Lucene search
+L

59 matches found

exploitpack
exploitpack
added 2010/07/08 12:0 a.m.17 views

Real Player 12.0.0.879 - Code Execution

Real Player 12.0.0.879 - Code Execution Exploit Title: Real Player 12.0.0.879 0day for WinXP Date: 09/07/2010 Author: webDEViL Version: 12.0.0.879 Tested on: WinXP This bug utilizes Microsoft Help vuln for RCE. You can test by browsing to http://krash.in/real-exp/exploit.ram...

0.1AI score
Exploits0
exploitdb
exploitdb
added 2010/07/08 12:0 a.m.23 views

Real Player 12.0.0.879 - Code Execution

Exploit Title: Real Player 12.0.0.879 0day for WinXP Date: 09/07/2010 Author: webDEViL Version: 12.0.0.879 Tested on: WinXP This bug utilizes Microsoft Help vuln for RCE. You can test by browsing to http://krash.in/real-exp/exploit.ram...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2010/06/23 12:0 a.m.56 views

Microsoft Help Files (.CHM): 'Locked File' Feature Bypass

, , . .' '. ', . , '. , ., , / / / ==/ / / / / / / | Y Y / /| / /||| / / /.-. / /:wq x.0 '=.|w|.=' ='"=. Microsoft Help Files .CHM: 'Locked File' Bypass Versions Affected: Windows XP, Windows Vista, Windows 7 pdf: http://www.security-assessment.com/files/advisories/WindowsLockedHelpFiles.pdf...

7.2AI score
Exploits0
checkpoint_advisories
checkpoint_advisories
added 2010/06/21 12:0 a.m.19 views

Microsoft Help Workshop HPJ OPTIONS Section Buffer Overflow (CVE-2007-0427)

The Microsoft Help Workshop product is a development tool that allows the design and development of help files frequently packaged with Windows based applications. The program is used to author help content and package it in Microsoft Help files such as HLP. There exists a buffer overflow...

9.3CVSS7.3AI score0.30965EPSS
Exploits5
seebug
seebug
added 2008/11/22 12:0 a.m.17 views

Exodus 0.10 (uri handler) Arbitrary Parameter Injection Exploit

No description provided by source. !-- Exodus v0.10 remote code execution exploit by Nine:Situations:Group::strawdog This uses the "-l" argument to overwrite a file inside Microsoft Help and Support Center folders oh rgod... Firstly run netcat in listen mode to drop the vbscript shell run this...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/11/20 12:0 a.m.17 views

Exodus 0.10 - URI Handler Arbitrary Parameter Injection (2)

Exodus 0.10 - URI Handler Arbitrary Parameter Injection 2 testfile echo Dim wshShell testfile echo Set wshShell = CreateObject"WScript.Shell" testfile echo wshShell.Run"cmd /c start calc" testfile echo ^ testfile nc -L -s 192.168.0.1 -p 5222 -vv click me click me milw0rm.com 2008-11-20...

0.9AI score
Exploits0
exploitdb
exploitdb
added 2008/11/20 12:0 a.m.34 views

Exodus 0.10 - URI Handler Arbitrary Parameter Injection (2)

testfile echo Dim wshShell testfile echo Set wshShell = CreateObject"WScript.Shell" testfile echo wshShell.Run"cmd /c start calc" testfile echo ^ testfile nc -L -s 192.168.0.1 -p 5222 -vv click me click me milw0rm.com 2008-11-20...

7.4AI score
Exploits0
zdt
zdt
added 2008/11/20 12:0 a.m.60 views

Exodus 0.10 (uri handler) Arbitrary Parameter Injection Exploit

Exploit for unknown platform in category remote exploits =============================================================== Exodus 0.10 uri handler Arbitrary Parameter Injection Exploit =============================================================== testfile echo Dim wshShell testfile echo Set...

7.1AI score
Exploits0
packetstorm
packetstorm
added 2008/11/20 12:0 a.m.27 views

exodus-injection.txt

testfile echo Dim wshShell testfile echo Set wshShell = CreateObject"WScript.Shell" testfile echo wshShell.Run"cmd /c start calc" testfile echo ^ testfile nc -L -s 192.168.0.1 -p 5222 -vv click me click me...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2008/04/09 12:0 a.m.94 views

[Full-disclosure] iDefense Security Advisory 04.08.08: Microsoft HxTocCtrl ActiveX Control Invalid Param Heap Corruption Vulnerability

iDefense Security Advisory 04.08.08 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 08, 2008 I. BACKGROUND The HxTocCtrl ActiveX Control is a library used by the Microsoft Help engine. More information is available at the following website. http://en.wikipedia.org/wiki/MicrosoftHelp2 I...

