154 matches found
win32/xp pro sp3 (EN) 32-bit - add new local administrator 113 bytes
No description provided by source. / Title: win32/xp pro sp3 EN 32-bit - add new local administrator 113 bytes Author: Anastasios Monachos secuid0 - anastasiosmatgmaildotcom Method: Hardcoded opcodes kernel32.winexec@7c8623ad, kernel32.exitprocess@7c81cafa Tested on: WinXP Pro SP3 EN 32bit - Buil...
openSUSE Security Update : libfreetype6 (openSUSE-SU-2010:0549-1)
This update of freetype2 fixes several vulnerabilities that could lead to remote system compromise by executing arbitrary code with user privileges : - CVE-2010-1797: stack-based buffer overflow while processing CFF opcodes - CVE-2010-2497: integer underflow - CVE-2010-2498: invalid free -...
SolidWorks Workgroup PDM 2014 SP2 Opcode 2001 - Denial of Service
Exploit for windows platform in category dos / poc ''' Vulnerability type: Remote Code Execution Vulnerable file: pdmwService.exe PORT: 30000 --------------------------------------------------------------------------------------------------------- Software Description: SolidWorks Workgroup PDM is...
Hewlett-Packard Data Protector Cell Manager crs.exe Multiple Opcodes Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector. Authentication is not required to exploit this vulnerability. The specific flaw exists within crs.exe which listens by default on a random TCP port. When parsing opcodes 214, 215...
[Binwalk] Firmware Analysis Tool
Binwalk is a firmware analysis tool designed to assist in the analysis, extraction, and reverse engineering of firmware images and other binary blobs. It is simple to use, fully scriptable, and can be easily extended via custom signatures, extraction rules, and plugin modules. Binwalk supports...
[slackware-security] glibc (SSA:2013-260-01)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security glibc SSA:2013-260-01 New glibc packages are available for Slackware 13.0, 13.1, 13.37, 14.0, and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: +--------------------------+...
Hewlett-Packard Data Protector Cell Manager crs.exe Multiple Opcodes Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector. Authentication is not required to exploit this vulnerability. The specific flaw exists within crs.exe which listens by default on a random TCP port. When parsing opcodes...
kernel: block: default SCSI command filter does not accomodate commands overlap across device classes
block/scsiioctl.c in the Linux kernel through 3.8 does not properly consider the SCSI device class during authorization of SCSI commands, which allows local users to bypass intended access restrictions via an SGIO ioctl call that leverages overlapping opcodes...
Code injection
bitcoind and Bitcoin-Qt 0.8.0 and earlier allow remote attackers to cause a denial of service electricity consumption by mining a block to create a nonstandard Bitcoin transaction containing multiple OPCHECKSIG script opcodes...
CVE-2013-2292
Removed by vendor...
kernel: block: default SCSI command filter does not accomodate commands overlap across device classes
block/scsiioctl.c in the Linux kernel through 3.8 does not properly consider the SCSI device class during authorization of SCSI commands, which allows local users to bypass intended access restrictions via an SGIO ioctl call that leverages overlapping opcodes...
UBUNTU-CVE-2012-4542
block/scsiioctl.c in the Linux kernel through 3.8 does not properly consider the SCSI device class during authorization of SCSI commands, which allows local users to bypass intended access restrictions via an SGIO ioctl call that leverages overlapping opcodes...
kernel: block: default SCSI command filter does not accomodate commands overlap across device classes
block/scsiioctl.c in the Linux kernel through 3.8 does not properly consider the SCSI device class during authorization of SCSI commands, which allows local users to bypass intended access restrictions via an SGIO ioctl call that leverages overlapping opcodes...
CVE-2010-5138
wxBitcoin and bitcoind 0.3.x allow remote attackers to cause a denial of service electricity consumption via a Bitcoin transaction containing multiple OPCHECKSIG script opcodes...
CVE-2010-5141
wxBitcoin and bitcoind before 0.3.5 do not properly handle script opcodes in Bitcoin transactions, which allows remote attackers to spend bitcoins owned by other users via unspecified vectors...
CVE-2010-5141
Removed by vendor...
Iconics GENESIS32 Integer Overflow Version 9.21.201.01
The GenBroker service on port 38080 is affected by three integer overflow vulnerabilities while handling opcode 0x4b0, which is caused by abusing the the memory allocations needed for the number of elements passed by the client. This results unexpected behaviors such as direct registry calls,...
CVE-2011-0184
QuickLook in Apple Mac OS X 10.6 before 10.6.7 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via an Excel spreadsheet with a crafted formula that uses unspecified opcodes...
Memory corruption
QuickLook in Apple Mac OS X 10.6 before 10.6.7 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via an Excel spreadsheet with a crafted formula that uses unspecified opcodes...
CVE-2010-4328
Multiple stack-based buffer overflows in opt/novell/iprint/bin/ipsmd in Novell iPrint for Linux Open Enterprise Server 2 SP2 and SP3 allow remote attackers to execute arbitrary code via unspecified LPR opcodes...