RabidHamster Log Entry sprintf() Buffer Overflow

A heap buffer overflow vulnerability exists in RabidHamster R4 web server...

ZDI-12-171 : (0Day) Hewlett-Packard Intelligent Management Center UAM sprintf Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-171 : 0Day Hewlett-Packard Intelligent Management Center UAM sprintf Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-171 August 29, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected...

CVE-2011-0524

Multiple buffer overflows in the NMEA parser nmea-gen.c in gypsy 0.8 allow local users to cause a denial of service crash via unspecified vectors related to the sprintf function...

Buffer overflow

Multiple buffer overflows in the NMEA parser nmea-gen.c in gypsy 0.8 allow local users to cause a denial of service crash via unspecified vectors related to the sprintf function...

CVE-2011-0524

Multiple buffer overflows in the NMEA parser nmea-gen.c in gypsy 0.8 allow local users to cause a denial of service crash via unspecified vectors related to the sprintf function...

CVE-2011-0524

Removed by vendor...

CVE-2011-0524

CVE-2011-0524 concerns gypsy 0.8, where multiple buffer overflows in the NMEA parser (nmea-gen.c) allow local users to crash the process via the sprintf-based vulnerability. The issue is tied to the NMEA parser’s use of sprintf, enabling denial of service when running gypsy 0.8. Connected sources...

Cisco Linksys PlayerPT ActiveX Control SetSource sURL argument Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 HttpClients::IE, :uaminver = "6.0",...

Cisco Linksys PlayerPT - ActiveX Control Buffer Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 HttpClients::IE, :uaminver = "6.0",...

Oracle Weblogic Apache Connector POST Request Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

VLC MMS Stream Handling Buffer Overflow

This module exploits a buffer overflow in VLC media player VLC media player prior to 2.0.0. The vulnerability is due to a dangerous use of sprintf which can result in a stack buffer overflow when handling a malicious MMS URI. This module uses the browser as attack vector. A specially crafted MMS...

Dell Webcam Software ActiveX Control CrazyTalk4Native.dll Buffer Overflow

Added: 03/23/2012 BID: 52571 OSVDB: 80205 Background Dell Webcam center was written by Creative and branded by Dell. It includes features to control the Dell laptop's integrated webcam, providing photo capture and video recording capability. It comes bundled with Creative Livecam, which provides...

Cisco Linksys WVC200 Wireless-G PTZ Internet Video Camera PlayerPT - ActiveX Control PlayerPT.ocx sprintf Buffer Overflow (PoC)

; msvcrt.sprintf 03238246 52 push edx 03238247 8D8C24 EC020000 lea ecx,dword ptr ss:esp+2EC 0323824E 68 48612603 push PlayerPT.03266148 ; ASCII "%s" 03238253 51 push ecx 03238254 FFD7 call edi !-- saved fro...

Dell Webcam Software Bundled - ActiveX Remote Buffer Overflow

Dell Webcam Software Bundled - ActiveX Remote Buffer Overflow Dell Webcam Software Bundled ActiveX Control CrazyTalk4Native.dll sprintf Remote Buffer Overflow Vulnerability Tested against: Microsoft Windows Vista SP2 Microsoft Windows XP SP3 Microsoft Windows 2003 R2 SP2 Internet Explorer 7/8/9...

Dell Webcam Software Bundled ActiveX Remote Buffer Overflow

Exploit for windows platform in category remote exploits Dell Webcam Software Bundled ActiveX Control CrazyTalk4Native.dll sprintf Remote Buffer Overflow Vulnerability Tested against: Microsoft Windows Vista SP2 Microsoft Windows XP SP3 Microsoft Windows 2003 R2 SP2 Internet Explorer 7/8/9 downlo...

R4 1.25 Overflows / Directory Traversal

Luigi Auriemma Application: R4 http://r4.rabidhamster.org/R4/ Versions: = 1.25 Platforms: Windows Bugs: A stack overflow B heap overflow C directory traversal D screenshot stack overflow Exploitation: remote Date: 09 Feb 2012 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1...

Trend Micro Control Manager Server-agent Communication Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trent Micro Control Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within how the mrf.exe component composes a string used to display an error...

nSense-2010-003: Cisco Unified Communications Manager

nSense Vulnerability Research Security Advisory NSENSE-2010-003 --------------------------------------------------------------- Affected Vendor: Cisco Systems, Inc Affected Product: Cisco Unified Communications Manager Platform: All Impact: Privilege Escalation Vendor response: Patch. IntelliShie...

Sun Java Runtime New Plugin docbase Buffer Overflow

This module exploits a flaw in the new plugin component of the Sun Java Runtime Environment before v6 Update 22. By specifying specific parameters to the new plugin, an attacker can cause a stack-based buffer overflow and execute arbitrary code. When the new plugin is invoked with a "launchjnlp"...

Ultra Shareware Office Control - ActiveX HttpUpload Buffer Overflow (Metasploit)

$Id: ultraofficehttpupload.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...