Adobe Acrobat Reader Arbitrary Dereference Proof Of Concept

Felipe Andres Manzano [email protected] http://twitter/feliam doc=''' Title: U3D CLODProgressiveMeshContinuation Split Position Index arbitrary dereference. Product: Adobe Acrobat Reader Version: =8.1.6, =9.1.3 Product Homepage: www.adobe.com CVE: 2009-2990 OSs: WinXPSPx/Linux...

MS09-068: Vulnerability in Microsoft Office Word Could Allow Remote Code Execution (976307)

The remote Windows host is running a version of Microsoft Word or Word Viewer that is affected by a memory corruption vulnerability. If an attacker can trick a user on the affected host into opening a specially crafted Word file, he could leverage this issue to execute arbitrary code subject to t...

Microsoft SharePoint Team Services Information Disclosure Vulnerability

This host is installed with Microsoft SharePoint Server and is prone to Information Disclosure Vulnerability. OpenVAS Vulnerability Test $Id: gbmssharepointinfodiscvuln.nasl 5363 2017-02-20 13:07:22Z cfi $ Microsoft SharePoint Team Services Information Disclosure Vulnerability Authors: Nikita MR...

MS09-053: Microsoft IIS FTPd NLST Command Remote Buffer Overflow (975191) (uncredentialed check)

The remote FTP server allows anonymous users to create directories in one or more locations. The remote version of this server is vulnerable to a buffer overflow attack in the NLST command which, when coupled with the ability to create arbitrary directories, may allow an attacker to execute...

2532|Gigs Directory Traversal And SQL Injection Multiple Vulnerabilities

This host is running 2532-Gigs and is prone to Directory Traversal and SQL Injection Vulnerabilities. OpenVAS Vulnerability Test $Id: gb2532gigsmultvulnaug09.nasl 4865 2016-12-28 16:16:43Z teissa $ 2532|Gigs Directory Traversal And SQL Injection Multiple Vulnerabilities Authors: Antu Sanadi...

CA20090818-01: Security Notice for CA Host-Based Intrusion Prevention System

CA20090818-01: Security Notice for CA Host-Based Intrusion Prevention System Issued: August 18, 2009 CA's technical support is alerting customers to a security risk with CA Host-Based Intrusion Prevention System. A vulnerability exists that can allow a remote attacker to cause a denial of service...

XEmacs Multiple Buffer Overflow Vulnerabilities (Windows)

The host is installed with XEmacs and is prone to multiple Buffer Overflow vulnerabilities. OpenVAS Vulnerability Test $Id: gbxemacsmultbofvulnwin.nasl 4970 2017-01-09 15:00:59Z teissa $ XEmacs Multiple Buffer Overflow Vulnerabilities Windows Authors: Nikita MR Copyright: Copyright c 2009 Greenbo...

Apache Tomcat denial of service (DoS) vulnerability

Overview Apache Tomcat from The Apache Software Foundation contains a denial of service DoS vulnerability. Apache Tomcat from the Apache Software Foundation is an implementation of the Java Servlet and JavaServer Page JSP technologies. If Tomcat receives a request with an invalid header via the...

SEC Consult SA-20090525-0 :: Nortel Contact Center Manager Server Authentication Bypass Vulnerability

SEC Consult Security Advisory 20090525-0 ========================================================================== title: Nortel Contact Center Manager Server Authentication Bypass program: Nortel Contact Center Manager Server vulnerable version: 6.0 homepage: http://www.nortel.com/ccms found:...

Multiple Vendor - PF Null Pointer Dereference

Multiple Vendor - PF Null Pointer Dereference / / / / / / / / / / / / / // / / / / / / / / / // / / / // // / / / / / // ///// // // // Helith - 0815 -------------------------------------------------------------------------------- Author : Rembrandt Date : 2009-04-30 Found : 2009-04-09 Affected...

Microsoft Internet Explorer Denial of Service Vulnerability - Apr09

This host is installed with Internet Explorer and is prone to Denial of Service Vulnerability. OpenVAS Vulnerability Test $Id: secpodmsiedosvulnapr09.nasl 6527 2017-07-05 05:56:34Z cfischer $ Microsoft Internet Explorer Denial of Service Vulnerability - Apr09 Authors: Sharath S Copyright: Copyrig...

PPLive Multiple Argument Injection Vulnerabilities

This host has PPLive installed and is prone to multiple argument injection vulnerabilities. OpenVAS Vulnerability Test $Id: secpodpplivecodeexevuln.nasl 5122 2017-01-27 12:16:00Z teissa $ PPLive Multiple Argument Injection Vulnerabilities Authors: Nikita MR Copyright: Copyright c 2009 SecPod,...

Rittal CMC-TC Processing Unit II Multiple Vulnerabilities

No description provided by source. Louhi Networks Oy -= Security Advisory =- Advisory: Rittal CMC-TC Processing Unit II multiple vulnerabilities Release Date: 2009-03-23 Last Modified: 2009-03-22 Authors: Henri Lindberg, CISA henri d0t lindberg at louhi d0t fi Application: Rittal CMC-TC PU II Web...

DDIVRT-2009-22 SMART Board Whiteboard Directory Traversal Vulnerability

Title ----- DDIVRT-2009-22 SMART Board Whiteboard Directory Traversal Vulnerability Severity -------- High Date Discovered --------------- January 19th, 2009 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: David Marshall and r@b13$ Vulnerability Description...

RavenNuke avartarlist.php模块PHP代码注入漏洞

BUGTRAQ ID: 33787 RavenNuke是基于PHP和MySQL的自动新闻发布和内容管理系统。 RavenNuke的avatarlist.php模块没有正确地验证对pregreplace调用所传送的patterns和replacements参数，远程攻击者可以通过向服务器提交恶意请求导致注入并执行任意PHP代码。以下是有漏洞的代码段： $patterns0 = '/.gif/'; $patterns1 = '/.png/'; ... $replacements1 = ''; $replacements0 = ''; ... $entryname =...

VUPlayer .asx Playlist File Buffer Overflow Vulnerability

This host is installed with VUPlayer and is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodvuplayerasxplaylistbofvuln.nasl 5148 2017-01-31 13:16:55Z teissa $ VUPlayer .asx Playlist File Buffer Overflow Vulnerability Authors: Sharath S Copyright: Copyright c 2009...

SEC Consult SA-20081219-0 :: Fujitsu-Siemens WebTransactions remote command injection vulnerability

SEC-CONSULT Security Advisory 20081219-0 =================================================================================== title: Fujitsu-Siemens WebTransactions Remote Command Injection Vulnerability program: WebTransactions vulnerable version: =7.1 homepage: http://www.fujitsu-siemens.com/...

PT-2008-5548 · Microsoft · Windows Server 2008 +3

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: A remote code execution issue exists due to improper memory handling during the saving of a search file. This allows attackers to execute arbitrary code via a crafted...

Sun Java Web Start Remote Command Execution Vulnerability (Linux)

This host is running Sun Java Web Start and is prone to Remote Command Execution Vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavawscodeexecvulnlin.nasl 7174 2017-09-18 11:48:08Z asteins $ Sun Java Web Start Remote Command Execution Vulnerability Linux Authors: Veerendra GG Copyright:...

Secunia Research: Trend Micro OfficeScan CGI Parsing Buffer Overflows

====================================================================== Secunia Research 22/10/2008 - Trend Micro OfficeScan CGI Parsing Buffer Overflows - ====================================================================== Table of Contents Affected...