HCView WriteAV Crash Proof Of Concept

!/usr/bin/perl Hardcoreview WriteAV Arbitrary Code Execution Author: Jean Pascal Pereira Vendor URI: http://sourceforge.net/projects/hardcoreview/ Vendor Description: Image browser. Designed and created for profesional and amature watching image files. All kind of image files ; . Support .jpg,...

Arbitrary files deletion in HP OpenView Communication Broker

Luigi Auriemma Application: HP OpenView Communication Broker http://www8.hp.com/us/en/software/enterprise-software.html Versions: ovbbccb.exe = 11.0.43.0 Platforms: Windows, Linux, Solaris, HP-UX, AIX Bug: arbitrary files deletion Exploitation: remote, versus server Date: 27 Jun 2011 found 01 Jun...

Windows Live Messenger字符集数据远程拒绝服务漏洞

BUGTRAQ ID: 33825 CVECAN ID: CVE-2009-0647 Windows Live Messenger是非常流行的即时通讯聊天工具。 Windows Live Messenger处理消息时存在拒绝服务漏洞，如果远程攻击者在向MSN联系人发送消息的Content-Type头中修改了字符集字段的UTF-8.0值的话，就会导致对方的MSN崩溃。 Microsoft Windows Live Messenger 2009 厂商补丁： Microsoft --------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

CVE-2007-0842

The 64-bit versions of Microsoft Visual C++ 8.0 standard library MSVCR80.DLL time functions, including 1 localtime, 2 localtimes, 3 gmtime, 4 gmtimes, 5 ctime, 6 ctimes, 7 wctime, 8 wctimes, and 9 fstat, trigger an assertion error instead of a NULL pointer or EINVAL when processing a time argumen...