CVE-2013-3928

Stack-based buffer overflow in the ReadFile function in fltBMP.dll in Chasys Draw IES before 4.11.02 allows remote attackers to execute arbitrary code via crafted biPlanes and biBitCount fields in a BMP file...

Chasys Draw IES Buffer Overflow Vulnerability

This Metasploit module exploits a buffer overflow vulnerability found in Chasys Draw IES version 4.10.01. The vulnerability exists in the module fltBMP.dll, while parsing BMP files, where the ReadFile function is used to store user provided data on the stack in a insecure way. It results in...

Chasys Draw IES - Local Buffer Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Chasys Draw IES...

CVE-2012-4054

Buffer overflow in the readfile function in CPE17 Autorun Killer 1.7.1 and earlier allows physically proximate attackers to execute arbitrary code via a crafted inf file...

Buffer overflow

Buffer overflow in the readfile function in CPE17 Autorun Killer 1.7.1 and earlier allows physically proximate attackers to execute arbitrary code via a crafted inf file...

CVE-2012-4054

CVE-2012-4054 affects CPE17 Autorun Killer 1.7.1 and earlier. The vulnerability is a buffer overflow in the readfile function that enables arbitrary code execution by a crafted inf file, with a Local attack vector and no authentication required per the CVSS data. Impact is listed as complete conf...

CPE17 Autorun Killer 1.7.1 - Local Stack Buffer Overflow (Metasploit)

CPE17 Autorun Killer 1.7.1 - Local Stack Buffer Overflow Metasploit CPE17 Autorun Killer 'CPE17 Autorun Killer %q readfile function is vulnerable it can be overflow , 'Author' = 'Xelenonz' , 'Version' = '0.1', 'Payload' = 'EncoderType' = Msf::Encoder::Type::AlphanumMixed, 'EncoderOptions' =...

CVE-2007-3007

PHP 5 before 5.2.3 does not enforce the openbasedir or safemode restriction in certain cases, which allows context-dependent attackers to determine the existence of arbitrary files by checking if the readfile function returns a string. NOTE: this issue might also involve the realpath function...

CVE-2007-3007

PHP 5 before 5.2.3 does not enforce the openbasedir or safemode restriction in certain cases, which allows context-dependent attackers to determine the existence of arbitrary files by checking if the readfile function returns a string. NOTE: this issue might also involve the realpath function...

CVE-2007-3007

PHP 5 before 5.2.3 does not enforce the openbasedir or safemode restriction in certain cases, which allows context-dependent attackers to determine the existence of arbitrary files by checking if the readfile function returns a string. NOTE: this issue might also involve the realpath function...

PT-2007-4304 · Php · Php

Name of the Vulnerable Software and Affected Versions: PHP versions prior to 5.2.3 Description: The issue allows context-dependent attackers to determine the existence of arbitrary files by checking if the readfile function returns a string. This might also involve the realpath function...

readfile() Safe Mode Bypass PHP 5.2.1/ 5.1.6 / 4.4.4

SecurityRisk : DEN Remote Exploit : No Local Exploit : Yes Exploit Given : Yes Credit : The-WolF-kSA Date : 24.3.2007 Affected Software : PHP 5.2.1/ 5.1.6 / 4.4.4 readfile Safe Mode Bypass PHP 5.2.1/ 5.1.6 / 4.4.4 Author: ThE-WoLf-KsA Date: - -Written: 24.3.2007 - --- 0.Description --- - --- 1...

CVE-2006-4905

PHP remote file inclusion vulnerability in index.php in Artmedic Links 5.0 allows remote attackers to execute arbitrary PHP code via a URL in the id parameter, which is processed by the readfile function...

CVE-2006-4554

CVE-2006-4554 is a stack-based buffer overflow in BeCubed Compression Plus (ZOO-processing exports ReadFile) that allows arbitrary code execution via an inconsistent size parameter in a ZOO file header. Affected products include BeCubed Compression Plus prior to 5.0.1.28, and related suites such ...

CVE-2006-4554

Stack-based buffer overflow in the ReadFile function in the ZOO-processing exports in the BeCubed Compression Plus before 5.0.1.28, as used in products including 1 Tumbleweed EMF, 2 VCOM/Ontrack PowerDesk Pro, 3 Canyon Drag and Zip, 4 Canyon Power File, and 5 Canyon Power File Gold, allow...

CVE-2005-0596

PHP 4 PHP4 allows attackers to cause a denial of service daemon crash by using the readfile function on a file whose size is a multiple of the page size...

CVE-2005-0596

PHP 4 PHP4 allows attackers to cause a denial of service daemon crash by using the readfile function on a file whose size is a multiple of the page size...

php -- readfile() DoS vulnerability

A SUSE Security advisory reports: A bug in the readfile function of php4 could be used to to crash the httpd running the php4 code when accessing files with a multiple of the architectures page size leading to a denial of service...