5905 matches found
Corel PDF Fusion Stack Buffer Overflow
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex/zip' class Metasploit3 'Corel PDF Fusion...
Corel PDF Fusion Stack Buffer Overflow
This module exploits a stack-based buffer overflow vulnerability in version 1.11 of Corel PDF Fusion. The vulnerability exists while handling a XPS file with long entry names. In order for the payload to be executed, an attacker must convince the target user to open a specially crafted XPS file...
Winamp 5.63 - Stack Buffer Overflow
Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: WinAmp Vendor URL: www.winamp.com Type: Stack-based Buffer Overflow CWE-121 Date found: 2013-06-05 Date published: 2013-07-01 CVSSv2 Score: Bug 1: 7,5 AV:N/AC:L/Au:N/C:P/I:P/A:P Bug 2: 3,7...
cURL/libcURL 'Curl_sasl_create_digest_md5_message()' Stack Buffer Overflow
Binary data 6901.prm...
Adobe Multiple Products PNG File Handling Stack Buffer Overflow (CVE-2007-2365)
There exists a stack buffer overflow vulnerability in Adobe Photoshop...
3S Smart Software Solutions CoDeSys Gateway Server Stack Buffer Overflow (CVE-2012-4708)
A stack buffer overflow vulnerability has been reported in 3S Smart Software CoDeSys...
aSc Timetables 2013 - Local Stack Buffer Overflow
!/usr/bin/python Title : ASC Timetables 2013 - Stack Buffer Overflow Vulnerability Researcher : Souhail Hammou Dark-Puzzle Research Team : http://itsecurity.ma Facebook : http://www.facebook.com/dark.puzzle.sec Date : 22/06/2013 Download Website : www.asctimetables.com/downloaden.html Software...
MiniUPnPd 1.0 Stack Buffer Overflow Remote Code Execution (CVE-2013-0230)
A stack buffer overflow has been reported in MiniUPnP 1.0 SOAP. The vulnerability is due to a boundary error when processing SOAPAction HTTP requests. A remote attacker can exploit this issue by sending specially crafted requests. Successful exploitation would allow an attacker to inject and...
aSc Timetables 2013 Stack Buffer Overflow
!/usr/bin/python Title : ASC Timetables 2013 - Stack Buffer Overflow Vulnerability Researcher : Souhail Hammou Dark-Puzzle Research Team : http://itsecurity.ma Facebook : http://www.facebook.com/dark.puzzle.sec Date : 22/06/2013 Download Website : www.asctimetables.com/downloaden.html Software...
Synactis PDF In-The-Box - ConnectToSynactic Stack Buffer Overflow (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 HttpClients::IE,...
Hewlett-Packard Data Protector Cell Manager crs.exe Opcode 227 Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector. Authentication is not required to exploit this vulnerability. The specific flaw exists within crs.exe which listens by default on a random TCP port. When parsing opcode 227, the...
MiniUPnPd 1.0 Stack Buffer Overflow Remote Code Execution
This Metasploit module exploits the MiniUPnP 1.0 SOAP stack buffer overflow vulnerability present in the SOAPAction HTTP header handling. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more...
BigAnt Server DDNF Request Stack Buffer Overflow
A stack buffer overflow vulnerability has been reported in BigAnt Server...
Lianja SQL 1.0.0RC5.1 db_netserver Stack Buffer Overflow Vulnerability
This Metasploit module exploits a stack buffer overflow in the dbnetserver process which is spawned by the Lianja SQL server. The issue is fixed in Lianja SQL 1.0.0RC5.2. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the...
Lianja SQL 1.0.0RC5.1 db_netserver Stack Buffer Overflow
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Lianja SQL 1.0.0RC5.1 dbnetserver Sta...
Lianja SQL 1.0.0RC5.1 db_netserver Stack Buffer Overflow
This module exploits a stack buffer overflow in the dbnetserver process, which is spawned by the Lianja SQL server. The issue is fixed in Lianja SQL 1.0.0RC5.2. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
Nginx HTTP Server 1.3.9-1.4.0 Chunked Encoding Stack Buffer Overflow
This Metasploit module exploits a stack buffer overflow in versions 1.3.9 to 1.4.0 of nginx. The exploit first triggers an integer overflow in the ngxhttpparsechunked by supplying an overly long hex value as chunked block size. This value is later used when determining the number of bytes to read...
Nginx HTTP Server 1.3.9-1.4.0 Chunked Encoding Stack Buffer Overflow
This module exploits a stack buffer overflow in versions 1.3.9 to 1.4.0 of nginx. The exploit first triggers an integer overflow in the ngxhttpparsechunked by supplying an overly long hex value as chunked block size. This value is later used when determining the number of bytes to read into a sta...
nginx 'ngx_http_parse.c'栈缓冲区溢出漏洞
BUGTRAQ ID: 59699 CVECAN ID: CVE-2013-2028 nginx是HTTP及反向代理服务器,同时也用作邮件代理服务器。 nginx 1.3.9 - 1.4.0在解析HTTP块时,"ngxhttpparsechunked"函数 http/ngxhttpparse.c中存在错误,可被利用造成栈缓冲区溢出。 0 Nginx 1.3.9 - 1.4.0 临时解决方法: 建议您升级到nginx 1.4.1或者是1.5.0。但如果您不能立刻安装补丁或者升级,您可以采取以下措施以降低威胁: 在每个server块中使用如下配置 if $httptransferencodi...
WPS Office 'Wpsio.dll'栈缓冲区溢出漏洞
BUGTRAQ ID: 59529 CVECAN ID: CVE-2012-4886 WPS Office 是金山软件公司的一套办公软件。 WPS Office 2012 及其他版本中,Wpsio.dll模块存在栈缓冲区溢出漏洞,该漏洞源于文件内的某BSTR类型的字符串被复制到栈缓冲区时没有检查长度。攻击者可利用此漏洞造成受影响软件崩溃,可能执行任意代码。 0 Kingsoft Corp WPS Office 厂商补丁: Kingsoft Corp ------------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: www.wps....