem The...

BarCodeWiz ActiveX LoadProperties Buffer Overflow

Added: 05/23/2011 CVE: CVE-2010-2932 BID: 42097 OSVDB: 66882 Background BarCodeWiz Barcode ActiveX Control is a tool for generating barcodes in Microsoft Office documents, and for Visual Basic, Visual C++, VB.NET, C, or Delphi developer looking to include barcodes in programs. Problem The...

CVE-2011-2147

Openswan 2.2.x does not properly restrict permissions for 1 /var/run/starter.pid, related to starter.c in the IPsec starter, and 2 /var/lock/subsys/ipsec, which allows local users to kill arbitrary processes by writing a PID to a file, or possibly bypass disk quotas by writing arbitrary data to a...

Design/Logic Flaw

Openswan 2.2.x does not properly restrict permissions for 1 /var/run/starter.pid, related to starter.c in the IPsec starter, and 2 /var/lock/subsys/ipsec, which allows local users to kill arbitrary processes by writing a PID to a file, or possibly bypass disk quotas by writing arbitrary data to a...

CVE-2011-1784

CVE-2011-1784 concerns keepalived 1.2.2 and earlier, where pidfile_write creates /var/run/*.pid files (keepalived.pid, checkers.pid, vrrp.pid) with 0666 permissions. This allows local users to write to these PID files and potentially kill arbitrary processes. Connected advisories show that update...

CVE-2011-1784

The pidfilewrite function in core/pidfile.c in keepalived 1.2.2 and earlier uses 0666 permissions for the 1 keepalived.pid, 2 checkers.pid, and 3 vrrp.pid files in /var/run/, which allows local users to kill arbitrary processes by writing a PID to one of these files...

win32/xp sp3 Force Kill explorer.exe process Shellcode 73 Bytes

Exploit Title: win32/xp sp3 Force Kill explorer.exe process Shellcode 73 Bytes + Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + Category : win32-Shellcodes + Tested on : Windows Xp 32 bit 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0...

Multiple ActiveX components security vulnerabilities

kill bit update for multiple components of different vendors...

CVE-2011-1137

Integer overflow in the modsftp aka SFTP module in ProFTPD 1.3.3d and earlier allows remote attackers to cause a denial of service memory consumption leading to OOM kill via a malformed SSH message...

CVE-2011-1137

Integer overflow in the modsftp aka SFTP module in ProFTPD 1.3.3d and earlier allows remote attackers to cause a denial of service memory consumption leading to OOM kill via a malformed SSH message...

Integer overflow

Integer overflow in the modsftp aka SFTP module in ProFTPD 1.3.3d and earlier allows remote attackers to cause a denial of service memory consumption leading to OOM kill via a malformed SSH message...

CVE-2011-1137

Integer overflow in the modsftp aka SFTP module in ProFTPD 1.3.3d and earlier allows remote attackers to cause a denial of service memory consumption leading to OOM kill via a malformed SSH message...

CVE-2011-1137

CVE-2011-1137 is an integer overflow in ProFTPD’s mod_sftp that affects 1.3.3d and earlier, triggered by a malformed SSH message and causing memory exhaustion/DoS. The issue is in the mod_sftp code path, with remote attackers able to induce high memory use potentially leading to OOM. Public detai...

CVE-2011-1137

Integer overflow in the modsftp aka SFTP module in ProFTPD 1.3.3d and earlier allows remote attackers to cause a denial of service memory consumption leading to OOM kill via a malformed SSH message...

Avira AntiVirus QUA File Crash

!/usr/bin/perl ================================================================================= | | Title : Avira AntVir QUA file in avcenter.exe Local Crash PoC | | Author : KedAns-Dz | | email : [email protected] | | Home : HMD/AM 30500/04300 - Algeria -00213555248701 | | Web Site : /-\ ... | ...

Amid Protests, Egypt Severs Ties to Internet

Amidst growing popular protests, Egypt has been severed from the Internet, according to reports from Intenet monitors and reporters within the country. The Associated Press and Reuters both confirmed reports of widespread outtages within Egypt affecting customers of all of the country’s main ISPs...

[DSECRG-00143] SAP Crystal Reports 2008 - ActiveX insecure methods

DSECRG-11-002 Internal DSECRG-00143 SAP Crystal Report Server 2008 scriptinghelpers.dll ActiveX component - Insecure methods The component contains insecure methods by which you can overwrite any file in the OS, run the executable file, kill process, delete the file. Application: SAP Crystal Repo...