TRENDnet TEW-755AP 缓冲区错误漏洞

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the REMOTEUSER parameter of the getaccess sub45AC2C function, which can be exploited by an attacker to execute arbitrary co...

Null pointer dereference

Many API function codes receive raw pointers remotely from the user and trust these pointers as valid in-bound memory regions. An attacker can manipulate API functions by writing arbitrary data into the resolved address of a raw pointer...

Aethra SV2242E XXE Injection Vulnerability

Aethra SV2242E suffers from an XML external entity injection vulnerability. Author : Ahmed Sultan Email : email protected Vuln. software : Aethra SV2242E Vendor site : aethra.it CVE : Requested , but haven't been assigned yet tested on : ATOS 5.6.x The bug rise because of the remote user input to...

Aethra SV2242E XXE Injection

Author : Ahmed Sultan Email : [email protected] Vuln. software : Aethra SV2242E Vendor site : aethra.it CVE : Requested , but haven't been assigned yet tested on : ATOS 5.6.x The bug rise because of the remote user input to "/cgi-bin/AmiWeb" is not sensitized before being parsed which cause the...

Icewarp Merak Mail Server 9.4.1 - 'Base64FileEncode()' Buffer Overflow (PoC)

"cgi-fcgi" die"Launch from the merak php console!"; if !functionexists"icewarpapiobjectcall" die"You need the icewarp extension loaded!"; $shellcode= //original scode, alpha2 esp sh.txt "\xeb\x13\x5b\x31\xc0\x50\x31\xc0\x88\x43\x4a\x53". "\xbb\x0d\x25\x86\x7c". //WinExec, kernel32.dll XP SP3...

Icewarp Merak Mail Server 9.4.1 - Base64FileEncode() Buffer Overflow (PoC)

Icewarp Merak Mail Server 9.4.1 - Base64FileEncode Buffer Overflow PoC "cgi-fcgi" die"Launch from the merak php console!"; if !functionexists"icewarpapiobjectcall" die"You need the icewarp extension loaded!"; $shellcode= //original scode, alpha2 esp sh.txt...

Icewarp Merak Mail Server 9.4.1 Overflow

"cgi-fcgi" die"Launch from the merak php console!"; if !functionexists"icewarpapiobjectcall" die"You need the icewarp extension loaded!"; $shellcode= //original scode, alpha2 esp sh.txt "\xeb\x13\x5b\x31\xc0\x50\x31\xc0\x88\x43\x4a\x53". "\xbb\x0d\x25\x86\x7c". //WinExec, kernel32.dll XP SP3...

AHG Search Engine 1.0 - 'search.cgi' Arbitrary Command Execution

source: https://www.securityfocus.com/bid/3985/info Search.CGI is a component of the HTMLsearch Search Engine software distributed by AHG. The software is available for the Unix, Linux, and Microsoft platforms. The search.cgi script included with the AHG Search Engine does not adequately filter...

Ipswitch WS_FTP Server 2.0 - Anonymous Multiple FTP Command Buffer Overflows

Ipswitch WSFTP Server 2.0 - Anonymous Multiple FTP Command Buffer Overflows source: https://www.securityfocus.com/bid/3102/info WS-FTP Server is vulnerable to malicious remote user input argumenting multiple FTP commands received from anonymously connecting clients. An attacker may supply a long...

Microburst uStorekeeper 1.x - Arbitrary Commands

Microburst uStorekeeper 1.x - Arbitrary Commands source: https://www.securityfocus.com/bid/2536/info A vulnerability exists in versions of uStorekeeper Online Shopping System from Microburst Technologies. The script fails to properly validate user-supplied input, allowing remote users to submit...