Lucene search
K

39 matches found

Kitploit
Kitploit
added 2015/10/30 12:51 a.m.46 views

ZIB - The Open Tor Botnet

General information and instructions. The Open Tor Botnet requires the installation and configuration of bitcoind, however I neglect to detail this here out of a lack of time. This bot-net is fully undetectable and bypasses all antivirus through running on top of Python27's pyinstaller, which is...

7.4AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/10/13 12:0 a.m.33 views

(0Day) Samsung SmartViewer STWAxConfig DVRSetupSave Untrusted Pointer Dereference Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samsung SmartViewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS7AI score0.03893EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/10/13 12:0 a.m.22 views

(0Day) Samsung SmartViewer STWAxConfigNVR SendCustomPacket Untrusted Pointer Dereference Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samsung SmartViewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS7AI score0.03893EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/10/13 12:0 a.m.30 views

(0Day) Samsung SmartViewer CNC_Ctrl ActiveX Control rtsp_getdlsendtime Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samsung SmartViewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling...

6.8CVSS6.5AI score0.03363EPSS
Exploits0References1
0day.today
0day.today
added 2015/01/20 12:0 a.m.44 views

Samsung SmartViewer BackupToAvi 3.0 - Remote Code Execution Exploit

Exploit for windows platform in category remote exploits var payloadlength = 15000; var arg1=1; var arg2=1; var arg3=1; //blank strings var junk = ""; var buf1 = ""; var buf2 = ""; //offset to SE is 156, initial analysis using metasploit cyclic pattern for i=0; i 0day.today 2018-02-27...

6.8CVSS0.4AI score0.0402EPSS
Exploits4
exploitpack
exploitpack
added 2015/01/19 12:0 a.m.29 views

Samsung SmartViewer BackupToAvi 3.0 - Remote Code Execution

Samsung SmartViewer BackupToAvi 3.0 - Remote Code Execution var payloadlength = 15000; var arg1=1; var arg2=1; var arg3=1; //blank strings var junk = ""; var buf1 = ""; var buf2 = ""; //offset to SE is 156, initial analysis using metasploit cyclic pattern for i=0; i...

6.8CVSS1AI score0.0402EPSS
Exploits4
Check Point Advisories
Check Point Advisories
added 2015/01/19 12:0 a.m.34 views

Samsung SmartViewer CNC_Ctrl ActiveX Control Buffer Overflow (CVE-2012-4333; CVE-2014-9265)

A stack buffer overflow vulnerability exists in Samsung SmartViewer. The vulnerability is due to improper validation of a parameter provided to the BackupToAvi method of the CNCCtrl ActiveX Control. A remote, unauthenticated attacker can exploit this vulnerability by enticing the target user to...

10CVSS4.8AI score0.60447EPSS
Exploits6
Packet Storm
Packet Storm
added 2015/01/19 12:0 a.m.35 views

Samsung SmartViewer BackupToAvi 3.0 Remote Code Execution

var payloadlength = 15000; var arg1=1; var arg2=1; var arg3=1; //blank strings var junk = ""; var buf1 = ""; var buf2 = ""; //offset to SE is 156, initial analysis using metasploit cyclic pattern for i=0; i...

6.8CVSS1AI score0.0402EPSS
Exploits4
Exploit DB
Exploit DB
added 2015/01/19 12:0 a.m.31 views

Samsung SmartViewer BackupToAvi 3.0 - Remote Code Execution

var payloadlength = 15000; var arg1=1; var arg2=1; var arg3=1; //blank strings var junk = ""; var buf1 = ""; var buf2 = ""; //offset to SE is 156, initial analysis using metasploit cyclic pattern for i=0; i...

6.8CVSS6.9AI score0.0402EPSS
Exploits4
NVD
NVD
added 2014/12/08 4:59 p.m.14 views

CVE-2014-9266

The STWConfig ActiveX control in Samsung SmartViewer does not properly initialize a variable, which allows remote attackers to execute arbitrary code via unspecified vectors...

6.8CVSS7.7AI score0.02612EPSS
Exploits0References2
NVD
NVD
added 2014/12/08 4:59 p.m.14 views

CVE-2014-9265

Stack-based buffer overflow in the BackupToAvi method in the CNCCtrl ActiveX control in Samsung SmartViewer allows remote attackers to execute arbitrary code via unspecified vectors...

6.8CVSS8AI score0.0402EPSS
Exploits4References2
Prion
Prion
added 2014/12/08 4:59 p.m.17 views

Code injection

The STWConfig ActiveX control in Samsung SmartViewer does not properly initialize a variable, which allows remote attackers to execute arbitrary code via unspecified vectors...

6.8CVSS8.2AI score0.02612EPSS
Exploits0References2
Prion
Prion
added 2014/12/08 4:59 p.m.14 views

Stack overflow

Stack-based buffer overflow in the BackupToAvi method in the CNCCtrl ActiveX control in Samsung SmartViewer allows remote attackers to execute arbitrary code via unspecified vectors...

6.8CVSS8.7AI score0.0402EPSS
Exploits4References2
CVE
CVE
added 2014/12/08 4:0 p.m.43 views

CVE-2014-9266

Summary of CVE-2014-9266 (Samsung SmartViewer): The STWConfig ActiveX control in Samsung SmartViewer contains a flaw where a variable is not initialized before use, enabling remote code execution. According to ZDI-14-400, exploitation requires user interaction (target visits a malicious page or o...

6.8CVSS7.9AI score0.02612EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2014/12/08 4:0 p.m.17 views

CVE-2014-9265

Stack-based buffer overflow in the BackupToAvi method in the CNCCtrl ActiveX control in Samsung SmartViewer allows remote attackers to execute arbitrary code via unspecified vectors...

8AI score0.0402EPSS
Exploits4References2
CVE
CVE
added 2014/12/08 4:0 p.m.60 views

CVE-2014-9265

CVE-2014-9265: A stack-based buffer overflow in the BackupToAvi method of Samsung SmartViewer’s CNC_Ctrl ActiveX Control allows remote code execution. The root cause is improper validation of the input buffer size before copying into a fixed-size stack buffer. Exploitation typically requires user...

6.8CVSS8.2AI score0.0402EPSS
Exploits4References2Affected Software1
Cvelist
Cvelist
added 2014/12/08 4:0 p.m.23 views

CVE-2014-9266

The STWConfig ActiveX control in Samsung SmartViewer does not properly initialize a variable, which allows remote attackers to execute arbitrary code via unspecified vectors...

7.7AI score0.02612EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2014/12/04 12:0 a.m.26 views

Samsung SmartViewer STWConfig ActiveX Control Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samsung SmartViewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the STWConfi...

6.8CVSS6.6AI score0.02612EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2014/12/04 12:0 a.m.25 views

Samsung SmartViewer CNC_Ctrl ActiveX Control BackupToAvi Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samsung SmartViewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling...

7.5CVSS6.6AI score0.0402EPSS
Exploits4References1
Rows per page
Query Builder