5904 matches found
Novell ZENWorks Remote Management Agent DN Name Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell ZENWorks. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ZenRem32.exe process which listens by default on TCP and UDP ports 1761. When...
Novell iPrint Client GetDriverSettings Stack Buffer Overflow (CVE-2011-3173)
Novell iPrint Client is an application that allows users to install and manage printers, or submit print job from a web browser. Novell iPrint Client is bundled with a set of ActiveX controls that implement various functions. A stack buffer overflow exists in Novell iPrint Client. The vulnerabili...
PHP 5.3.3 GD Stack Buffer Overflow
Description: Prior to version 5.3.4, PHP's GD extension did not properly validate the number of anti-aliasing steps passed to the function imagepstext. The value of this parameter is expected to be either 4 or 16. To accommodate this, an array of 16 integers, aa, is located on the stack. Before t...
HP Data Protector Manager MMD Service Stack Buffer Overflow
Added: 12/10/2010 BID: 45128 Background HP Data Protector is a backup solution for enterprise and distributed environments. The Data Protector environment consists of a Cell Manager, backup agents, and backup device servers. The Cell Manager is the central point from which backup agents and devic...
Winamp "in_midi"组件MIDI时间戳栈缓冲区溢出漏洞
BUGTRAQ ID: 45221 Winamp是一款流行的媒体播放器,支持多种文件格式。 Winamp在实现上存在漏洞,攻击者可利用此漏洞以用户权限在受影响的应用程序中执行任意代码,造成拒绝服务。 此漏洞源于未能对用户提供的数据执行足够的边界检查。Winamp的栈分配是可预测的。攻击者可选择写入到已保存的基本指针的值,因此当恢复了基础指针后,调用函数的栈报文将被移动到攻击者控制的返回地址。 Nullsoft Winamp 5.01 - 5.5.8 厂商补丁: Nullsoft -------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Winamp < 5.601 MIDI Timestamp Stack Buffer Overflow
Binary data 5726.prm...
Xion Audio Player 1.0.126 Unicode Stack Buffer Overflow
This module exploits a stack buffer overflow in Xion Audio Player prior to version 1.0.126. The vulnerability is triggered when opening a malformed M3U file that contains an overly long string. This results in overwriting a structured exception handler record. This module requires Metasploit:...
Hewlett-Packard (HP) Power Manager Administration - Remote Buffer Overflow (Metasploit)
$Id: hppowermanagerlogin.rb 11127 2010-11-24 19:35:38Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Novell NetIdentity Agent - XTIERRPCPIPE Named Pipe Buffer Overflow (Metasploit)
$Id: netidentityxtierrpcpipe.rb 11127 2010-11-24 19:35:38Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Microsoft Visual Studio - Msmask32.ocx ActiveX Buffer Overflow (MS08-070) (Metasploit)
$Id: ms08070visualstudiomsmask.rb 11127 2010-11-24 19:35:38Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Foxit Reader Crafted PDF Title Handling Stack Buffer Overflow
Added: 11/22/2010 OSVDB: 68648 Background Foxit Reader is a free PDF reader for Microsoft Windows systems. Problem Foxit Reader for Windows is vulnerable to a stack buffer overflow which could allow execution of arbitrary code. A remote attacker can exploit this vulnerability by enticing a user t...
Foxit Reader Crafted PDF Title Handling Stack Buffer Overflow
Added: 11/22/2010 OSVDB: 68648 Background Foxit Reader is a free PDF reader for Microsoft Windows systems. Problem Foxit Reader for Windows is vulnerable to a stack buffer overflow which could allow execution of arbitrary code. A remote attacker can exploit this vulnerability by enticing a user t...
Native Instruments Traktor Pro 1.2.6 - Stack Buffer Overflow (PoC)
Native Instruments Traktor Pro 1.2.6 - Stack Buffer Overflow PoC !/usr/local/bin/perl Native Instruments Traktor Pro 1.2.6 Stack-based Buffer Overflow Vulnerability Vendor: Native Instruments GmbH Product web page: http://www.native-instruments.com Affected version: 1.2.6.8491 Standalone Summary:...
Microsoft Office RTF pFragments Property Stack Buffer Overflow
Added: 11/16/2010 CVE: CVE-2010-3333 BID: 44652 OSVDB: 69085 Background Microsoft Office is a package which provides word processing, spreadsheet, presentation, e-mail, and calendaring capabilities for Microsoft Windows workstations. Problem A stack buffer overflow vulnerability exists when...
NetWare 6.5 SunRPC Portmapper CALLIT Stack Buffer Overflow
$Id: pkernelcallit.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...
FTP Synchronizer Professional 4.0.73.274 - Remote Stack Buffer Overflow (Metasploit)
$Id: ftpsynchlistreply.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
FileWrangler 5.30 - Remote Stack Buffer Overflow (Metasploit)
$Id: filewranglerlistreply.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
BACnet OPC Client - Local Buffer Overflow (Metasploit) (2)
$Id: bacnetcsv.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
AASync 2.2.1.0 (Windows x86) - Remote Stack Buffer Overflow 'LIST' (Metasploit)
$Id: aasynclistreply.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
FTPPad 1.2.0 - Remote Stack Buffer Overflow (Metasploit)
$Id: ftppadlistreply.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...