Flash Player cross domain HTTP header flaw

Interaction error between Adobe Flash and multiple Universal Plug and Play UPnP services allow remote attackers to perform Cross-Site Request Forgery CSRF style attacks by using the Flash navigateToURL function to send a SOAP message to a UPnP control point, as demonstrated by changing the primar...

Unfixed XSS vulnerability at www.play-publishing.com

Security researcher mygotmanoel, has submitted on 21/01/2008 a cross-site-scripting XSS vulnerability affecting www.play-publishing.com, which at the time of submission ranked 564296 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/03/2008. I...

Debian: Security Advisory (DSA-322)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Design/Logic Flaw

LScube Feng 0.1.15 and earlier allows remote attackers to cause a denial of service NULL dereference and daemon crash via 1 a malformed Transport header, which triggers misparsing in parsetransportheader in RTSPsetup.c, as demonstrated by a Transport header that contains only a...

MS Windows Plug-and-Play (Umpnpmgr.dll) DoS Exploit (MS05-047)

No description provided by source. include stdio.h include windows.h pragma commentlib, "mpr" pragma commentlib, "Rpcrt4" unsigned char szBindString = 0x05,0x00,0x0b,0x03,0x10,0x00,0x00,0x00,0x48,0x00,0x00,0x00,0x01,0x00,0x00,0x00,...

DVD X Player 4.1 Professional - .PLF File Buffer Overflow

DVD X Player 4.1 Professional - .PLF File Buffer Overflow !/usr/bin/env ruby 0day DVD X Player 4.1 Professional .PLF file buffer over flow found by n00b and poc by n00b. First of all DVD x is prone to a buffer-overflow when playing an overly long file name inside A .plf file Which is InterVideo...

DVD X Player 4.1 Professional - '.PLF' File Buffer Overflow

!/usr/bin/env ruby 0day DVD X Player 4.1 Professional .PLF file buffer over flow found by n00b and poc by n00b. First of all DVD x is prone to a buffer-overflow when playing an overly long file name inside A .plf file Which is InterVideo WinDVD Play list File but also Dvd x uses this file as a pl...

MS07-019: Vulnerability in Universal Plug and Play Could Allow Remote Code Execution (931261)

The remote version of Windows contains a flaw in the http request handler the Plug and Play service that could allow an attacker to execute arbitrary code on the remote host with the service privileges. Tenable Network Security, Inc. include"compat.inc"; if description scriptid25022;...

CVE-2007-1728

The Remote Play feature in Sony Playstation 3 PS3 1.60 and Playstation Portable PSP 3.10 OE-A allows remote attackers to cause a denial of service via a flood of UDP packets...

Design/Logic Flaw

The Remote Play feature in Sony Playstation 3 PS3 1.60 and Playstation Portable PSP 3.10 OE-A allows remote attackers to cause a denial of service via a flood of UDP packets...

CVE-2007-1728

The CVE-2007-1728 entry concerns Sony PlayStation 3 (firmware 1.60) and PlayStation Portable (firmware 3.10 OE-A). The vulnerability arises from the Remote Play feature, where remote attackers can trigger a denial-of-service by flooding the affected device with UDP datagrams. The documents explic...

CVE-2007-1728

The Remote Play feature in Sony Playstation 3 PS3 1.60 and Playstation Portable PSP 3.10 OE-A allows remote attackers to cause a denial of service via a flood of UDP packets...

ps3rpdos.pl.txt

!/usr/bin/perl .:Playstation 3 "Remote Play" Remote DoS Exploit:. A UDP flood while the "remote play" feature is active will result in a denial of service condition. Tested using PS3 v1.60 20GB & PSP v3.10 OE-A -DarkK POC code is based on odix's perl udp flooder use Socket; $ARGC=@ARGV; if $ARGC...

Sony Playstation 3 flood DoS

UDP datagrams flood DoS with enabled remote play feature...

MS05-047: Plug and Play Remote Code Execution and Local Privilege Elevation (905749) (uncredentialed check)

The remote host contains a version of the Plug and Play service that contains a vulnerability in the way it handles user-supplied data. An authenticated attacker may exploit this flaw by sending a malformed RPC request to the remote service and execute code with SYSTEM privileges. Note that...

MS05-039 Microsoft Plug and Play Service Overflow

This module exploits a stack buffer overflow in the Windows Plug and Play service. This vulnerability can be exploited on Windows 2000 without a valid user account. NOTE: Since the PnP service runs inside the service.exe process, a failed exploit attempt will cause the system to automatically...

Microsoft Plug and Play Service Registry Overflow

This module triggers a stack buffer overflow in the Windows Plug and Play service. This vulnerability can be exploited on Windows 2000 without a valid user account. Since the PnP service runs inside the service.exe process, this module will result in a forced reboot on Windows 2000. Obtaining cod...

D-Link Router UPNP Stack Overflow

D-Link Router UPNP Stack Overflow Release Date: July 13, 2006 Date Reported: February 27, 2006 Patch Development Time In Days: 136 Severity: High Remote Code Execution Vendor: D-Link Routers Affected: DI-524 Rev A DI-524 Rev C DI-524 Rev D DI-604 Rev E DI-624 Rev C DI-624 Rev D DI-784 Rev A...

CVE-2006-3687

Stack-based buffer overflow in the Universal Plug and Play UPnP service in D-Link DI-524, DI-604 Broadband Router, DI-624, D-Link DI-784, WBR-1310 Wireless G Router, WBR-2310 RangeBooster G Router, and EBR-2310 Ethernet Broadband Router allows remote attackers to execute arbitrary code via a long...

CVE-2006-3687

Stack-based buffer overflow in the Universal Plug and Play UPnP service in D-Link DI-524, DI-604 Broadband Router, DI-624, D-Link DI-784, WBR-1310 Wireless G Router, WBR-2310 RangeBooster G Router, and EBR-2310 Ethernet Broadband Router allows remote attackers to execute arbitrary code via a long...