68 matches found
UBUNTU-CVE-2017-0350
All versions of the NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated and used in an offset calculation may lead to denial of service or potential escalation of privileges...
MS12-004 midiOutPlayNextPolyEvent Heap Overflow
This module exploits a heap overflow vulnerability in the Windows Multimedia Library winmm.dll. The vulnerability occurs when parsing specially crafted MIDI files. Remote code execution can be achieved by using the Windows Media Player ActiveX control. Exploitation is done by supplying a speciall...
midiOutPlayNextPolyEvent Heap Overflow(MS12-004)
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...
Exploit writing tutorial part 3b - SEH Based Exploits - just another example
Автор: Peter Van Eeckhoutte corelanc0d3r Перевод: peaZ 8/2011 В предыдущей части руководства я объяснил основы создания SEH-эксплойтов. Я упомянул, что в самом простом случае полезная нагрузка SEH-эксплойта имеет такую структуру: junknextSEHSEHShellcode Я указал, что SEH должен быть перезаписан...
ZDI-11-080: Adobe Shockwave CSWV Chunk Substructure Offset Value Remote Code Execution Vulnerability
ZDI-11-080: Adobe Shockwave CSWV Chunk Substructure Offset Value Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-080 February 8, 2011 -- CVE ID: CVE-2010-4190 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Adobe -- Affected Products: Adobe...
MS09-067 Microsoft Excel Malformed FEATHEADER Record Vulnerability
This module exploits a vulnerability in the handling of the FEATHEADER record by Microsoft Excel. Revisions of Office XP and later prior to the release of the MS09-067 bulletin are vulnerable. When processing a FEATHEADER Shared Feature record, Microsoft used a data structure from the file to...
CVE-2006-0036
ipnatpptp in the PPTP NAT helper netfilter/ipnathelperpptp.c in Linux kernel 2.6.14, and other versions, allows remote attackers to cause a denial of service memory corruption or crash via an inbound PPTPINCALLREQUEST packet that causes a null pointer to be used in an offset calculation...
Null pointer dereference
ipnatpptp in the PPTP NAT helper netfilter/ipnathelperpptp.c in Linux kernel 2.6.14, and other versions, allows remote attackers to cause a denial of service memory corruption or crash via an inbound PPTPINCALLREQUEST packet that causes a null pointer to be used in an offset calculation...