21 matches found
CVE-2012-10057
CVE-2012-10057 affects Lattice ispVM System v18.0.2 and is due to a buffer overflow when parsing the version attribute of the ispXCF XML tag in .xcf project files. This local, no-privilege path enables arbitrary code execution when a crafted .xcf is opened. Exploitation code/module exists (e.g., ...
Lattice-Semiconductor-PAC-Designer-6.21
Exploit: Lattice Semiconductor PAC-Designer 6.21 possibly all versions CVE: CVE-2012-2915 Author: b33f Ruben Boonen - http://www.fuzzysecurity.com/ OS: WinXP SP1 Software: http://www.latticesemi.com/products/designsoftware/pacdesigner/index.cfm filename="evil.PAC" PAC1 = """ 1 ispPAC-CLK5410D...
Lattice Semiconductor PAC-Designer 6.21 Symbol Value Buffer Overflow
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...
Lattice Semiconductor PAC-Designer 6.21 - (.PAC) Exploit
No description provided by source. !/usr/bin/python -w ------------------------------------------------------------------------------------ Exploit: Lattice Semiconductor PAC-Designer 6.21 possibly all versions CVE: CVE-2012-2915 Author: b33f Ruben Boonen - http://www.fuzzysecurity.com/ OS: WinXP...
Lattice Semiconductor PAC-Designer Symbol Value Buffer Overflow - Ver2 (CVE-2012-2915)
A buffer overflow vulnerability has been reported in Lattice Semiconductor PAC-Designer. The vulnerability is due to the improper handling of validation of specially crafted pac files. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the...
Lattice Semiconductor PAC-Designer Symbol Value Buffer Overflow (CVE-2012-2915)
A stack buffer overflow vulnerability has been reported in Lattice Semiconductor PAC-Designer. The vulnerability is due to the improper handling of validation of specially crafted pac files. Successful exploitation would result in execution of arbitrary code, but requires tricking a user into...
Lattice Semiconductor ispVM System XCF File Handling Overflow
A stack buffer overflow vulnerability has been reported in ispVM System. The vulnerability is due to the improper validation of specially crafted XCF files. A remote attacker can exploit this issue by enticing the victim to accept and open a specially crafted XCF file. Successful exploitation wou...
Lattice Diamond Programmer Buffer Overflow
Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Lattice Diamond Programmer Buffer Overflow 1. Advisory Information Title: Lattice Diamond Programmer Buffer Overflow Advisory ID: CORE-2012-0530 Advisory URL:...
Lattice Semiconductor PAC-Designer 6.21 Symbol Value Buffer Overflow
Exploit for windows platform in category local exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
Lattice Semiconductor PAC-Designer 6.21 - Symbol Value Buffer Overflow (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Lattice...
Lattice Semiconductor PAC-Designer 6.21 Symbol Value Buffer Overflow
This module exploits a vulnerability found in Lattice Semiconductor PAC-Designer 6.21. As a .pac file, when supplying a long string of data to the 'value' field under the 'SymbolicSchematicData' tag, it is possible to cause a memory corruption on the stack, which results in arbitrary code executi...
Lattice Semiconductor PAC-Designer 6.21 Symbol Value Buffer Overflow
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Lattice...
Lattice Semiconductor PAC-Designer 6.21 Overflow
!/usr/bin/python -w ------------------------------------------------------------------------------------ Exploit: Lattice Semiconductor PAC-Designer 6.21 possibly all versions CVE: CVE-2012-2915 Author: b33f Ruben Boonen - http://www.fuzzysecurity.com/ OS: WinXP SP1 Software:...
Lattice Semiconductor PAC-Designer 6.21 (*.PAC) Exploit
Exploit for windows platform in category local exploits !/usr/bin/python -w ------------------------------------------------------------------------------------ Exploit: Lattice Semiconductor PAC-Designer 6.21 possibly all versions CVE: CVE-2012-2915 Author: b33f Ruben Boonen -...
Lattice Semiconductor PAC-Designer 6.21 - .PAC Local Overflow
Lattice Semiconductor PAC-Designer 6.21 - .PAC Local Overflow !/usr/bin/python -w ------------------------------------------------------------------------------------ Exploit: Lattice Semiconductor PAC-Designer 6.21 possibly all versions CVE: CVE-2012-2915 Author: b33f Ruben Boonen -...
Lattice Semiconductor PAC-Designer 6.21 - '.PAC' Local Overflow
!/usr/bin/python -w ------------------------------------------------------------------------------------ Exploit: Lattice Semiconductor PAC-Designer 6.21 possibly all versions CVE: CVE-2012-2915 Author: b33f Ruben Boonen - http://www.fuzzysecurity.com/ OS: WinXP SP1 Software:...
Lattice Semiconductor ispVM System XCF File Handling Overflow
This module exploits a vulnerability found in ispVM System 18.0.2. Due to the way ispVM handles .xcf files, it is possible to cause a buffer overflow with a specially crafted file, when a long value is supplied for the version attribute of the ispXCF tag. It results in arbitrary code execution...
CVE-2012-2915
Stack-based buffer overflow in Lattice Semiconductor PAC-Designer 6.2.1344 allows remote attackers to execute arbitrary code via a long string in a Value tag in a SymbolicSchematicData definition tag in PAC Design .pac file...
Stack overflow
Stack-based buffer overflow in Lattice Semiconductor PAC-Designer 6.2.1344 allows remote attackers to execute arbitrary code via a long string in a Value tag in a SymbolicSchematicData definition tag in PAC Design .pac file...
CVE-2012-2915
Stack-based buffer overflow in Lattice Semiconductor PAC-Designer 6.2.1344 allows remote attackers to execute arbitrary code via a long string in a Value tag in a SymbolicSchematicData definition tag in PAC Design .pac file...