Iceni products PDF parser stack buffer overflow

Overview Iceni Argus and Infix contain a stack buffer overflow in the handling of flate-compressed PDF content, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Iceni Argus is a PDF conversion library. Argus 6.20 and earlier fail to...

ScriptFTP 3.3 - Remote Buffer Overflow (Metasploit)

Exploit Title: ScriptFTP 3.3 Remote Buffer Overflow MSF Date: Sept 20 2011 Author: otoy Version: 3.3 Tested on: Windows XP SP3 CVE : - EDB-ID: 17876 Thanks: cyb3r.anbu, spentera-team, dE-team, offsec, exploit-db, corelanc0d3r class Metasploit3 'ScriptFTP 3.3 Remote Buffer Overflow', 'Description'...

Novell File Reporter Engine RECORD Stack Buffer Overflow (CVE-2011-2220)

A stack buffer overflow vulnerability has been reported in Novell File Reporter. The vulnerability is due to a parsing error in File Reporter's engine while parsing certain tags. A remote attacker may exploit this vulnerability by sending a specially crafted packet to an affected server. Successf...

DaqFactory HMI NETB Request Overflow

$Id: daqfactorybof.rb 13756 2011-09-19 11:38:49Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

DaqFactory HMI NETB Request Overflow

This module exploits a stack buffer overflow in Azeotech's DaqFactory product. The specific vulnerability is triggered when sending a specially crafted 'NETB' request to port 20034. Exploitation of this vulnerability may take a few seconds due to the use of egghunter. This vulnerability was one o...

DaqFactory HMI NETB Request Overflow

Exploit for windows platform in category remote exploits $Id: daqfactorybof.rb 13750 2011-09-18 02:45:55Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on...

ScadaTEC ScadaPhone 5.3.11.1230 - Local Stack Buffer Overflow (Metasploit)

$Id: scadaphonezip.rb 13728 2011-09-13 20:10:28Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Procyon Core Server HMI Coreservice.exe Stack Buffer Overflow

This module exploits a vulnerability in the coreservice.exe component of Proycon Core Server "Procyon Core Server HMI Coreservice.exe Stack Buffer Overflow", 'Description' = %q This module exploits a vulnerability in the coreservice.exe component of Proycon Core Server MSF...

Mod_FTPD Stack Buffer Overflow Exploit

Exploit for windows platform in category remote exploits $Id: ModFTPDserver.rb 16897 2011-9-12 19:03:24Z Iraq $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on...

(0Day) Witness Systems eQuality Unify Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Witness Systems eQuality Suite. This application is bundled with Nortel Contact Recording and Quality Monitoring Suite. Authentication is not required to exploit this vulnerability. The flaw exists...

Citrix Provisioning Services Opcode 40020010 Stack Buffer Overflow

A stack buffer overflow vulnerability has been reported in Citrix Provisioning Service. Citrix Provisioning Service facilitates image management for virtual and physical workloads services, by allowing computers to obtain applications from the network in real-time. The vulnerability is due to...

[slackware-security] php (SSA:2011-237-01)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security php SSA:2011-237-01 New php packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: +--------------------------+...

ZDI-11-276: Adobe Flash Player MP4 sequenceParameterSetNALUnit Remote Code Execution Vulnerability

ZDI-11-276: Adobe Flash Player MP4 sequenceParameterSetNALUnit Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-276 August 23, 2011 -- CVE ID: CVE-2011-2140 -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P -- Affected Vendors: Adobe -- Affected Products: Adobe Flash...

ZDI-11-273: EMC Autostart Domain Name Logging Remote Code Execution Vulnerability

ZDI-11-273: EMC Autostart Domain Name Logging Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-273 August 23, 2011 -- CVE ID: CVE-2011-2735 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: EMC -- Affected Products: EMC AutoStart -- TippingPointTM...

PHP 5.3.x < 5.3.7 Multiple Vulnerabilities

Binary data 6015.prm...

EMC Autostart Domain Name Logging Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC AutoStart High Availability. Authentication is not required to exploit this vulnerability. The specific flaw exists within the packet error handling of the application. When building an error...

VU Player stack buffer overflow Local Exploit

Exploit for windows platform in category local exploits Exploit Title: VU Player stack buffer overflow Local Exploit Version: 2.49 Date: 22-08-2011 Author: Debasish Mandal http://www.facebook.com/raza.whitehat Email email protected Software Link: http://www.brothersoft.com/vuplayer-62979.html...

Freefloat FTP Server "Response" Stack Buffer Overflow

Exploit for windows platform in category local exploits Exploit Title: Free Float FTP server Response stack Buffer Overflow Exploit Date: 21-08-2011 Author: Debasish Mandal http://www.facebook.com/raza.whitehat Software Link: http://www.freefloat.com/sv/freefloat-ftp-server/freefloat-ftp-server.p...

php -- multiple vulnerabilities

PHP development team reports: Security Enhancements and Fixes in PHP 5.3.7: Updated cryptblowfish to 1.2. CVE-2011-2483 Fixed crash in errorlog. Reported by Mateusz Kocielski Fixed buffer overflow on overlog salt in crypt. Fixed bug 54939 File path injection vulnerability in RFC1867 File upload...

Apple QuickTime Player H.264 Reference Picture List Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...