CA产品警告通知服务器远程栈溢出漏洞

CVECAN ID: CVE-2007-3825 警告通知服务器（alert.exe）是很多CA产品都在使用的服务，用于为控制台用户提供通知。 警告通知服务器所注册的RPC接口（GUID 3d742890-397c-11cf-9bf1-00805f88cb72）存在栈溢出漏洞。如果远程攻击者向该服务接口提交了超长的RPC请求的话，就可能触发这个溢出，导致以系统权限执行任意指令。 可使用SMB协议到达有漏洞的代码，因此在Windows XP及之后系统上必须有效的认证凭据，而Windows 2000无须认证。 Computer Associates BrightStor ARCserve...

Visual IRC Join命令响应远程栈溢出漏洞

BUGTRAQ ID: 24798 Visual IRC（ViRC）是一个聊天客户端软件，可以进行仿真的语音聊天和图象传输。 Visual IRC在处理服务器回应数据时存在缓冲区溢出漏洞，远程恶意IRC服务器可能利用此漏洞控制用户机器。 如果Visual IRC用户受骗连接到了恶意的IRC服务器的话，则客户端在处理服务器所发送的超长JOIN命令响应时可能会触发栈溢出，导致执行任意指令。 Jesse McGrew Visual IRC 2.0 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.visualirc.net/...

W3Filer 2.1.3 Remote Stack Overflow PoC

Exploit for unknown platform in category dos / poc ======================================= W3Filer 2.1.3 Remote Stack Overflow PoC ======================================= / W3Filer Buffer Overflow Vulnerability DoS POC r0ut3r writ3r at gmail.com Version: 2.1.3 Description: If the client recieves ...

W3Filer 2.1.3 - Remote Stack Overflow (PoC)

W3Filer 2.1.3 - Remote Stack Overflow PoC / W3Filer Buffer Overflow Vulnerability DoS POC r0ut3r writ3r at gmail.com Version: 2.1.3 Description: If the client recieves a large banner when attempting to send a file the application will freeze, resulting in the user having to kill the application...

W3Filer 2.1.3 - Remote Stack Overflow (PoC)

/ W3Filer Buffer Overflow Vulnerability DoS POC r0ut3r writ3r at gmail.com Version: 2.1.3 Description: If the client recieves a large banner when attempting to send a file the application will freeze, resulting in the user having to kill the application. Alternatively the application will...

雅虎通Webcam Viewer ActiveX控件远程栈溢出漏洞

雅虎通是一款非常流行的即时通讯工具。 雅虎通的Webcam Viewer ActiveX控件实现上存在漏洞，远程攻击者可能利用此漏洞控制用户机器。 雅虎通的Webcam Viewer（ywcvwr.dll）ActiveX控件没有正确地验证对Server属性的输入。如果用户受骗访问了恶意站点向该属性传送了超长字符串然后又调用了Receive方式的话，就可能触发栈溢出，导致执行任意指令。 Yahoo! Messenger 8.1.0.249 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://messenger.yahoo.com/...

LeadTools Thumbnail Browser控件lttmb14E.ocx远程栈溢出漏洞

LeadTools Thumbnail Browser是用于生成缩略图的ActiveX控件。 LEAD Thumbnail Browser Control（lttmb14E.ocx）ActiveX控件在处理BrowseDir方式时存在栈溢出漏洞，如果用户受骗访问了恶意页面并向该方式传送了超长参数的话，就可以触发这个溢出，导致执行任意代码 LeadTools Thumbnail Browser Control 14.5.0.44 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

LeadTools JPEG 2000 COM Object Remote Stack Overflow Exploit

Exploit for unknown platform in category remote exploits ============================================================ LeadTools JPEG 2000 COM Object Remote Stack Overflow Exploit ============================================================ 2007/05/18...

LeadTools JPEG 2000 - COM Object Remote Stack Overflow

LeadTools JPEG 2000 - COM Object Remote Stack Overflow 2007/05/18 ----------------------------------------------------------------------------------------------- LeadTools JPEG 2000 COM Objejct LTJ2K14.ocx v. 14.5.0.35 Remote Stack-Based Buffer Overflow url: http://www.leadtools.com/ peice: ehehe...

