6715 matches found
ZDI-08-058: Apple QuickTime Panorama PDAT Atom Parsing Buffer Overflow Vulnerability
ZDI-08-058: Apple QuickTime Panorama PDAT Atom Parsing Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-058 September 9, 2008 -- CVE ID: CVE-2008-3625 -- Affected Vendors: Apple -- Affected Products: Apple Quicktime -- TippingPointTM IPS Customer Protection:...
numark-overflow.txt
/Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow This sploit Launches calc.exe .. classical buffer overflow ,a 500 byte buffer is causing the exeption. Tested on WinXP Pro sp3,compiled with DEv-C++ 4.9.9.2. After preparation: |Access violation when executing 58414158| EAX 00000001 ECX...
Numark Cue 5.0 rev 2 - .m3u File Local Stack Buffer Overflow
Numark Cue 5.0 rev 2 - .m3u File Local Stack Buffer Overflow /Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow This sploit Launches calc.exe .. classical buffer overflow ,a 500 byte buffer is causing the exeption. Tested on WinXP Pro sp3,compiled with DEv-C++ 4.9.9.2. After preparation:...
Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow Exploit
Exploit for unknown platform in category local exploits ================================================================== Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow Exploit ================================================================== /Numark Cue 5.0 rev 2 Local .M3U File...
EMC AlphaStor Agent Buffer Overflow
This module exploits a stack buffer overflow in EMC AlphaStor 3.1. By sending a specially crafted message, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
OpenVms 8.3 Finger Service - Stack Buffer Overflow
source: https://www.securityfocus.com/bid/30589/info The finger service 'fingerd' on OpenVMS is prone to a stack-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input. Attackers can exploit this issue to execute arbitrary code in the context of the...
IrfanView <= 3.99 IFF File Local Stack Buffer Overflow Exploit
No description provided by source. /Irfan View 3.99 .IFF File Local Stack Buffer Overflow This sploit runs calc.exe tested on Win XP Pro sp3;If you run it on another vs of Win make sure you chance the retaddress,but it works almost all the time so.. . Credits for finding the bug and sploit go to...
IrfanView 3.99 - .IFF File Local Stack Buffer Overflow
IrfanView 3.99 - .IFF File Local Stack Buffer Overflow /Irfan View 3.99 .IFF File Local Stack Buffer Overflow This sploit runs calc.exe tested on Win XP Pro sp3;If you run it on another vs of Win make sure you chance the retaddress,but it works almost all the time so.. . Credits for finding the b...
IrfanView 3.99 - '.IFF' File Local Stack Buffer Overflow
/Irfan View 3.99 .IFF File Local Stack Buffer Overflow This sploit runs calc.exe tested on Win XP Pro sp3;If you run it on another vs of Win make sure you chance the retaddress,but it works almost all the time so.. . Credits for finding the bug and sploit go to fl0 fl0w. Gretez to all romanian...
irfanviewiff-overflow.txt
/Irfan View 3.99 .IFF File Local Stack Buffer Overflow This sploit runs calc.exe tested on Win XP Pro sp3;If you run it on another vs of Win make sure you chance the retaddress,but it works almost all the time so.. . Credits for finding the bug and sploit go to fl0 fl0w. Gretez to all romanian...
BlazeVideo HDTV Player PLF文件堆栈缓冲区溢出漏洞
BUGTRAQ ID: 30442 CNCAN ID:CNCAN-2008073108 BlazeVideo HDTV Player是一款支持HDTV播放的媒体播放程序。 BlazeVideo HDTV Player处理播放列表文件存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 构建恶意的PLF文件,诱使用户使用BlazeVideo HDTV Player处理,可触发此漏洞。 BlazeVideo HDTV Player 3.5 目前没有解决方案提供: http://www.blazevideo.com/ /Blaze Video HDTV Player V 3.5...
Novell iPrint Client ActiveX Control Stack Buffer Overflow (CVE-2008-2908)
Novell iPrint is an application that enables users to install and manage printers, or submit print job from a web browser. A stack buffer overflow vulnerability has been reported in Novell iPrint Client. The vulnerability is due to a boundary error in a Novell iPrint ActiveX control. To trigger...
BakBone NetVault 6.x/7.x Local Stack Buffer Overflow Exploit
No description provided by source. / for more informations class101.org/netv-locsbof.pdf / include stdio.h include string.h ifdef WIN32 include "winsock2.h" pragma commentlib, "ws232" else include sys/socket.h include sys/types.h include netinet/in.h include netinet/insystm.h include netinet/ip.h...
Novell GroupWise Messenger Client Buffer Overflow
This module exploits a stack buffer overflow in Novell's GroupWise Messenger Client. By sending a specially crafted HTTP response, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
Novell iPrint Client ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in Novell iPrint Client 4.34. When sending an overly long string to the GetDriverSettings property of ienipp.ocx an attacker may be able to execute arbitrary code. -- coding: binary -- This module requires Metasploit: https://metasploit.com/download...
Novell iPrint Client ActiveX control stack buffer overflows
Overview The Novell iPrint Client ActiveX control contains multiple stack buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Novell iPrint is a software printing solution that allows for printing over the internet. On...
Creative Software AutoUpdate Engine ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in Creative Software AutoUpdate Engine. When sending an overly long string to the cachefolder property of CTSUEng.ocx an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
Asus Dpcproxy Buffer Overflow
This module exploits a stack buffer overflow in Asus Dpcroxy version 2.0.0.19. It should be vulnerable until version 2.0.0.24. Credit to Luigi Auriemma This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
CA Secure Content Manager HTTP Gateway Service FTP Vulnerabilities
The remote host is running Computer Associates' Secure Content Manager, a gateway product for filtering messaging and web traffic. The HTTP Gateway component 'icihttp.exe' of the version of Secure Content Manager installed on the remote host does not sufficiently check responses to FTP 'LIST' and...
GLD (Greylisting Daemon) Postfix Buffer Overflow
This module exploits a stack buffer overflow in the Salim Gasmi GLD 'GLD Greylisting Daemon Postfix Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in the Salim Gasmi GLD 'aushack' , 'Arch' = ARCHX86, 'Platform' = 'linux', 'References' = 'CVE', '2005-1099' ,...