Blat.exe 2.7.6 SMTP / NNTP Mailer - Buffer Overflow Exploit

Exploit for windows platform in category local exploits ''' + Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-BLAT-MAILER-BUFFER-OVERFLOW.txt Vendor: ================================ www.blat.net http://sourceforge.net/projects/blat/...

Blat 2.7.6 Buffer Overflow

Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-BLAT-MAILER-BUFFER-OVERFLOW.txt Vendor: ================================www.blat.nethttp://sourceforge.net/projects/blat/ Product: ================================ Blat v2.7.6 blat.exe...

Linux/MIPS Kernel 2.6.36 - 'NetUSB' Remote Code Execution

!/usr/bin/env python Source: http://haxx.in/blasty-vs-netusb.py CVE-2015-3036 - NetUSB Remote Code Execution exploit Linux/MIPS =========================================================================== This is a weaponized exploit for the NetUSB kernel vulnerability discovered by SEC Consult...

Reprise License Manager HTTP Parameter Parsing Stack Buffer Overflow

A stack buffer overflow vulnerability exists in the Reprise License Manager. The vulnerability is due to insufficient input validation of the licfile and debuglog parameters while processing an HTTP request. Successful exploitation would lead to arbitrary code execution under the security context...

CDex Genre 1.79 - Local Stack Buffer Overflow

''' Exploit Title: CDex Genre Stack Buffer Overflow Date: 10/9/2015 Exploit Author: UnN0n Software Link: http://cdex.mu/download Version: 1.79 Tested on: Windows 7 x8632 BIT Steps to Produce the Crash: 1- Generate a File by python code mentioned below. 2- Goto...

LanWhoIs.exe 1.0.1.120 Buffer Overflow

Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-LANWHOIS-BUFFER-OVERFLOW-10062015.txt Vendor: ================================ www.lantricks.com Product: ================================ LanWhoIs.exe 1.0.1.120 LanWhoIs querys and...

Advantech WebAccess Webdobj ActiveX UpdateProject Stack Buffer Overflow (CVE-2014-9208)

A stack buffer overflow vulnerability exists in Advantech's WebAccess SCADA software. The vulnerability is due to insufficient input validation of one of the UpdateProject's arguments in the Webdobj ActiveX control. A remote, unauthenticated attacker can exploit this vulnerability by enticing a...

Advantech WebAccess AspVCObj.AspDataDriven ActiveX Stack Buffer Overflow (CVE-2014-9208)

A stack buffer overflow vulnerability exists in Advantech's WebAccess SCADA software. The vulnerability is due to insufficient input validation of an argument of multiple functions in the AspVCObj ActiveX control. A remote, unauthenticated attacker can exploit this vulnerability by enticing a...

Reprise License Manager actserver and akey HTTP Parameters Parsing Stack Buffer Overflow

A stack buffer overflow vulnerability exists in the Reprise License Manager. The vulnerability is due to insufficient input validation of the actserver and akey parameters while processing a number of HTTP requests. Successful exploitation would lead to arbitrary code execution under the security...

Last PassBroker 3.2.16 - Stack Buffer Overflow (PoC)

''' Exploit Title: Last PassBroker Stack-based BOF Date: 9/23/2015 Exploit Author: UnN0n Software Link: https://lastpass.com/download Version: 3.2.16 Tested on: Windows 7 x8632 BIT Steps to Produce the Crash: 1- open 'LastPassBroker.exe'. 2- A Input-Box will appear asking for Email and Password, ...

[SECURITY] [DLA 324-1] binutils security update

Package : binutils Version : 2.20.1-16+deb6u2 CVE ID : CVE-2012-3509 Debian Bug : 688951 This update fixes several issues as described below. PR ld/12613 no CVE assigned Niranjan Hasabnis discovered that passing an malformed linker script to GNU ld, part of binutils, may result in a stack buffer...

DLA-324-1 binutils - security update

Bulletin has no description...

IKEView.exe Stack Buffer Overflow Vulnerability

IKEView.exe is a tool for checking Internet private key exchange in firewall packets. IKEView.exe does not perform proper boundary checks on user-submitted inputs, allowing an attacker to exploit the vulnerability to execute arbitrary code or conduct denial-of-service attacks...

Kaspersky Anti-Virus Stack Buffer Overflow Vulnerability

Kaspersky Anti-Virus is a suite of antivirus software developed by the Russian company Kaspersky Kaspersky. Kaspersky Anti-Virus suffers from a stack buffer overflow vulnerability. An attacker could exploit this vulnerability to execute arbitrary code on an affected system, which could also resul...

Kaspersky AntiVirus - CHM Parsing Stack Buffer Overflow

Kaspersky AntiVirus - CHM Parsing Stack Buffer Overflow Source: https://code.google.com/p/google-security-research/issues/detail?id=524 Fuzzing CHM files with Kaspersky Antivirus produced the attached crash. 83c.fec: Access violation - code c0000005 first chance First chance exceptions are report...

OS X Regex Engine (TRE) - Stack Buffer Overflow Vulnerability

Exploit for macOS platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=428 OS X Libc uses the slightly obscure TRE regex engine http://laurikari.net/tre/ If used in enhanced mode by passing the REGENHANCED flag to regcomp TRE supports...

Apple Mac OSX Regex Engine (TRE) - Stack Buffer Overflow (PoC)

Apple Mac OSX Regex Engine TRE - Stack Buffer Overflow PoC Source: https://code.google.com/p/google-security-research/issues/detail?id=428 OS X Libc uses the slightly obscure TRE regex engine http://laurikari.net/tre/ If used in enhanced mode by passing the REGENHANCED flag to regcomp TRE support...

Adobe Flash Player <= 18.0.0.232 Multiple Vulnerabilities (APSB15-23)

The version of Adobe Flash Player installed on the remote Windows host is equal or prior to version 18.0.0.232. It is, therefore, affected by multiple vulnerabilities : - An unspecified stack corruption issue exists that allows a remote attacker to execute arbitrary code. CVE-2015-5567,...

Apple Mac OSX Regex Engine (TRE) - Stack Buffer Overflow (PoC)

Source: https://code.google.com/p/google-security-research/issues/detail?id=428 OS X Libc uses the slightly obscure TRE regex engine http://laurikari.net/tre/ If used in enhanced mode by passing the REGENHANCED flag to regcomp TRE supports arbitrary-width hex literals. Here is the code used to...

Kaspersky AntiVirus - CHM Parsing Stack Buffer Overflow

Source: https://code.google.com/p/google-security-research/issues/detail?id=524 Fuzzing CHM files with Kaspersky Antivirus produced the attached crash. 83c.fec: Access violation - code c0000005 first chance First chance exceptions are reported before any exception handling. This exception may be...