ActSoft DVD-Tools - 'dvdtools.ocx 3.8.5.0' Remote Stack Overflow

'---------------------------------------------------------------------------------- ' ActSoft DVD-Tools dvdtools.ocx v. 3.8.5.0 Stack Overflow Exploit MoAxB bonus ' url: http://www.activex-soft.com ' ' original advisory: http://www.shinnai.altervista.org/viewtopic.php?id=41&tid=30 '...

ActSoft DVD-Tools - dvdtools.ocx 3.8.5.0 Remote Stack Overflow

ActSoft DVD-Tools - dvdtools.ocx 3.8.5.0 Remote Stack Overflow '---------------------------------------------------------------------------------- ' ActSoft DVD-Tools dvdtools.ocx v. 3.8.5.0 Stack Overflow Exploit MoAxB bonus ' url: http://www.activex-soft.com ' ' original advisory:...

Microsoft Internet Explorer - NCTAudioFile2.AudioFile ActiveX Remote Stack Overflow (2)

Microsoft Internet Explorer - NCTAudioFile2.AudioFile ActiveX Remote Stack Overflow 2 Sub tryMe '------------------------------------------------------------------ 'PoC2 IE NCTAudioFile2.AudioFile ActiveX Remote Stack Overfl0w 'original advisory: http://secunia.com/advisories/23475/ 'author:...

Asterisk SIP T.38 SDP解析远程栈溢出漏洞

Asterisk是一款PBX系统的软件，运行在Linux系统上，支持使用SIP、IAX、H323协议进行IP通话。 Asterisk的SIP/SDP处理器中存在多个远程栈溢出漏洞，远程攻击者可能利用此漏洞控制服务器。 如果所发送SIP报文中的SDP数据包含有超长的T38参数的话，就可以触发这个溢出，导致执行任意代码。这个漏洞是由chansip.c文件中的processsdp函数调用sscanf所导致的： else if sscanfa, "T38FaxRateManagement:%s", s == 1 found = 1; if optiondebug 2 astlogLOGDEBUG...

nctaudio.txt

/ ------------------------------------------------------------------------------------------------- PoC 79 Exes's / IE NCTAudioFile2.AudioFile ActiveX Remote Stack Overfl0w Auther: InTeL Original Advisory: http://secunia.com/secuniaresearch/ Attack Vector: EIP smash Type: Remote Malicious webpage...

MS Windows DNS DnssrvQuery Remote Stack Overflow Exploit

No description provided by source. / Copyright c 2007 devcode ^^ D E V C O D E ^^ Windows DNS DnssrvQuery Stack Overflow CVE-2007-1748 Description: A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system. The vulnerabili...

IE (7 9+ Exes) NCTAudioFile2. AudioFile ActiveX Remo-vulnerability warning-the black bar safety net

/ ------------------------------------------------------------------------------------------------- PoC 7 9 Exes's / IE NCTAudioFile2. AudioFile ActiveX Remote Stack Overfl0w Auther: InTeL original Advisory: http://secunia.com/secuniaresearch/ Attack Vector: EIP smash Type: Remote Malicious...

IE (79+ Exes) NCTAudioFile2.AudioFile ActiveX Remote Overflow Exploit

No description provided by source. / ------------------------------------------------------------------------------------------------- PoC 79 Exes's / IE NCTAudioFile2.AudioFile ActiveX Remote Stack Overfl0w Auther: InTeL Original Advisory: http://secunia.com/secuniaresearch/...

Microsoft Windows - DNS DnssrvQuery Remote Stack Overflow

/ Copyright c 2007 devcode ^^ D E V C O D E ^^ Windows DNS DnssrvQuery Stack Overflow CVE-2007-1748 Description: A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary erro...

Avant Browser 11.0 build 26 - Remote Stack Overflow Crash

Avant Browser 11.0 build 26 - Remote Stack Overflow Crash !/usr/bin/perl Avant Browser ALL Version Remot Stack OverFlow Crash Discovered by DATASNIPER Usage: connect from Avant browser to http://127.0.0.1/ use IO::Socket; my $sock=new IO::Socket::INET Listen = 1, LocalAddr = 'localhost', LocalPor...

Avant Browser 11.0 build 26 - Remote Stack Overflow Crash

!/usr/bin/perl Avant Browser ALL Version Remot Stack OverFlow Crash Discovered by DATASNIPER Usage: connect from Avant browser to http://127.0.0.1/ use IO::Socket; my $sock=new IO::Socket::INET Listen = 1, LocalAddr = 'localhost', LocalPort = 80, Proto = 'tcp'; die unless $sock; $huge="A" x...