HP OpenView Network Node Manager OpenView5.exe CGI Buffer Overflow

This module exploits a stack buffer overflow in HP OpenView Network Node Manager 7.50. By sending a specially crafted CGI request, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...

SAP RFC SDK — Format String

Application: RFC SDK SAP AG Versions Affected: RFC SDK 6.40 7.11 Vendor URL: Bugs: Format String Vulnerability Exploits: YES Reported: 15.12.2009 Vendor response: 18.12.2009 Date of SAP Security Note Published: 14.09.2010 Date of Public Advisory: 14.12.2010 Author: Alexey Sintsov Description SAP...

NCTAudioFile2 v2.x ActiveX Control SetFormatLikeSample() Buffer Overflow

This module exploits a stack buffer overflow in the NCTAudioFile2.Audio ActiveX Control provided by various audio applications. By sending an overly long string to the "SetFormatLikeSample" method, an attacker may be able to execute arbitrary code. This module requires Metasploit:...

Xenorate 2.50 (.xpl) Universal Local Buffer Overflow (SEH)

This module exploits a stack buffer overflow in Xenorate 2.50 by creating a specially crafted xpl file. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Xenorate 2.50 .xpl Universal Local Buffer...

ZDI-09-097: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability

ZDI-09-097: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-097 December 9, 2009 -- CVE ID: CVE-2009-3849 -- Affected Vendors: Hewlett-Packard -- Affected Products: Hewlett-Packard OpenView Network No...

DSquare Exploit Pack: D2SEC_HPDP

Name| d2sechpdp ---|--- CVE| CVE-2009-3844 Exploit Pack| D2ExploitPack Description| HP OpenView Data Protector Recovery Manager Stack Buffer Overflow Vulnerability Notes|...

HTML Help Workshop 4.74 (hhp Project File) Buffer Overflow

This module exploits a stack buffer overflow in HTML Help Workshop 4.74 By creating a specially crafted hhp file, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework clas...

FreeFTPd 1.0.10 Key Exchange Algorithm String Buffer Overflow

This module exploits a simple stack buffer overflow in FreeFTPd 1.0.10 This flaw is due to a buffer overflow error when handling a specially crafted key exchange algorithm string received from an SSH client. This module is based on MC's freesshdkeyexchange exploit. This module requires Metasploit...

InterSystems Cache UtilConfigHome.csp Argument Buffer Overflow

This module exploits a stack buffer overflow in InterSystems Cache 2009.1. By sending a specially crafted GET request, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

Savant 3.1 Web Server Overflow

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 /Savant/3.1/ include Msf::Exploit::Remote::HttpClient def initializeinfo = superupdateinfoinfo, 'Name' = 'Savant 3.1 Web Server...

Serv-U < 9.1.0.0 TEA Decoder Remote Stack Buffer Overflow

Binary data 5237.prm...

RhinoSoft Serv-U FTP Server TEA Decoder Remote Stack Buffer Overflow Vulnerability

RhinoSoft Serv-U FTP Server is prone to a remote stack-based buffer- overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and a...

Ingres Database uuid_from_char Stack Buffer Overflow (CVE-2007-3338)

Ingres Database is a relational DataBase Management System DBMS product developed by Ingres. Ingres Database is made available for both Windows and Unix-like platforms. The product is embedded by other software vendors, such as Computer Associates CA in its eTrust and Unicenter products. A stack...

HT-MP3Player 1.0 HT3 File Parsing Buffer Overflow

This module exploits a stack buffer overflow in HT-MP3Player 1.0. Arbitrary code execution could occur when parsing a specially crafted .HT3 file. NOTE: The player installation does not register the file type to be handled. Therefore, a user must take extra steps to load this file. This module...

Cerulean Studios Trillian Image Filename XML Tag Stack Buffer Overflow (CVE-2008-5401)

Cerulean Studios' Trillian is an instant messaging IM client application that can interact with various IM protocols such as MSN, AIM, ICQ, YAHOO, etc. There exists a stack buffer overflow vulnerability in Trillian instant messenger client application. The vulnerability is due to a boundary error...

Free Download Manager Torrent File Parsing Multiple Remote Buffer Overflow Vulnerabilities

No description provided by source. $Id: fdmtorrent.rb 7455 2009-11-10 21:52:17Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Free Download Manager - .Torrent File Parsing Multiple Buffer Overflow Vulnerabilities (Metasploit)

Free Download Manager - .Torrent File Parsing Multiple Buffer Overflow Vulnerabilities Metasploit $Id: fdmtorrent.rb 7455 2009-11-10 21:52:17Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framewor...

Microsoft Word Record Parsing Remote Stack Buffer Overflow Vulnerability

Description Microsoft Word is prone to a remote stack-buffer overflow vulnerability. Attackers can exploit this issue by enticing victims into opening a specially crafted Word '.doc' file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running th...

ISC DHCP 'dhclient' 'script_write_params()' Stack Buffer Overflow Vulnerability

No description provided by source. / cve-2009-0692.c ISC DHCP dhclient 3.1.2p1 Remote Exploit Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0692 Stack-based buffer overflow in the scriptwriteparams method in...

Hewlett-Packard Power Manager Administration Buffer Overflow

This module exploits a stack buffer overflow in Hewlett-Packard Power Manager 4.2. Sending a specially crafted POST request with an overly long Login string, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...