Citrix Presentation Server Client 9.200 WFICA.OCX ActiveX Component Heap Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21458/info Citrix Presentation Server Client is prone to a heap buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer. An...

gAlan 0.2.1 - Buffer Overflow 0day Exploit

No description provided by source. !/usr/bin/perl kpasa.pl AKA gAlan Buffer Overflow 0day Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 12.07.2009 From Static Analysis to 0day Exploit Originally a SecurityTubeCon Presentation, which I'm guessing was canceled...

Citrix Presentation Server Client WFICA.OCX ActiveX - Heap BOF Exploit

No description provided by source. !-- Citrix Presentation Server Client WFICA.OCX ActiveX Component Heap Buffer Overflow Exploit Vulnerability discovered by Andrew Christensen and Aaron Portnoy http://www.securityfocus.com/bid/21458 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6334...

openSUSE Security Update : libreoffice-34 (openSUSE-SU-2011:1143-1)

LibreOffice 3.4 includes new interesting features and fixes, see http://www.libreoffice.org/download/3-4-new-features-and-fix es/ The update fixes the following security issue : - 704311: libreoffice Lotus Word Pro filter multiple vulnerabilities CVE-2011-2685 - 722075: LibreOffice: Out-of-bounds...

Fedora Update for tpp FEDORA-2014-1935

Check for the Version of tpp OpenVAS Vulnerability Test Fedora Update for tpp FEDORA-2014-1935 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...

[SECURITY] Fedora 20 Update: tpp-1.3.1-17.fc20

tpp stands for text presentation program and is a ncurses-based presentation tool. The presentation can be written with your favorite editor in a simple description format and then shown on any text terminal that is supported by ncurses - ranging from an old VT100 to the Linux framebuffer to an...

[SECURITY] Fedora 19 Update: tpp-1.3.1-17.fc19

tpp stands for text presentation program and is a ncurses-based presentation tool. The presentation can be written with your favorite editor in a simple description format and then shown on any text terminal that is supported by ncurses - ranging from an old VT100 to the Linux framebuffer to an...

Stem Innovation IZON Hardcoded Password

Stem Innovation ‘IZON’ Hard-coded Credentials CVE-2013-6236 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- Stem Innovation's IP camera called ‘IZON’ utilizes numerous hard-coded credentials within its Linux distribution and also the hidden web...

[Creepy] Geolocation information Gathering through Social Networking Platforms

Creepy is a geolocation OSINT tool. Gathers geolocation related information from online sources, and allows for presentation on map, search filtering based on exact location and/or date, export in csv format or kml for further analysis in Google Maps. What's new in v1.0.x ? Creepy now uses Qt 4,...

Geolocation OSINT Tool Creepy

Geolocation OSINT Tool Creepy Creepy is a geolocation OSINT tool. Gathers geolocation related information from online sources, and allows for presentation on map, search filtering based on exact location and/or date, export in csv format or kml for further analysis in Google Maps. What’s new in...

Mozilla: Miscellaneous use-after-free issues found through ASAN fuzzing (MFSA 2013-100)

Use-after-free vulnerability in the nsIPresShell::GetPresContext function in the PresShell aka presentation shell implementation in Mozilla Firefox before 25.0, Firefox ESR 17.x before 17.0.10 and 24.x before 24.1, Thunderbird before 24.1, Thunderbird ESR 17.x before 17.0.10, and SeaMonkey before...

Stem Innovation - 'IZON' Hard-Coded Credentials

Stem Innovation ‘IZON’ Hard-coded Credentials CVE-2013-6236 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- Stem Innovation's IP camera called ‘IZON’ utilizes numerous hard-coded credentials within its Linux distribution and also the hidden web...

Apple Keynote < 6.0 Presentation Mode Lock Engagement Screen Lock Bypass

The version of Apple Keynote installed on the remote Mac OS X host is earlier than 6.0. As such, it reportedly suffers from a vulnerability in which the screen lock may not be engaged when the computer is put to sleep while in Keynote presentation mode under certain conditions. C Tenable Network...

CVE-2013-5148

Apple Keynote before 6.0 does not properly handle the interaction between Keynote presentation mode and the Screen Lock implementation, which allows physically proximate attackers to obtain access by visiting an unattended workstation on which this mode was enabled during a sleep operation...

[SECURITY] Fedora 18 Update: libreoffice-3.6.7.2-3.fc18

LibreOffice is an Open Source, community-developed, office productivity sui te. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office suites...

Citrix Presentation Server 4.5 Multiple Vulnerabilities

The version of Citrix Presentation Server installed on the remote Windows host is potentially affected by multiple vulnerabilities : - The application can cause clients to use weaker encryption settings than configured by the administrator, which could allow attackers to bypass intended...

Citrix Presentation Server 4.5 ActiveSync Feature Code Execution

The version of Citrix Presentation Server installed on the remote Windows host is potentially affected by a code execution vulnerability in the ActiveSync Feature. By exploiting this flaw, a remote, unauthenticated attacker could execute arbitrary code on the remote host subject to the privileges...

Citrix Presentation Server 4.5 Code Execution

The version of Citrix Presentation Server installed on the remote Windows host is potentially affected by multiple code execution vulnerabilities. By sending a specially crafted packet to the IMA server process, a remote, unauthenticated attacker could execute arbitrary code subject to the...

[SECURITY] Fedora 19 Update: libreoffice-4.1.0.3-2.fc19

LibreOffice is an Open Source, community-developed, office productivity sui te. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office suites...

SAP ConfigServlet - Remote Payload Execution (Metasploit)

require 'msf/core' class Metasploit3 'SAP ConfigServlet Remote Code Execution', 'Description' = %q This module allows remote code execution via operating system commands through the SAP ConfigServlet without any authentication. , 'Author' = 'Dmitry Chastuhin', Vulnerability discovery based on the...