Microsoft DNS RPC Service extractQuotedChar() Overflow (TCP)

$Id: ms07029msdnszonename.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

MS07-029 Microsoft DNS RPC Service extractQuotedChar() Overflow (SMB)

This module exploits a stack buffer overflow in the RPC interface of the Microsoft DNS service. The vulnerability is triggered when a long zone name parameter is supplied that contains escaped octal strings. This module is capable of bypassing NX/DEP protection on Windows 2003 SP1/SP2. This modul...

Apache Tomcat mod_jk 1.2.20 - Remote Buffer Overflow (Metasploit)

$Id: apachemodjkoverflow.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Microsoft DNS RPC Service - 'extractQuotedChar()' TCP Overflow (MS07-029) (Metasploit)

$Id: ms07029msdnszonename.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

HP OpenView Network Node Manager netmon.exe Stack Buffer Overflow (CVE-2010-1551; CVE-2010-2703)

The Network Node Manager NNM is an HP OpenView product which manages networks. It determines and displays physical and logical connectivity in networks, as well as information referring to protocols running over the network. A stack buffer overflow vulnerability exists in HP OpenView Network Node...

Mini-Stream RM-MP3 Converter 3.1.2.1 Buffer Overflow

Mini-Stream RM-MP3 Converter v3.1.2.1 .pls Stack Buffer Overflow universal By Madjix lemail ma3andkoum madirou bih Sec4ever.com my $junk="http://"."\x41" x 17425; my $ret = "\xCF\xDA\x05\x10"; jump to ESP - from msrmfilter03.dll my $padding = "\x90" x 24; windows/shellreversetcp - 739 bytes...

Groovy Media Player '.m3u' File Remote Stack Buffer Overflow Vulnerability

This host is installed with Groovy Media Player and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbgroovymediaplayerbofvuln.nasl 5368 2017-02-20 14:34:16Z cfi $ Groovy Media Player '.m3u' File Remote Stack Buffer Overflow Vulnerability Authors: Madhuri D Copyright:...

Mini-stream RM-MP3 Converter 3.1.2.1 - '.pls' Local Stack Buffer Overflow Universal

Mini-Stream RM-MP3 Converter v3.1.2.1 .pls Stack Buffer Overflow universal By Madjix lemail ma3andkoum madirou bih Sec4ever.com my $junk="http://"."\x41" x 17425; my $ret = "\xCF\xDA\x05\x10"; jump to ESP - from msrmfilter03.dll my $padding = "\x90" x 24; windows/shellreversetcp - 739 bytes...

InterSystems Cache - UtilConfigHome.csp Argument Buffer Overflow (Metasploit)

$Id: intersystemscache.rb 9797 2010-07-12 23:25:31Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

BadBlue 2.5 - 'ext.dll' Remote Buffer Overflow (Metasploit)

$Id: badblueextoverflow.rb 9719 2010-07-07 17:38:59Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

TELUS Security Labs VR - iSCSI target Multiple Implementations iSNS Stack Buffer Overflow

iSCSI target Multiple Implementations iSNS Stack Buffer Overflow TSL ID: FSC20100701-01 1. Affected Software iSCSI Enterprise Project iscsitarget 1.4.20.1 and prior SCST project iscsi-scst 1.0.1.1 and prior tgt project tgt 1.0.5 and prior References: http://iscsitarget.sourceforge.net/...

VLC Player M3U file ftp:// URI Handler Remote Stack Buffer Overflow

There a Vulnerability in VLC Media Player v1.0.5 Goldeneye when handling M3U files with ftp:// URI handler. When we open the malicious file our EDX and EBP registers point to the user supplied data which might lead to code execution. State of the registers when we opne the malicious file is: EAX...

Borland Interbase - 'SVC_attach()' Remote Buffer Overflow (Metasploit)

$Id: ibsvcattach.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

freeFTPd 1.0 - 'Username' Remote Overflow (Metasploit)

$Id: freeftpduser.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Veritas Backup Exec Windows - Remote Agent Overflow (Metasploit)

$Id: remoteagent.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Borland Interbase - 'jrd8_create_database()' Remote Buffer Overflow (Metasploit)

$Id: ibjrd8createdatabase.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Snort Back Orifice - Pre-Preprocessor Remote (Metasploit)

$Id: snortbopre.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

D-Link DWL-G132 Wireless Driver Beacon Rates Overflow

D-Link DWL-G132 Wireless Driver Beacon Rates Overflow. CVE-2006-6055. Remote exploit for windows platform $Id: dlinkwifirates.rb 9670 2010-07-03 03:19:07Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the...

Netgear WG111v2 Wireless Driver - Long Beacon Overflow (Metasploit)

$Id: netgearwg111beacon.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

DoubleTake/HP StorageWorks Storage Mirroring Service - Authentication Overflow (Metasploit)

$Id: doubletake.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...