1545 matches found
dbPowerAmp < 2.0/10.0 - Local Buffer Overflow
dbPowerAmp Buffer Overflow Vendor: Illustrate Product: dbPowerAmp Version: = 2.0/10.0 Website: http://www.dbpoweramp.com BID: 11266 CVE: CVE-2004-1569 OSVDB: 10380 11126 11127 SECUNIA: 12684 PACKETSTORM: 34531 Description: Often called the Swiss Army knife of audio, dMC can digitally rip sound fr...
Apple Safari Multiple Memory Corruption Vulnerabilities-02 (Aug 2014) - Mac OS X
Apple Safari is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:safari"; ifdescription...
VMTurbo Operations Manager '/cgi-bin/vmtadmin.cgi' RCE Vulnerability
VMTurbo Operations Manager is prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
VMTurbo Operations Manager 4.6 - 'vmtadmin.cgi' Remote Command Execution (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'VMTurbo Operations Manager 4.6 vmtadmin.cgi Remote Command Execution', 'Description' = %q VMTurbo Operations Manager 4.6 and prior ar...
VMTurbo Operations Manager vmtadmin.cgi Remote Command Execution
VMTurbo Operations Manager 4.6 and prior are vulnerable to unauthenticated OS Command injection in the web interface. Use reverse payloads for the most reliable results. Since it is a blind OS command injection vulnerability, there is no output for the executed command when using the cmd generic...
XnView RAS Image Processing Heap Overflow
No description provided by source. Application: XnView RAS Image Processing Heap Overflow Platforms: Windows Secunia: SA49091 PRL: 2012-14 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3...
Novell Groupwise 8.0.2 HP3 and 2012 Integer Overflow Vulnerability
No description provided by source. Application: Novell Groupwise Platforms: Windows Version: 8.0.2 HP3 and 2012 Secunia: SA50622 PRL: 2012-28 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3...
FeedDemon <= 2.7 OPML Outline Tag Buffer Overflow Exploit
No description provided by source. !/usr/local/bin/perl ----------------------------------------------------------------------------- FeedDemon version 2.7.0.0 Buffer overFlow Reference: http://security.bkis.vn/?p=329 http://www.securityfocus.com/bid/33630/info http://secunia.com/advisories/33718...
Cyme ChartFX Client Server ActiveX Control Array Indexing Vulnerability
No description provided by source. Application: CYME Power Engineering Software Platforms: Windows Version: CYME version 5.0.12.663. Secunia: SA48430 PRL: 2012-29 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2...
3Com TFTP Service <= 2.0.1 - Remote Buffer Overflow Exploit (meta)
No description provided by source. package Msf::Exploit::3comtftplongmode; use strict; use base Msf::Exploit; use Pex::Text; use IO::Socket; my $advanced = ; my $info = 'Name' = 'TFTP Server 3CTftpSvc Buffer Overflow Vulnerability', 'Version' = '$ 1.0 $', 'Authors' = 'Enseirb vincenty at...
ACDSee PRO 5.1 CUR Image Processing Heap Overflow
No description provided by source. Application: ACDSee PRO CUR Image Processing Heap Overflow Platforms: Windows Secunia: SA48804 PRL: 2012-19 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3...
Corel PDF Fusion Stack Buffer Overflow
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex/zip' cla...
Photo DVD Maker Pro <= 8.02 - (.pdm) Local BOF Exploit (SEH)
No description provided by source. | || | / \ | | | | | | | | | - | | | / / | | |||| || // / |\ || + Bug : Photo DVD Maker .pdm Local Buffer Overflow Exploit SEH + Refer : Secunia advisory 35709 + Exploit : His0k4 + Tested on : Windows XP SP3 + Description: The program filters some chars i...
IrfanView 4.33 DJVU Image Processing Heap Overflow
No description provided by source. Application: IrfanView DJVU Image Processing Heap Overflow Version: The vulnerability is confirmed in version 4.33. Other versions may also be affected Plateform: Windows Exploitation: Remote code execution Secunia Number: SA49176 PRL: 2012-23 Author: Francis...
IrfanView FlashPix PlugIn Decompression Heap Overflow
No description provided by source. Application: IrfanView FlashPix PlugIn Decompression Heap Overflow Platforms: Windows Secunia Number: SA48772 PRL: 2012-08 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2...
Novell iPrint Client ActiveX Control call-back-url Buffer Overflow Exploit (meta)
No description provided by source. novelliprintcallbackurl.rb Novell iPrint Client ActiveX Control call-back-url Buffer Overflow exploit for the Metasploit Framework Exploit successfully tested on the following platforms: - Novell iPrint Client 5.40 on Internet Explorer 7, Windows XP SP3 - Novell...
Oracle Outside-In LWP File Parsing Stack Based Buffer Overflow
No description provided by source. Application: Oracle Outside-In LWP File Parsing Stack Based Buffer Overflow Version: The vulnerabilities are reported in versions 8.3.5 and 8.3.7. Exploitation: Remote code execution Secunia Number: SA49936 PRL: 2012-25 Author: Francis Provencher Protek Research...
Network Instrument Observer SNMP SetRequest Denial of Service Vulnerability
No description provided by source. Application: Network Instrument Observer SNMP SetRequest Denial of Service Vulnerability Platforms: Windows Secunia: SA47898 PRL: 2012-05 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1...
IrfanView 4.33 Format PlugIn TTF File Parsing Stack Based Overflow
No description provided by source. Application: IrfanView 4.33 Format PlugIn TTF File Parsing Stack Based Overflow Plateform: Windows Exploitation: Remote code execution Secunia Number: SA49319 PRL: 2012-11 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com...
Meditate Web Content Editor 'username_input' SQL-Injection vulnerability
No description provided by source. Advisory: Meditate Web Content Editor 'usernameinput' SQL-Injection vulnerability Advisory ID: SSCHADV2011-039 Author: Stefan Schurtz Affected Software: Successfully tested on Meditate 1.2 Vendor URL: http://www.arlomedia.com/ Vendor Status: fixed...