153 matches found
Subversion 0.3.7/1.0.0 Remote Buffer Overflow Exploit
No description provided by source. / hoagiesubversion.c Remote exploit against Subversion-Servers. Author: greuff [email protected] Tested on Subversion 1.0.0 and 0.37 Algorithm: This is a two-stage exploit. The first stage overflows a buffer on the stack and leaves us 60 bytes of machine code to be...
Google Android Web Browser - .GIF File Heap Buffer Overflow
Google Android Web Browser - .GIF File Heap Buffer Overflow source: https://www.securityfocus.com/bid/28005/info Android Web Browser is prone to a heap-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized...
Surgemail 3.0 - Real CGI executables Remote Buffer Overflow
Surgemail 3.0 - Real CGI executables Remote Buffer Overflow source: https://www.securityfocus.com/bid/27992/info SurgeMail is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input. Successfully exploiting this issue allows remote attackers t...
FreeBSD : xorg -- multiple vulnerabilities (fe2b6597-c9a4-11dc-8da8-0008a18a9961)
Matthieu Herrb of X.Org reports : Several vulnerabilities have been identified in server code of the X window system caused by lack of proper input validation on user controlled data in various parts of the software, causing various kinds of overflows. Exploiting these overflows will crash the X...
Common UNIX Printing System 1.21.3 SNMP - asn1_get_string() Remote Buffer Overflow
Common UNIX Printing System 1.21.3 SNMP - asn1getstring Remote Buffer Overflow source: https://www.securityfocus.com/bid/26917/info Common UNIX Printing System CUPS is prone to a remote buffer-overflow vulnerability because the software fails to properly bounds-check user-supplied data before...
Common UNIX Printing System 1.2/1.3 SNMP - 'asn1_get_string()' Remote Buffer Overflow
source: https://www.securityfocus.com/bid/26917/info Common UNIX Printing System CUPS is prone to a remote buffer-overflow vulnerability because the software fails to properly bounds-check user-supplied data before copying it to an insufficiently sized buffer. Exploiting this issue allows attacke...
SpeedFan - 'Speedfan.sys' Local Privilege Escalation
source: https://www.securityfocus.com/bid/26123/info SpeedFan is prone to a local privilege-escalation vulnerability. An attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level privileges. Successfully exploiting this issue will result in the complete compromise of...
Microsoft Windows Kodak Image Viewer Remote Code Execution Vulnerability
Description Microsoft Windows Kodak Image Viewer is prone to a remote code-execution vulnerability because it fails to properly bounds-check user-supplied data. Remote attackers can exploit this issue to execute arbitrary machine code in the context of a user running the application. Successful...
AkkyWareHOUSE 7-zip32.dll 4.42 - Heap Buffer Overflow
AkkyWareHOUSE 7-zip32.dll 4.42 - Heap Buffer Overflow source: https://www.securityfocus.com/bid/25545/info AkkyWareHOUSE 7-zip32.dll is prone to a heap-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input. Attackers may be able to execute arbitrary...
AkkyWareHOUSE '7-zip32.dll' 4.42 - Heap Buffer Overflow
source: https://www.securityfocus.com/bid/25545/info AkkyWareHOUSE 7-zip32.dll is prone to a heap-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input. Attackers may be able to execute arbitrary machine code in the context of the affected application...
Media Player Classic 6.4.9 - FLI File Remote Buffer Overflow
source: https://www.securityfocus.com/bid/25437/info Media Player Classic is prone to a buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data. Attackers may attempt to exploit this issue by coercing users to access malicious FLI files. Successfull...
T1lib - 'intT1_Env_GetCompletePath' Buffer Overflow (PoC)
source: https://www.securityfocus.com/bid/25079/info T1lib is prone to a buffer-overflow vulnerability because the library fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers. An attacker can exploit this issue to execute arbitrary machine cod...
Firebird SQL Fbserver 2.0 - Remote Buffer Overflow
Firebird SQL Fbserver 2.0 - Remote Buffer Overflow source: https://www.securityfocus.com/bid/24436/info Firebird SQL is prone to a remote buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary machine code in the context of the affected database server. Failed...
Firebird SQL Fbserver 2.0 - Remote Buffer Overflow
source: https://www.securityfocus.com/bid/24436/info Firebird SQL is prone to a remote buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary machine code in the context of the affected database server. Failed exploit attempts will likely crash the server, denying...
MoviePlay 4.76 - '.lst' Local Buffer Overflow
!/usr/bin/env ruby MoviePlay 4.76 .lst file Local buffer over-flow. Credit to n00b for writing poc code..Pmsl Tested on :Win xp sp2 eng. Vendor web site: Netfarer.com MoviePlay 4.76 Buffer-over flow reported : Jan 02 2007 12:00AM Credit goes to Parvez Anwar for finding the bug. MoviePlay is prone...
PHP 5.1.6 - 'Chunk_Split()' Integer Overflow
source: https://www.securityfocus.com/bid/24261/info PHP is prone to an integer-overflow vulnerability because it fails to ensure that integer values aren't overrun. Attackers may exploit this issue to cause a buffer overflow and to corrupt process memory. Attackers may be able to execute arbitra...
Apache mod_rewrite (Windows x86) - Off-by-One Remote Overflow
Apache modrewrite Windows x86 - Off-by-One Remote Overflow !/bin/sh Exploit for Apache modrewrite off-by-oneWin32. by axis http://www.ph4nt0m.org 2007-04-06 Tested on Apache 2.0.58 Win32 Windows2003 CN SP1 Vulnerable Apache Versions: 1.3 branch: 1.3.28 and 2.0.46 and 2.2.0 and 2006-08-20...
Asterisk 1.4 SIP T.38 SDP - Parsing Remote Stack Buffer Overflow (PoC) (2)
Asterisk 1.4 SIP T.38 SDP - Parsing Remote Stack Buffer Overflow PoC 2 source: https://www.securityfocus.com/bid/23648/info Asterisk is prone to multiple remote stack-based buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied data before copying it...
Apple Mac OSX 10.4.8 - QuickDraw GetSrcBits32ARGB Remote Memory Corruption
source: https://www.securityfocus.com/bid/22207/info Mac OS X QuickDraw is prone to a remote memory-corruption vulnerability because the software fails to properly handle malformed PICT image files. Successfully exploiting this issue allows remote attackers to corrupt memory and crash the affecte...
Ipswitch WS_FTP 2007 Professional - WSFTPURL.exe Local Memory Corruption
Ipswitch WSFTP 2007 Professional - WSFTPURL.exe Local Memory Corruption // source: https://www.securityfocus.com/bid/22062/info Ipswitch WSFTP 2007 Professional is prone to a local memory-corruption vulnerability. This issue occurs when the 'wsbho2k0.dll' library fails to handle specially crafted...