CVE-2012-10057

Lattice Semiconductor ispVM System v18.0.2 contains a buffer overflow vulnerability in its handling of .xcf project files. When parsing the version attribute of the ispXCF XML tag, the application fails to properly validate input length, allowing a specially crafted file to overwrite memory on th...

SUSE CVE-2005-2978

pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap PNM images to Portable Network Graphics PNG, which might allow attackers to execute arbitrary code by modifying the stack...

Mageia: Security Advisory (MGASA-2017-0202)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ASLRay - Linux ELF x32 and x64 ASLR bypass exploit with stack-spraying

Linux ELF x32 and x64 ASLR bypass exploit with stack-spraying. Properties: ASLR bypass Cross-platform Minimalistic Simplicity Unpatchable Dependencies: Linux 2.6.12+ - will work on any x86-64 Debian-based OS BASH - the whole script Limitations: Stack needs to be executable -z execstack Binary has...

Ubuntu: Security Advisory (USN-3454-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Easy WMV/ASF/ASX To DVD Burner 2.3.11 Buffer Overflow

!/usr/bin/python ======================================================================================================================== Exploit Author: Touhid M.Shaikh Exploit Title: Easy WMV/ASF/ASX to DVD Burner 2.3.11 - 'Enter User Name' Field Buffer Overflow SEH Date: 28-08-2017 Website:...

Linux x86 - /bin/sh Shellcode (24 bytes)

/ ;Title: Linux/x86 - /bin/sh Shellcode ;Author: Touhid M.Shaikh ;Contact: https://github.com/touhidshaikh ;Category: Shellcode ;Architecture: Linux x86 ;Description: This shellcode baased on stack method to Execute "/bin//sh". Length of shellcode is 24 bytes. ;Tested on : 3.2.0-23-generic-pae...

Updated ffcall,clisp packages fix security vulnerability

In libffcall before version 1.13, linking with the libffcall libraries could cause the stack to become executable. This is now fixed. clisp is rebuilt to pick the fixed libffcall static library...

linux/x86 HTTP/1.x GET, Downloads and JMP - 68 bytes+

No description provided by source. / linux/x86 HTTP/1.x GET, Downloads and JMP - 68 bytes+ This shellcode allows you to download a binary code straight off a standard HTTP server and execute it. The downloaded shellcode e.g. binary code will be executed on the stack. DEMONSTRATION: Starting by...

Xi Graphics Accelerated X 4.0 .x/5.0 - Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/488/info Accelerated-X, also known as Accel-X, is a popular commercial X server available from Xi Graphics. The servers are normally installed setuid root, and contain multiple buffer overflow vulnerabilities. These...

WinAmp 5.63 Buffer Overflow

Exploit Title: winampevilskin.py Date: 25 August 2013 Exploit Author: Ayman Sagy Vendor Homepage: http://www.winamp.com/ Version: 5.63 Tested on: Windows XP Professional SP3 Version 2002 CVE : 2013-4694 Ayman Sagy August 2013 This is an exploit for Bug 1 described in...

Playlistmaker 1.5 (.M3U/M3L File) Local Stack Overflow Exploit (seh)

Exploit for unknown platform in category local exploits ==================================================================== Playlistmaker 1.5 .M3U/M3L File Local Stack Overflow Exploit seh ==================================================================== !/usr/bin/perl discoverd by: germayax...

Cyrus IMAP pop3d popsubfolders buffer overflow

Added: 10/30/2008 CVE: CVE-2006-2502 BID: 18056 OSVDB: 25853 Background Cyrus IMAP is an open-source IMAP, POP3, and KPOP server. The popsubfolders configuration option allows POP3 users to access subfolders by specifying the subfolder name when logging in. Problem When the popsubfolders...

MS Windows DirectSpeechSynthesis Module Remote BoF Exploit win2k

No description provided by source. !-- 01/06/2007 23.19.50 Microsoft Windows DirectSpeechSynthesis Module XVoice.dll / DirectSpeechRecognition Module Xlisten.dll remote buffer overflow exploit / 2k sp4 seh version both the dlls are located in %SystemRoot%\speech folder and they are vulnerable to...

Important: Red Hat Security Advisory: alsa-lib security update

An updated alsa-lib package that fixes a flaw that disabled stack execution protection is now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The alsa-lib package provides a library of functions for...