6902 matches found
AOL Radio AOLMediaPlaybackControl.exe stack buffer overflow
Overview The AOL AOLMediaPlaybackControl application contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description AOL Radio includes several ActiveX controls to stream audio in web pages. The AOL AmpX and...
CVE-2007-6561
Multiple stack-based buffer overflows in PDFLib allow user-assisted remote attackers to execute arbitrary code via a long filename argument to the PDFloadimage function that results in an overflow in the pdcfsearchfopen function, and possibly other vectors...
Buffer-overflow in WinUAE 1.4.4
Luigi Auriemma Application: WinUAE http://www.winuae.net Versions: = 1.4.4 Platforms: Windows Bug: buffer-overflow Exploitation: local Date: 21 Dec 2007 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug 3 The Code 4 Fix =============== 1 Introduction...
ProWizard 4 PC 1.62 - Multiple Remote Stack Buffer Overflow Vulnerabilities
ProWizard 4 PC 1.62 - Multiple Remote Stack Buffer Overflow Vulnerabilities // source: https://www.securityfocus.com/bid/26953/info ProWizard 4 PC is prone to multiple stack-based buffer-overflow issues because it fails to perform adequate boundary checks on user-supplied data. Successfully...
Apple Mac OSX - mount_smbfs Local Stack Buffer Overflow
Apple Mac OSX - mountsmbfs Local Stack Buffer Overflow / Copyright C 2007-2008 Subreption LLC. All rights reserved. Visit http://blog.subreption.com for exploit development notes. References: CVE-2007-3876 http://docs.info.apple.com/article.html?artnum=307179...
Apple Mac OSX - 'mount_smbfs' Local Stack Buffer Overflow
/ Copyright C 2007-2008 Subreption LLC. All rights reserved. Visit http://blog.subreption.com for exploit development notes. References: CVE-2007-3876 http://docs.info.apple.com/article.html?artnum=307179 http://seclists.org/fulldisclosure/2007/Dec/0445.html...
iDefense Security Advisory 12.11.07: Microsoft DirectX 7 and 8 DirectShow Stack Buffer Overflow Vulnerability
iDefense Security Advisory 12.11.07 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 11, 2007 I. BACKGROUND Microsoft DirectShow, part of Microsoft DirectX, is used for the capture and playback of multimedia streams on Microsoft Windows systems. Synchronized Accessible Media Interchange...
samba security update
CentOS Errata and Security Advisory CESA-2007:1114-01 Updated samba packages that fix a security issue and a bug are now available for Red Hat Enterprise Linux. This update has been rated as having critical security impact by the Red Hat Security Response Team. Samba is a suite of programs used b...
Microsoft Message Queuing Service Stack Buffer Overflow Vulnerability
Description Microsoft Message Queuing MSMQ is prone to a stack-based buffer-overflow vulnerability because the software fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges, facilitating the...
Critical: Red Hat Security Advisory: samba security and bug fix update
Updated samba packages that fix a security issue and a bug are now available for Red Hat Enterprise Linux. This update has been rated as having critical security impact by the Red Hat Security Response Team. Samba is a suite of programs used by machines to share files, printers, and other...
Security fix for the ALT Linux 5 package samba version 3.0.27-alt1
Nov. 15, 2007 Alexander Bokovoy 3.0.27-alt1 - Security release 3.0.27: + CVS-2007-4572 Stack buffer overflow in nmbd's logon request processing. + CVE-2007-5398 Remote code execution in Samba's WINS server daemon nmbd when processing name registration followed name query requests. - Updated set o...
CVE-2007-5395
Stack-based buffer overflow in the separateword function in tokenize.c in Link Grammar 4.1b and possibly other versions, as used in AbiWord Link Grammar 4.2.4, allows remote attackers to execute arbitrary code via a long word, as reachable through the separatesentence function...
Mercury Mail SMTP AUTH CRAM-MD5 Buffer Overflow
This module exploits a stack buffer overflow in Mercury Mail Transport System 4.51. By sending a specially crafted argument to the AUTH CRAM-MD5 command, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
Viewpoint Media Player for IE 3.2 - Remote Stack Overflow (PoC)
----------------------------------------------------------------------------- Viewpoint Media Player for IE 3.2 AxMetaStream.dll Remote Stack Overflow url: http://www.viewpoint.com Author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educational...
SonicWall NetExtender NELaunchCtrl ActiveX control stack buffer overflow
Overview The SonicWall NetExtender NELaunchCtrl ActiveX control contains a stack buffer overflow, which could allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description SonicWall NetExtender is an SSL VPN client that is implemented by using an ActiveX...
SonicWall SSL-VPN NetExtender ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in SonicWall SSL-VPN NetExtender. By sending an overly long string to the "AddRouteEntry" method located in the NELaunchX.dll 1.0.0.26 Control, an attacker may be able to execute arbitrary code. This module requires Metasploit:...
iDefense Security Advisory 10.30.07: IBM AIX lquerypv Stack Buffer Overflow Vulnerability
IBM AIX lquerypv Stack Buffer Overflow Vulnerability iDefense Security Advisory 10.30.07 http://labs.idefense.com/intelligence/vulnerabilities/ Oct 30, 2007 I. BACKGROUND The lquerypv utility is used to examine the properties of a physical volume in a volume group. It is installed set-uid root by...
iDefense Security Advisory 10.30.07: IBM AIX lqueryvg Stack Buffer Overflow Vulnerability
IBM AIX lqueryvg Stack Buffer Overflow Vulnerability iDefense Security Advisory 10.30.07 http://labs.idefense.com/intelligence/vulnerabilities/ Oct 30, 2007 I. BACKGROUND The lqueryvg utility is used to examine the properties of disk volume groups. It is installed set-uid root by default on...
sony-overflow.txt
!/usr/bin/python Secunia Advisory : SA27270 Release Date : 2007-10-29 Sony CONNECT Player M3U Playlist Processing Stack Buffer Overflow m3u File Local Exploit Bug discovered by Parvez Anwar Exploit Written by TaMBaRuS [email protected] Tested on: Sony CONNECT Player SonicStage 4.x installed on...
GlobalLink 2.7.0.8 - ConnectAndEnterRoom ActiveX Control Stack Buffer Overflow
GlobalLink 2.7.0.8 - ConnectAndEnterRoom ActiveX Control Stack Buffer Overflow source: https://www.securityfocus.com/bid/26244/info GlobalLink is prone to a stack-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it into an...