ZDI-12-095 : Apple Quicktime TeXML transform Attribute Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-095 : Apple Quicktime TeXML transform Attribute Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-095 June 21, 2012 - -- CVE ID: CVE-2012-0663 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors...

HP Data Protector Express Opcode 0x330 Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Express. Authentication is not required to exploit this vulnerability. User interaction is not required to exploit this vulnerability. The specific flaw exists within the...

iTunes Extended M3U Stack Buffer Overflow

============================================================================================ Apple iTunes 'iTunes Extended M3U Stack Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in iTunes 10.4.0.80 to 10.6.1.7. When opening an extended .m3u file containing an...

HP Data Protector Express Opcode 0x320 Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Express. Authentication is not required to exploit this vulnerability. User interaction is not required to exploit this vulnerability. The specific flaw exists within the...

Apple iTunes 10.6.1.7 - Extended m3u Stack Buffer Overflow (Metasploit)

Apple iTunes 10.6.1.7 - Extended m3u Stack Buffer Overflow Metasploit ============================================================================================ Apple iTunes 'iTunes Extended M3U Stack Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in iTunes...

Apple iTunes <= 10.6.1.7 Extended m3u Stack Buffer Overflow Code Execution

Exploit for windows platform in category remote exploits ============================================================================================ Apple iTunes 'iTunes Extended M3U Stack Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in iTunes 10.4.0.80 to...

EZHomeTech EzServer 6.4.017 Stack Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'EZHomeTech EzServer %q This module...

Novell ZENworks Configuration Management PreBoot Opcode Buffer Overflow (CVE-2011-3176)

A stack buffer overflow vulnerability has been reported in Novell ZENworks Configuration Management...

Stack overflow

Multiple stack-based buffer overflows in the 1 abcnewmacro and 2 abcnewumacro functions in src/loadabc.cpp in libmodplug before 0.8.8.3 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted ABC file. NOTE: some of these details are obtained fr...

SAP NetWeaver Dispatcher DiagTraceR3Info Packet Parsing Vulnerability

Added: 06/04/2012 CVE: CVE-2012-2611 OSVDB: 81759 Background SAP Netweaver is a technology platform for building and integrating SAP business applications. Problem SAP Netweaver is vulnerable to a stack buffer overflow when configured with the developer trace level set to 2 or higher. The...

Smart Software Solutions CoDeSys ControlService Stack Buffer Overflow (CVE-2011-5007)

A stack buffer overflow vulnerability has been reported in Smart Software Solutions CoDeSys...

Digium Asterisk Management Interface Out-of-Bounds Stack Buffer Overflow

A buffer overflow vulnerability has been reported in Digium Asterisk...

FlexNet License Server Manager - lmgrd Buffer Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'FlexNet License Server Manager lmgrd...

FlexNet License Server Manager lmgrd Buffer Overflow

This module exploits a vulnerability in the FlexNet License Server Manager. The vulnerability is due to the insecure usage of memcpy in the lmgrd service when handling network packets, which results in a stack buffer overflow. In order to improve reliability, this module will make lots of...

Cisco WebEx Player Malformed .WRF File Code Execution (CVE-2010-3269)

A stack buffer overflow has been reported in Cisco WebEx Player...

Oracle Outside In OOXML Relationship Tag Parsing Stack Buffer Overflow

A stack buffer overflow vulnerability has been reported in Oracle Outside In...

HP Diagnostics magentservice.exe Code Execution (CVE-2011-4789)

A stack buffer overflow vulnerability has been reported in HP Diagnostics...

Netop Remote Control DWS File Stack Buffer Overflow

Added: 05/11/2012 BID: 47631 OSVDB: 72291 Background NetOp Remote Control provides secure remote control and support for workstations, servers, embedded systems, and mobile devices. Problem NetOp Remote Control is vulnerable to stack buffer overflow as a result of failing to properly sanitize...

Netop Remote Control DWS File Stack Buffer Overflow

Added: 05/11/2012 BID: 47631 OSVDB: 72291 Background NetOp Remote Control provides secure remote control and support for workstations, servers, embedded systems, and mobile devices. Problem NetOp Remote Control is vulnerable to stack buffer overflow as a result of failing to properly sanitize...

Netop Remote Control DWS File Stack Buffer Overflow

Added: 05/11/2012 BID: 47631 OSVDB: 72291 Background NetOp Remote Control provides secure remote control and support for workstations, servers, embedded systems, and mobile devices. Problem NetOp Remote Control is vulnerable to stack buffer overflow as a result of failing to properly sanitize...