5756 matches found
Synactis PDF In-The-Box - ConnectToSynactic Stack Buffer Overflow (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 HttpClients::IE,...
Hewlett-Packard Data Protector Cell Manager crs.exe Opcode 227 Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector. Authentication is not required to exploit this vulnerability. The specific flaw exists within crs.exe which listens by default on a random TCP port. When parsing opcode 227, the...
MiniUPnPd 1.0 Stack Buffer Overflow Remote Code Execution
This Metasploit module exploits the MiniUPnP 1.0 SOAP stack buffer overflow vulnerability present in the SOAPAction HTTP header handling. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more...
BigAnt Server DDNF Request Stack Buffer Overflow
A stack buffer overflow vulnerability has been reported in BigAnt Server...
Lianja SQL 1.0.0RC5.1 db_netserver Stack Buffer Overflow Vulnerability
This Metasploit module exploits a stack buffer overflow in the dbnetserver process which is spawned by the Lianja SQL server. The issue is fixed in Lianja SQL 1.0.0RC5.2. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the...
Lianja SQL 1.0.0RC5.1 db_netserver Stack Buffer Overflow
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Lianja SQL 1.0.0RC5.1 dbnetserver Sta...
Lianja SQL 1.0.0RC5.1 db_netserver Stack Buffer Overflow
This module exploits a stack buffer overflow in the dbnetserver process, which is spawned by the Lianja SQL server. The issue is fixed in Lianja SQL 1.0.0RC5.2. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
Nginx HTTP Server 1.3.9-1.4.0 Chunked Encoding Stack Buffer Overflow
This Metasploit module exploits a stack buffer overflow in versions 1.3.9 to 1.4.0 of nginx. The exploit first triggers an integer overflow in the ngxhttpparsechunked by supplying an overly long hex value as chunked block size. This value is later used when determining the number of bytes to read...
Nginx HTTP Server 1.3.9-1.4.0 Chunked Encoding Stack Buffer Overflow
This module exploits a stack buffer overflow in versions 1.3.9 to 1.4.0 of nginx. The exploit first triggers an integer overflow in the ngxhttpparsechunked by supplying an overly long hex value as chunked block size. This value is later used when determining the number of bytes to read into a sta...
nginx 'ngx_http_parse.c'栈缓冲区溢出漏洞
BUGTRAQ ID: 59699 CVECAN ID: CVE-2013-2028 nginx是HTTP及反向代理服务器,同时也用作邮件代理服务器。 nginx 1.3.9 - 1.4.0在解析HTTP块时,"ngxhttpparsechunked"函数 http/ngxhttpparse.c中存在错误,可被利用造成栈缓冲区溢出。 0 Nginx 1.3.9 - 1.4.0 临时解决方法: 建议您升级到nginx 1.4.1或者是1.5.0。但如果您不能立刻安装补丁或者升级,您可以采取以下措施以降低威胁: 在每个server块中使用如下配置 if $httptransferencodi...
WPS Office 'Wpsio.dll'栈缓冲区溢出漏洞
BUGTRAQ ID: 59529 CVECAN ID: CVE-2012-4886 WPS Office 是金山软件公司的一套办公软件。 WPS Office 2012 及其他版本中,Wpsio.dll模块存在栈缓冲区溢出漏洞,该漏洞源于文件内的某BSTR类型的字符串被复制到栈缓冲区时没有检查长度。攻击者可利用此漏洞造成受影响软件崩溃,可能执行任意代码。 0 Kingsoft Corp WPS Office 厂商补丁: Kingsoft Corp ------------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: www.wps....
WPS Office Wpsio.dll - Stack Buffer Overflow Vulnerability
Exploit for windows platform in category dos / poc Affected Prodects Affected Version: http://wdl.cache.ijinshan.com/wps/download/special/WPS2012.12012.exe The WPS office is a free desktop office suite compatible with Microsoft office,popular in China. Vulnerability Details In module wpsio.dll, a...
WPS Office - 'Wpsio.dll' Stack Buffer Overflow
WPS Office Wpsio.dll Stack Buffer Overflow Vulnerability PoC: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/25140.tgz 1 Summary CVE number: CVE-2012-4886 Impact: High Vendor homepage: http://www.wps.cn Credit: Zhangjiantao of Hangzhou DPtech Technologies 2...
3S CoDeSys Gateway Server Crafted Packet Stack Overflow
Added: 04/29/2013 CVE: CVE-2012-4708 BID: 58032 OSVDB: 90371 Background Smart Software Solutions GmbH 3S manufactures CoDeSys Gateway Server, a Supervisory Control and Data Acquisition/Human-Machine Interface SCADA/HMI product. The Gateway Server listens on TCP port 1211. Problem 3S CoDeSys Gatew...
3S CoDeSys Gateway Server Crafted Packet Stack Overflow
Added: 04/29/2013 CVE: CVE-2012-4708 BID: 58032 OSVDB: 90371 Background Smart Software Solutions GmbH 3S manufactures CoDeSys Gateway Server, a Supervisory Control and Data Acquisition/Human-Machine Interface SCADA/HMI product. The Gateway Server listens on TCP port 1211. Problem 3S CoDeSys Gatew...
Foxit Reader Plugin for Firefox URL String Stack Buffer Overflow
A stack buffer overflow vulnerability has been identified in Foxit Reader Plugin for Firefox. The vulnerability is due to a lack of bounds checking in an essential dll file, and affects handling of URLs. A remote attacker could exploit this vulnerability by enticing a target user to load a...
Debian Security Advisory DSA 2663-1 (tinc - stack based buffer overflow)
Martin Schobert discovered a stack-based vulnerability in tinc, a Virtual Private Network VPN daemon. When packets are forwarded via TCP, packet length is not checked against the stack buffer length. Authenticated peers could use this to crash the tinc daemon and maybe execute arbitrary code. Not...
Allied Telesyn TFTP (AT-TFTP) Server/Daemon 2.0 - Stack Buffer Overflow (Denial of Service) (PoC)
Exploit Title: AT-TFTP 2.0 long filename stack based buffer overflow - DOS Date: 12.04.2013 Exploit Author: xisone@STM Solutions Vendor Homepage: http://www.alliedtelesis.com/ Software Link:...
Allied Telesyn TFTP (AT-TFTP) ServerDaemon 2.0 - Stack Buffer Overflow (Denial of Service) (PoC)
Allied Telesyn TFTP AT-TFTP ServerDaemon 2.0 - Stack Buffer Overflow Denial of Service PoC Exploit Title: AT-TFTP 2.0 long filename stack based buffer overflow - DOS Date: 12.04.2013 Exploit Author: xisone@STM Solutions Vendor Homepage: http://www.alliedtelesis.com/ Software Link:...
ActFax RAW Server Stack Buffer Overflow
Added: 04/12/2013 BID: 57789 OSVDB: 89944 Background ActFax is a Windows-based software package that sends, receives and electronically stores faxes. Problem The ActFax RAW server is vulnerable to a boundary error when processing the @F000 data field, which could result in stack-based buffer...