9289 matches found
CUPS 1.3.9 - 'cups/ipp.c' Null Pointer Dereference Denial of Service
source: https://www.securityfocus.com/bid/35169/info CUPS is prone to a denial-of-service vulnerability because of a NULL-pointer dereference that occurs when processing two consecutive IPPTAGUNSUPPORTED tags in specially crafted IPP Internet Printing Protocal packets. An attacker can exploit thi...
ICQ 6.5 - URL Search Hook (Windows Explorer) Remote Buffer Overflow (PoC)
g f44.104: Access violation - code c0000005 !!! second chance !!! eax=02100068 ebx=772a23c1 ecx=0210cefa edx=00000823 esi=00610061 edi=00000000 eip=772a533f esp=0210cec0 ebp=0210cec4 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000...
DSquare Exploit Pack: D2SEC_DIRECTSHOW
Name| d2secdirectshow ---|--- CVE| CVE-2009-1537 Exploit Pack| D2ExploitPack Description| Microsoft DirectX DirectShow QuickTime Video Code Execution Vulnerability Notes|...
Microsoft Windows SMB Registry : Vista / Server 2008 Service Pack Detection
It is possible to determine the Service Pack version of the Windows Vista / Server 2008 system by reading the registry key 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\CSDVersion'. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid38912; scriptversion"1.10";...
COWON America jetCast 2.0.4.1109 (.mp3) Local Overflow Exploit
Exploit for unknown platform in category local exploits ============================================================== COWON America jetCast 2.0.4.1109 .mp3 Local Overflow Exploit ============================================================== ?php / COWON America jetCast 2.0.4.1109 .mp3 local hea...
Immunity Canvas: STRAWBERRY_LFI
Name| strawberrylfi ---|--- CVE| CVE-2009-1774 Exploit Pack| CANVAS Description| Strawberry 1.1.1 Local File Include Notes| References: 'http://osvdb.org/show/osvdb/54721' Repeatability: Infinite VENDOR: StrawBerry CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-1774 CVE Name:...
Immunity Canvas: PLUCK_LFI
Name| plucklfi ---|--- CVE| CVE-2009-1765 Exploit Pack| CANVAS Description| Pluck 4.6.2 Local File Include Notes| CVE Name: CVE-2009-1765 VENDOR: Pluck Repeatability: Infinite CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-1765 References: 'http://www.milw0rm.com/exploits/8715' CVSS:...
DSquare Exploit Pack: D2SEC_CISCOTFTP
Name| d2secciscotftp ---|--- CVE| CVE-2009-1161 Exploit Pack| D2ExploitPack Description| CiscoWorks TFTP Directory Traversal Vulnerability Notes|...
Microsoft Word 2000 WordPerfect Converter Stack Corruption (MS09-010; CVE-2009-0088)
The Microsoft Office WordPerfect Converter assists users to convert documents from Corel WordPerfect file formats to Microsoft Word file formats.The Microsoft Office Converter Pack allows Office to use additional document formats that were not natively supported. The vulnerability is due a stack...
Microsoft GDIPlus PNG Infinite Loop Vulnerability
This host is running Windows XP Operating System with GDI libraries installed which is prone to Infinite Loop vulnerability. OpenVAS Vulnerability Test $Id: gbmsgdipluspnginfiniteloopvuln.nasl 7293 2017-09-27 08:49:48Z cfischer $ Microsoft GDIPlus PNG Infinite Loop Vulnerability Authors: Sujit...
Trend Micro OfficeScan Client Denial Of Service Vulnerability
This host is installed with Trend Micro OfficeScan Client and is prone to Denial of Service Vulnerability. OpenVAS Vulnerability Test $Id: secpodtrendmicroofficescandosvuln.nasl 5369 2017-02-20 14:48:07Z cfi $ Trend Micro OfficeScan Client Denial Of Service Vulnerability Authors: Antu Sanadi...
DSquare Exploit Pack: D2SEC_SYMIAO
Name| d2secsymiao ---|--- CVE| CVE-2009-1429 Exploit Pack| D2ExploitPack Description| Symantec Intel Alert Originator Service Command Execution Vulnerabilty Notes|...
IBM DB2 9.1 < Fix Pack 7 Multiple Vulnerabilities
According to its version, the IBM DB2 server running on the remote host is prior to 9.1 Fix Pack 7. It is, therefore, affected by multiple vulnerabilities : - In certain situations an INNER JOIN predicate is applied before the OUTER JOIN predicate, which could result in disclosure of sensitive...
DSquare Exploit Pack: D2SEC_MSIAG
Name| d2secmsiag ---|--- CVE| CVE-2007-2238 Exploit Pack| D2ExploitPack Description| Microsoft IAG 2007 ActiveX Stack Overflow Vulnerability Notes|...
CVE-2009-0088
The WordPerfect 6.x Converter WPFT632.CNV, 1998.1.27.0 in Microsoft Office Word 2000 SP3 and Microsoft Office Converter Pack does not properly validate the length of an unspecified string, which allows remote attackers to execute arbitrary code via a crafted WordPerfect 6.x file, related to an...
Memory corruption
The WordPerfect 6.x Converter WPFT632.CNV, 1998.1.27.0 in Microsoft Office Word 2000 SP3 and Microsoft Office Converter Pack does not properly validate the length of an unspecified string, which allows remote attackers to execute arbitrary code via a crafted WordPerfect 6.x file, related to an...
IBM WebSphere Application Server 7.0 < Fix Pack 3 Multiple Vulnerabilities
Binary data 4991.prm...
Microsoft Whale Intelligent Application Gateway Whale Client Components ActiveX control stack buffer overflows
Overview The Microsoft Whale Intelligent Application Gateway Whale Client Components ActiveX control contains multiple stack buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Whale Communications Intelligent...
IBM WebSphere Application Server < 6.1.0.23 Multiple Flaws
IBM WebSphere Application Server 6.1 before Fix Pack 23 appears to be installed on the remote host. Such versions are reportedly affected by multiple vulnerabilities : - Provided an attacker has valid credentials, it may be possible to hijack an authenticated session. PK66676 - It may be possible...
Microsoft Security Bulletin MS09-009 - Critical Vulnerabilities in Microsoft Office Excel Could Cause Remote Code Execution (968557)
Microsoft Security Bulletin MS09-009 - Critical Vulnerabilities in Microsoft Office Excel Could Cause Remote Code Execution 968557 Published: April 14, 2009 Version: 1.0 General Information Executive Summary This security update resolves a privately reported and a publicly disclosed vulnerability...