Novell NetMail <= 3.52d NMAP STOR Buffer Overflow

No description provided by source. $Id: nmapstor.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

MS Virtual Machine 2000/3100/3200/3300 Series com.ms.activeX.ActiveXComponent Arbitrary Program Execution

No description provided by source. source: http://www.securityfocus.com/bid/1754/info If a malicious website operator were to embed a specially crafted java object into a HTML document, it would be possible to execute arbitrary programs on a target host viewing the webpage through either Microsof...

Progea Movicon 11 TCPUploadServer Remote Exploit

No description provided by source. !/usr/bin/python movi.py Progea Movicon TCPUploadServer Remote Exploit Jeremy Brown / jbrown at patchtuesday dot org Mar 2011 TCPUploadServer allows remote users to execute functions on the server without any form of authentication. Impacts include deletion of...

Winamp stack overflow analysis and use-vulnerability and early warning-the black bar safety net

Winamp is a relatively old player, here is mainly through winamp a poc analysis, to construct a exp. 主 程序 见 附件 winamp.exe poc see Annex poc. m3u. A Poc analysis View the first poc below. Found in addition to the front 1 0 more bytes of the m3u File format to specify the contents, the other parts...

Microsoft Windows Mail HTML Link Program Execution - Ver2 (CVE-2007-1658)

A command and program execution vulnerability has been reported in Microsoft Windows Vista. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands and programs on the affected system...

Directory traversal

The KCHARTXYLib.KChartXY ActiveX control in KChartXY.ocx before 65.30.30000.10002 in WellinTech KingView before 6.53 does not properly restrict SaveToFile method calls, which allows remote attackers to create or overwrite arbitrary files, and subsequently execute arbitrary programs, via the singl...

[SECURITY] Fedora 17 Update: ktimer-4.10.5-1.fc17

KTimer is a little tool to execute programs after some time...

[SECURITY] Fedora 18 Update: ktimer-4.10.5-1.fc18

KTimer is a little tool to execute programs after some time...

[SECURITY] Fedora 18 Update: ktimer-4.10.4-1.fc18

KTimer is a little tool to execute programs after some time...

Vulnerability in &quot;Fujitsu Desktop Update&quot; &#40;for Windows&#41;

Hi @ll, Fujitsu's update utility "Fujitsu Desktop Update" see http://support.ts.fujitsu.com/DeskUpdate/Index.asp, which is factory-preinstalled on every Fujitsu Siemens PC with Windows, has a vulnerability which allows the execution of a rogue program in the security context of the current user...

CVE-2012-6460

Opera before 11.67 and 12.x before 12.02 allows remote attackers to cause truncation of a dialog, and possibly trigger downloading and execution of arbitrary programs, via a crafted web site...

Permanent Reverse TCP Backdoor for IPhone and IPad

Security Expert from Coresec explains the use of a Permanent Reverse TCP Backdoor "sbd-1.36" for IPhone and IPad developed by Michel Blomgren. sbd is a Netcat-clone, designed to be portable and offer strong encryption. It runs on Unix-like operating systems and on Microsoft Win32. sbd features...

FFFTP < 1.98b Untrusted Search Path Vulnerability - Windows

FFFTP is prone to untrusted search path vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

UUSee UUPlayer ActiveX控件多个远程代码执行漏洞

Bugtraq ID: 48975 CVE ID：CVE-2011-2589 CVE-2011-2590 UUSee是一款集P2P直播点播于一身的网络电视软件。 UUSee存在两个安全漏洞，允许攻击者以应用程序上下文执行任意代码。 -当处理"SendLogAction"方法时UUPlayer ActiveX控件存在边界错误，通过提交超长参数可触发基于堆的缓冲区溢出。 -当处理"Play"方法时UUPlayer ActiveX控件存在输入验证错误，向"MPlayerPath"参数传递UNC路径可以应用程序上下文执行任意程序。 UUSee UUPlayer 6.0.0.1 厂商解决方案...

CVE-2011-2963

TCPUploadServer.exe in Progea Movicon 11.2 before Build 1084 does not require authentication for critical functions, which allows remote attackers to obtain sensitive information, delete files, execute arbitrary programs, or cause a denial of service crash via a crafted packet to TCP port 10651...

DSquare Exploit Pack: D2SEC_CISCOANY

Name| d2secciscoany ---|--- CVE| CVE-2011-2040 Exploit Pack| D2ExploitPack Description| Cisco AnyConnect VPN Client Arbitrary Program Execution Vulnerability Notes|...

CVE-2011-0638

Microsoft Windows does not properly warn the user before enabling additional Human Interface Device HID functionality over USB, which allows user-assisted attackers to execute arbitrary programs via crafted USB data, as demonstrated by keyboard and mouse data sent by malware on a smartphone that...

CVE-2011-0640

The default configuration of udev on Linux does not warn the user before enabling additional Human Interface Device HID functionality over USB, which allows user-assisted attackers to execute arbitrary programs via crafted USB data, as demonstrated by keyboard and mouse data sent by malware on a...

Null pointer dereference

Apple Mac OS X does not properly warn the user before enabling additional Human Interface Device HID functionality over USB, which allows user-assisted attackers to execute arbitrary programs via crafted USB data, as demonstrated by keyboard and mouse data sent by malware on a smartphone that the...

CVE-2011-0639

CVE-2011-0639 affects Apple Mac OS X where enabling HID functionality over USB can be performed without user warning. The embedded issue allows user-assisted attackers to run arbitrary code via crafted USB data, demonstrated by keyboard/mouse data sent by malware on a smartphone connected to the ...