Microsoft Reader Uninitialized Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

Microsoft Reader <= 2.1.1.3143 Integer Overflow

No description provided by source. Source: http://aluigi.org/adv/msreader1-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: = 2.1.1.3143 PC version the Origami 2.6.1.7169 version doesn't seem vulnerable the non-PC versions have not been tested...

Microsoft Reader <= 2.1.1.3143 Heap Overflow

No description provided by source. Source: http://aluigi.org/adv/msreader2-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: = 2.1.1.3143 PC version = 2.6.1.7169 Origami version the non-PC versions have not been tested Platforms: Windows, Windows Mobil...

Microsoft Reader <= 2.1.1.3143 Array Overflow

No description provided by source. Source: http://aluigi.org/adv/msreader4-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: = 2.1.1.3143 PC version = 2.6.1.7169 Origami version the non-PC versions have not been tested Platforms: Windows, Windows Mobil...

Microsoft Reader <= 2.1.1.3143 NULL Byte Write

No description provided by source. Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: = 2.1.1.3143 PC version the Origami 2.6.1.7169 version doesn't seem vulnerable the non-PC versions have not been tested Platforms: Windows, Windows Mobile, Tablet PC and UMPC...

Microsoft Reader integer overflows

Integer overflows on different formats parsing...

Vulnerabilities in Microsoft Reader and HIS

Microsoft Reader is a PC/tablet software for reading the ebooks in LIT format and the Audible audio books. The following are a couple of integer overflows, an heap and an array indexing overflow and the writing of a NULL byte in an arbitrary memory location: http://aluigi.org/adv/msreader1-adv.tx...

Microsoft Reader多个内存破坏漏洞

Bugtraq ID: 47312 Microsoft Reader是一套电子书的阅读程序，可以在网站书店购买电子书，然后利用Microsoft Reader来阅读。 -处理初始化ITLS头存在整数溢出。 -段解压缩过程中分配一定数量内存及拷贝任意数据可导致堆溢出。 -执行memmove操作时存在一个堆溢出。 -使用过多段可导致AOLL块中触发数组溢出。 -存在安全漏洞允许把0x00字节写入到任意内存位置 Microsoft Reader Origami 2.6.1.7169 Microsoft Reader 2.1.1.3143 厂商解决方案 目前没有详细解决方案提供：...

Microsoft Reader 2.1.1.3143 - Integer Overflow (1)

Microsoft Reader 2.1.1.3143 - Integer Overflow 1 Source: http://aluigi.org/adv/msreader1-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: 8B7B 68 MOV EDI,DWORD PTR DS:EBX+68 01083071 |. 8BF7 MOV ESI,EDI 01083073 |. C1E...

Microsoft Reader 2.1.1.3143 - Integer Overflow (1)

Source: http://aluigi.org/adv/msreader1-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: 8B7B 68 MOV EDI,DWORD PTR DS:EBX+68 01083071 |. 8BF7 MOV ESI,EDI 01083073 |. C...

Microsoft Reader 2.1.1.3143 - Heap Overflow

Microsoft Reader 2.1.1.3143 - Heap Overflow Source: http://aluigi.org/adv/msreader2-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: 8B8...

Microsoft Reader 2.1.1.3143 - Integer Overflow (2)

Microsoft Reader 2.1.1.3143 - Integer Overflow 2 Source: http://aluigi.org/adv/msreader3-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: = 2.1.1.3143 PC version = 2.6.1.7169 Origami version the non-PC versions have not been tested Platforms: Windows,...

Microsoft Reader 2.1.1.3143 - Array Overflow

Microsoft Reader 2.1.1.3143 - Array Overflow Source: http://aluigi.org/adv/msreader4-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: = 2.1.1.3143 PC version = 2.6.1.7169 Origami version the non-PC versions have not been tested Platforms: Windows,...

Microsoft Reader 2.1.1.3143 - Heap Overflow

Source: http://aluigi.org/adv/msreader2-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: = 2.1.1.3143 PC version = 2.6.1.7169 Origami version the non-PC versions have not been tested Platforms: Windows, Windows Mobile, Tablet PC and UMPC devices Bug:...

Microsoft Reader 2.1.1.3143 - Integer Overflow (2)

Source: http://aluigi.org/adv/msreader3-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: = 2.1.1.3143 PC version = 2.6.1.7169 Origami version the non-PC versions have not been tested Platforms: Windows, Windows Mobile, Tablet PC and UMPC devices Bug:...

Microsoft Reader 2.1.1.3143 - Null Byte Write

Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: | 8D47 01 |LEA EAX,DWORD PTR DS:EDI+1 ; size at offset 0xbd of the PoC 5FFF634D |. 50 |PUSH EAX 5FFF634E |. E8 2B470000 |...

Microsoft Reader 2.1.1.3143 - Null Byte Write

Microsoft Reader 2.1.1.3143 - Null Byte Write Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: | 8D47 01 |LEA EAX,DWORD PTR DS:EDI+1 ; size at offset 0xbd of the PoC 5FFF634D |. 50 |PUSH EAX 5FFF634E |. E8 2B470000 |CALL...

Microsoft Reader 2.1.1.3143 - Array Overflow

Source: http://aluigi.org/adv/msreader4-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: = 2.1.1.3143 PC version = 2.6.1.7169 Origami version the non-PC versions have not been tested Platforms: Windows, Windows Mobile, Tablet PC and UMPC devices Bug:...