24 matches found
CVE-2023-53949 AspEmail 5.6.0.2 Local Privilege Escalation via Binary Permission Vulnerability
AspEmail 5.6.0.2 contains a binary permission vulnerability that allows local users to escalate privileges through the Persits Software EmailAgent service. Attackers can exploit full write permissions in the BIN directory to replace the service executable and gain elevated system access...
EUVD-1999-1516
Malware in sbrugna...
AspEmail v5.6.0.2 - Local Privilege Escalation
Exploit Title: AspEmail 5.6.0.2 - Local Privilege Escalation Vulnerability Category: Weak Services Permission - Binary Permission Vulnerability Date: 13/04/2023 Exploit Author: Zer0FauLT [email protected] Vendor Homepage: https://www.aspemail.com Software Link:...
AspEmail 5.6.0.2 Weak Permissions / Local Privilege Escalation Vulnerability
Exploit Title: AspEmail 5.6.0.2 - Local Privilege Escalation Vulnerability Category: Weak Services Permission - Binary Permission Vulnerability Date: 13/04/2023 Exploit Author: Zer0FauLT email protected Vendor Homepage: https://www.aspemail.com Software Link: https://www.aspemail.com/download.htm...
HP LoadRunner 9.0 ActiveX AddFolder Buffer Overflow
No description provided by source. $Id: hploadrunneraddfolder.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and ter...
Persits XUpload ActiveX AddFile Buffer Overflow
No description provided by source. $Id: hploadrunneraddfile.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...
HP LoadRunner 9.0 - ActiveX AddFolder Buffer Overflow (Metasploit)
$Id: hploadrunneraddfolder.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Persits XUpload ActiveX MakeHttpRequest Directory Traversal
$Id: persitsxuploadtraversal.rb 7760 2009-12-08 21:24:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
HP LoadRunner 9.0 ActiveX AddFolder Buffer Overflow
$Id: hploadrunneraddfolder.rb 7724 2009-12-06 05:50:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Persits XUpload ActiveX MakeHttpRequest Directory Traversal
This module exploits a directory traversal in Persits Software Inc's XUpload ActiveX controlversion 3.0.0.3 that's included in HP LoadRunner 9.5. By passing a string containing ".." sequences to the MakeHttpRequest method, an attacker is able to write arbitrary files to arbitrary locations on...
Persits Software XUpload AddFile()方式远程栈溢出漏洞
BUGTRAQ ID: 27456 XUpload是功能强大的客户端上传ActiveX控件,允许用户同时上传多个文件。 XUpload的ActiveX控件实现上存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制用户系统。 XUpload的Persits.XUpload.2 ActiveX控件(XUpload.ocx)没有正确地处理传送给AddFile方式的输入参数,如果用户受骗访问了恶意网页并向该方式传送了超长字符串参数的话,就可能触发栈溢出,导致执行任意指令。 Persits XUpload 3.0.0.4 Persits XUpload 2.1.0.1 厂商补丁: Persits...
XUpload ActiveX Control AddFolder Method Buffer Overflow
The remote host contains a version of the XUpload ActiveX control from Persits Software that reportedly is affected by a buffer overflow in its 'AddFolder' method that can be triggered by a long argument. If a remote attacker can trick a user on the affected host into visiting a specially crafted...
[Full-disclosure] Persits Software XUpload Control AddFolder() Buffer Overflow Exploit
I took a shot at writing an exploit for this, so here goes. Choice of WinExecthe calculator, what else? or a bindshell. ------------------------------- !-- written by e.b. Persits Software XUpload Control AddFolder Buffer Overflow Exploit Exploit Tested on Windows XP SP2fully patched English, IE6...
Persits Software XUpload Control AddFolder() Buffer Overflow Exploit
No description provided by source. !-- written by e.b. Persits Software XUpload Control AddFolder Buffer Overflow Exploit Tested on Windows XP SP2fully patched English, IE6 and IE7 Thanks to h.d.m. and the Metasploit crew -- html head titlePersits Software XUpload Control AddFolder BoF...
[Full-disclosure] Persits Software XUpload Control Buffer Overflow Exploit
I tried posting this yesterday, don't know what happened, anyhow, my advance apologies for any double posts. I took a shot at writing an exploit for this, so here goes. Code is inline and attached. ------------------------- !-- written by e.b. Persits Software XUpload Control AddFolder Buffer...
persists-addfolder.txt
I took a shot at writing an exploit for this, so here goes. Choice of WinExecthe calculator, what else? or a bindshell. ------------------------------- Persits Software XUpload Control AddFolder BoF Exploit function Check var buf = 'A'; while buf.length = 1387 buf = buf + 'A'; // win32exec -...
Persits Software XUpload ActiveX控件远程栈溢出漏洞
BUGTRAQ ID: 27025 XUpload是功能强大的客户端上传ActiveX控件,允许用户同时上传多个文件。 XUpload ActiveX控件(XUpload.ocx)在处理传送给AddFolder方式的参数时存在栈溢出漏洞,如果用户受骗访问了恶意站点并向该方式传送了超长参数的话,就可能触发这个溢出,导致执行任意指令。 Persits XUpload 2.1.0.1 厂商补丁: Persits ------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://xupload.aspupload.com/ html...
Persits Software XUpload Control - AddFolder() Remote Buffer Overflow
Persits Software XUpload Control - AddFolder Remote Buffer Overflow Persits Software XUpload Control AddFolder BoF Exploit function Check var buf = 'A'; while buf.length = 1387 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2...
Persits Software XUpload Control AddFolder() Buffer Overflow Exploit
Exploit for unknown platform in category remote exploits ==================================================================== Persits Software XUpload Control AddFolder Buffer Overflow Exploit ==================================================================== Persits Software XUpload Control...
Persits Software XUpload Control - 'AddFolder()' Remote Buffer Overflow
Persits Software XUpload Control AddFolder BoF Exploit function Check var buf = 'A'; while buf.length = 1387 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 =...