32 matches found
Description of the security update for the remote code execution vulnerability in Windows Embedded POSReady 2009: April 9, 2019
Description of the security update for the remote code execution vulnerability in Windows Embedded POSReady 2009: April 9, 2019 Summary A remote code execution vulnerability exists in the manner in which the VBScript engine handles objects in memory. To learn more about the vulnerability, go to...
MS05-012: Vulnerability in OLE and COM could allow remote code execution
MS05-012: Vulnerability in OLE and COM could allow remote code execution Microsoft has released security bulletin MS05-012. The security bulletin contains all the relevant information about the security update, including file manifest information and deployment options. To view the complete...
Microsoft Windows - DfMarshal Unsafe Unmarshaling Privilege Escalation Exploit
Exploit for windows platform in category local exploits Windows: DfMarshal Unsafe Unmarshaling Elevation of Privilege Master Platform: Windows 10 1803 not tested earlier, although code looks similar on Win8+ Class: Elevation of Privilege Note, this is the master issue report for the DfMarshal...
CVE-2017-0199: in-depth analysis of the Microsoft Office RTF vulnerability-vulnerability warning-the black bar safety net
0x00 Preface Recently, researchers also found a number of CVE-2017-0199 vulnerability of the sample. Although the Microsoft in this year 4 month has been released for the vulnerability the patch, but since its use is relatively simple, worldwide usage is still very high, here to share some of the...
CVE-2017-0199: in-depth analysis of the Microsoft Office RTF vulnerability-vulnerability warning-the black bar safety net
Recently, researchers also found a number of CVE-2017-0199 vulnerability of the sample. Although the Microsoft in this year 4 month has been released for the vulnerability the patch, but since its use is relatively simple, worldwide usage is still very high, here to share some of the phishing...
Acunetix 9.5 OLE Automation Array Remote Code Execution
!/usr/bin/python import BaseHTTPServer, sys, socket Acunetix OLE Automation Array Remote Code Execution Author: Naser Farhadi Linkedin: http://ir.linkedin.com/pub/naser-farhadi/85/b3b/909 Date: 27 Mar 2015 Version: acunetix.exe Video: https://vid.me/SRCb class...
MP3-Nator-Buffer-Overflow
Exploit Title: Exploit Buffer Overflow MP3-Nator SEH - DEP BYPASS Date: 18-11-2010 Author: Muhamad Fadzil Ramli Credit/Bug Found By: C4SS!0 G0M3S Software Link: http://files.brothersoft.com/mp3audio/players/mp3nator.zip filename = 'crash.plf' ./msfpayload windows/exec CMD=calc EXITFUNC=seh R |...
PHP 5.4 (5.4.3) Code Execution (Win32)
No description provided by source. // Exploit Title: PHP 5.4 5.4.3 Code Execution 0day Win32 // Exploit author: 0in Maksymilian Motyl // Email: 0indotemailatgmail.com // Bug with Variant type parsing originally discovered by Condis // Tested on Windows XP SP3 fully patched Polish...
Microsoft Outlook ActiveX Control Remote Internet Explorer Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21649/info The Microsoft Office Outlook Recipient Control is prone to a denial-of-service vulnerability. An attacker can exploit this issue to trigger denial-of-service conditions in Internet Explorer or other application...
Huawei Technologies Internet Mobile - Unicode (SEH)
!/usr/bin/perl Souhail Hammou - Independant Security Researcher & Penetration Tester . Facebook : www.facebook.com/dark.puzzle.sec E-mail : [email protected] Greetings to all moroccan researchers and white hats . Vulnerable : Etisalat , Vodafone , Meditel , Maroc Telecom , Royal KPN , Cell C ,...
PHP 5.4.3 'com_print_typeinfo()'远程代码执行漏洞
PHP是一种HTML内嵌式的语言 PHP comprinttypeinfo存在一个安全漏洞,允许攻击者执行任意代码。此漏洞影响windows平台上的php版本,在windows平台上其"COM"函数作为PHP核心的一部分。攻击者需要上传恶意PHP代码到服务器,攻击者可以通过"exec"使用PHP运行SHELL命令 0 PHP 5.4.3 厂商解决方案 目前没有详细解决方案提供: http://www.php.net/ // Exploit Title: PHP 5.4 5.4.3 Code Execution 0day Win32 // Exploit author: 0in...
PHP version 5.4.3 code execution exploit for Win32
No description provided by source. // Exploit Title: PHP 5.4 5.4.3 Code Execution 0day Win32 // Exploit author: 0in Maksymilian Motyl // Email: 0indotemailatgmail.com // Bug with Variant type parsing originally discovered by Condis // Tested on Windows XP SP3 fully patched Polish...
PHP 5.4 Win32 Code Execution
// Exploit Title: PHP 5.4 5.4.3 Code Execution 0day Win32 // Exploit author: 0in Maksymilian Motyl // Email: 0indotemailatgmail.com // Bug with Variant type parsing originally discovered by Condis // Tested on Windows XP SP3 fully patched Polish =================== offset-brute.html...
PHP 5.4.3 (Windows x86 Polish) - Code Execution
// Exploit Title: PHP 5.4 5.4.3 Code Execution 0day Win32 // Exploit author: 0in Maksymilian Motyl // Email: 0indotemailatgmail.com // Bug with Variant type parsing originally discovered by Condis // Tested on Windows XP SP3 fully patched Polish =================== offset-brute.html...
MP3-Nator Buffer Overflow (SEH - DEP BYPASS)
Exploit for windows platform in category local exploits ============================================ MP3-Nator Buffer Overflow SEH - DEP BYPASS ============================================ Exploit Title: Exploit Buffer Overflow MP3-Nator SEH - DEP BYPASS Date: 18-11-2010 Author: Muhamad Fadzil...
MP3-Nator - Local Buffer Overflow (SEH) (DEP Bypass)
Exploit Title: Exploit Buffer Overflow MP3-Nator SEH - DEP BYPASS Date: 18-11-2010 Author: Muhamad Fadzil Ramli - mind1355atgmaildotcom Credit/Bug Found By: C4SS!0 G0M3S Software Link: http://www.brothersoft.com/d.php?softid=16524&url=http://files.brothersoft.com/mp3audio/players/mp3nator.zip...
Microsoft Windows OLE32.DLL Word文档处理拒绝服务漏洞
Microsoft Windows是微软发布的非常流行的操作系统。 Windows的OLE32.DLL库处理畸形DOC文档时存在漏洞,可能导致资源器在访问文档时发生崩溃。 Windows的OLE32.DLL库在处理包含有超大文件大小值的.doc文档时存在错误的指针应用。用户不必打开恶意的文档,只要将光标移动至该文档的图标就会导致资源管理器崩溃。 Microsoft Windows XP SP2 Microsoft Windows 2000SP4 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
CVE-2007-1347
Microsoft Windows Explorer on Windows 2000 SP4 FR and XP SP2 FR, and possibly other versions and platforms, allows remote attackers to cause a denial of service memory corruption and crash via an Office file with crafted document summary information, which causes an error in Ole32.dll...
Memory corruption
Microsoft Windows Explorer on Windows 2000 SP4 FR and XP SP2 FR, and possibly other versions and platforms, allows remote attackers to cause a denial of service memory corruption and crash via an Office file with crafted document summary information, which causes an error in Ole32.dll...
CVE-2007-1347
CVE-2007-1347 affects Microsoft Windows Explorer on Windows 2000 SP4 FR and XP SP2 FR (and possibly other versions). The issue arises when processing an Office file with crafted document summary information, causing a memory corruption in Ole32.dll and a denial of service (memory corruption and c...