Samsung NET-i viewer Multiple ActiveX BackupToAvi() Remote Overflow

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

FlexNet License Server Manager lmgrd Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'FlexNet License Server Manager lmgrd...

FlexNet License Server Manager lmgrd Buffer Overflow

This module exploits a vulnerability in the FlexNet License Server Manager. The vulnerability is due to the insecure usage of memcpy in the lmgrd service when handling network packets, which results in a stack buffer overflow. In order to improve reliability, this module will make lots of...

FlexNet License Server Manager lmgrd Buffer Overflow

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

RealNetworks RealPlayer mp4fformat rdrf Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks Realplayer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

CentOS 6 : glibc (CESA-2012:0393)

Updated glibc packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

glibc, nscd security update

CentOS Errata and Security Advisory CESA-2012:0393 Updated glibc packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System...

Moderate: Red Hat Security Advisory: glibc security and bug fix update

Updated glibc packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Ubuntu Update for eglibc USN-1396-1

Ubuntu Update for Linux kernel vulnerabilities USN-1396-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13961.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for eglibc USN-1396-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

glibc multiple security vulnerabilities

memcpy integer overflow, RPC DoS, vfprintf integer overflow...

USN-1396-1: GNU C Library vulnerabilities

It was discovered that the GNU C Library did not properly handle integer overflows in the timezone handling code. An attacker could use this to possibly execute arbitrary code by convincing an application to load a maliciously constructed tzfile. CVE-2009-5029 It was discovered that the GNU C...

Microsoft Excel 2007 - '.xlb' Local Buffer Overflow (MS11-021) (Metasploit)

$Id: ms11021xlbbof.rb 14172 2011-11-06 20:16:34Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...

Apple OSX / iPhone ImageIO TIFF getBandProcTIFF TileWidth堆溢出漏洞

Apple iOS是运行在苹果iPhone和iPod touch设备上的最新的操作系统。 Apple OS X / iPhone iOS在处理getBandProcTiff中的超大tilewidth图形标签时存在堆溢出漏洞，远程攻击者可利用此漏洞造成memcpy中的溢出，从而控制受影响系统。 tilewidth图形标签值的范围是从8BEE到8BF1，设置为00800000 8388608可造成崩溃。 Apple iOS 厂商补丁： Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://support.apple.com/...

MetaServer RT 3.2.1.450 - Multiple Vulnerabilities

MetaServer RT 3.2.1.450 - Multiple Vulnerabilities Luigi Auriemma Application: MetaServer RT http://www.traderssoft.com/ts/msrt/ Versions: = 3.2.1.450 Platforms: Windows Bugs: A heap overflow B various Denials of Service Exploitation: remote Date: 19 Sep 2011 Author: Luigi Auriemma e-mail:...

Novell File Reporter Engine RECORD Element Tag Parsing Overflow (credentialed check)

The version of Novell File Reporter NFR Engine installed on the remote Windows host is earlier than 1.0.2.53. As such, it reportedly has a flaw in its handling of HTTP requests to the TCP port used to communicate with the NFR Agent, normally 3035. Specifically, the application fails to check the...

Novell File Reporter Engine RECORD Tag Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell File Reporter Engine. Authentication is not required to exploit this vulnerability. The specific flaw exists within NFREngine.exe which communicates with the Agent component over HTTPS on TC...

PHP 'socket_connect()' Buffer Overflow Vulnerability - Windows

PHP is prone to a stack buffer overflow vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

PHP Socket connect() Stack Buffer Overflow

Hi there, This is a quick writeup about some fun with apache based on CVE-2011-1938 that was disclosed yesterday. While the first POC was literally just a trivial POC - the second one was written for self-educational purposes we leared quite a lot which is the most important thing and we hope it...

Microsoft Office Excel RealTimeData Record Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the methods used f...

DEBIAN-CVE-2010-4530

Signedness error in ccidserial.c in libccid in the USB Chip/Smart Card Interface Devices CCID driver, as used in pcscd in PCSC-Lite 1.5.3 and possibly other products, allows physically proximate attackers to execute arbitrary code via a smart card with a crafted serial number that causes a negati...