9.3CVSS0.4AI score0.30543EPSS
Exploits1
saint
saint
added 2007/01/31 12:0 a.m.48 views

Microsoft Help Workshop .CNT file buffer overflow

Added: 01/31/2007 CVE: CVE-2007-0352 BID: 22100 OSVDB: 31898 Background Microsoft Help Workshop is a standard component of Microsoft Visual Studio and is also available as a standalone product. Problem A buffer overflow vulnerability in Microsoft Help Workshop allows command execution when a user...

9.3CVSS6.8AI score0.36385EPSS
Exploits5
saint
saint
added 2007/01/31 12:0 a.m.45 views

Microsoft Help Workshop .CNT file buffer overflow

Added: 01/31/2007 CVE: CVE-2007-0352 BID: 22100 OSVDB: 31898 Background Microsoft Help Workshop is a standard component of Microsoft Visual Studio and is also available as a standalone product. Problem A buffer overflow vulnerability in Microsoft Help Workshop allows command execution when a user...

9.3CVSS6.8AI score0.36385EPSS
Exploits5
saint
saint
added 2007/01/31 12:0 a.m.21 views

Microsoft Help Workshop .CNT file buffer overflow

Added: 01/31/2007 CVE: CVE-2007-0352 BID: 22100 OSVDB: 31898 Background Microsoft Help Workshop is a standard component of Microsoft Visual Studio and is also available as a standalone product. Problem A buffer overflow vulnerability in Microsoft Help Workshop allows command execution when a user...

9.3CVSS6.8AI score0.36385EPSS
Exploits5
saint
saint
added 2007/01/31 12:0 a.m.27 views

Microsoft Help Workshop .CNT file buffer overflow

Added: 01/31/2007 CVE: CVE-2007-0352 BID: 22100 OSVDB: 31898 Background Microsoft Help Workshop is a standard component of Microsoft Visual Studio and is also available as a standalone product. Problem A buffer overflow vulnerability in Microsoft Help Workshop allows command execution when a user...

9.3CVSS6.8AI score0.36385EPSS
Exploits5
saint
saint
added 2007/01/26 12:0 a.m.43 views

Microsoft Help Workshop .HPJ file HLP field buffer overflow

Added: 01/26/2007 CVE: CVE-2007-0427 BID: 22135 OSVDB: 31899 Background Microsoft Help Workshop is a standard component of Microsoft Visual Studio and is also available as a standalone product. Problem A buffer overflow vulnerability in Microsoft Help Workshop allows command execution when a user...

9.3CVSS6.8AI score0.30965EPSS
Exploits5
saint
saint
added 2007/01/26 12:0 a.m.38 views

Microsoft Help Workshop .HPJ file HLP field buffer overflow

Added: 01/26/2007 CVE: CVE-2007-0427 BID: 22135 OSVDB: 31899 Background Microsoft Help Workshop is a standard component of Microsoft Visual Studio and is also available as a standalone product. Problem A buffer overflow vulnerability in Microsoft Help Workshop allows command execution when a user...

9.3CVSS6.9AI score0.30965EPSS
Exploits5
saint
saint
added 2007/01/26 12:0 a.m.35 views

Microsoft Help Workshop .HPJ file HLP field buffer overflow

Added: 01/26/2007 CVE: CVE-2007-0427 BID: 22135 OSVDB: 31899 Background Microsoft Help Workshop is a standard component of Microsoft Visual Studio and is also available as a standalone product. Problem A buffer overflow vulnerability in Microsoft Help Workshop allows command execution when a user...

9.3CVSS6.8AI score0.30965EPSS
Exploits5
saint
saint
added 2007/01/26 12:0 a.m.38 views

Microsoft Help Workshop .HPJ file HLP field buffer overflow

Added: 01/26/2007 CVE: CVE-2007-0427 BID: 22135 OSVDB: 31899 Background Microsoft Help Workshop is a standard component of Microsoft Visual Studio and is also available as a standalone product. Problem A buffer overflow vulnerability in Microsoft Help Workshop allows command execution when a user...

9.3CVSS6.8AI score0.30965EPSS
Exploits5
nvd
nvd
added 2007/01/23 12:28 a.m.17 views

CVE-2007-0427

Stack-based buffer overflow in Microsoft Help Workshop 4.03.0002 allows user-assisted remote attackers to execute arbitrary code via a help project .HPJ file with a long HLP field in the OPTIONS section...

9.3CVSS7.8AI score0.30965EPSS
Exploits5References6
prion
prion
added 2007/01/23 12:28 a.m.15 views

Stack overflow

Stack-based buffer overflow in Microsoft Help Workshop 4.03.0002 allows user-assisted remote attackers to execute arbitrary code via a help project .HPJ file with a long HLP field in the OPTIONS section...

9.3CVSS8.4AI score0.30965EPSS
Exploits5References6Affected Software1
Rows per page
Query Builder