ZDI-12-033 : ABB WebWare RobNetScanHost.exe Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-033 : ABB WebWare RobNetScanHost.exe Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-033 February 22, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendors: ABB - -- Affected...

GLSA-201203-17 : HPLIP: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201203-17 HPLIP: Multiple vulnerabilities Two vulnerabilities have been found in HPLIP: The 'hpmudgetpml' function in pml.c contains a boundary error which could cause a stack-based buffer overflow CVE-2010-4267. The...

NetDecision HTTP Server Long HTTP Request Remote DoS Vulnerability

NetDecision HTTP Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Sysax SSH Username Remote Code Execution

Added: 03/06/2012 BID: 52190 OSVDB: 79689 Background Sysax Multi Server is a Secure FTP Server and SSH2 Secure Shell Server combined into a single product. It simultaneously supports remote access and file transfer using FTP, FTPS, SFTP, Telnet, and Secure Shell. It also supports web based file...

Sysax SSH Username Remote Code Execution

Added: 03/06/2012 BID: 52190 OSVDB: 79689 Background Sysax Multi Server is a Secure FTP Server and SSH2 Secure Shell Server combined into a single product. It simultaneously supports remote access and file transfer using FTP, FTPS, SFTP, Telnet, and Secure Shell. It also supports web based file...

Sysax SSH Username Remote Code Execution

Added: 03/06/2012 BID: 52190 OSVDB: 79689 Background Sysax Multi Server is a Secure FTP Server and SSH2 Secure Shell Server combined into a single product. It simultaneously supports remote access and file transfer using FTP, FTPS, SFTP, Telnet, and Secure Shell. It also supports web based file...

CVE-2012-0201

Stack-based buffer overflow in pcspref.dll in pcsws.exe in IBM Personal Communications 5.9.x before 5.9.8 and 6.0.x before 6.0.4 might allow remote attackers to execute arbitrary code via a long profile string in a WorkStation aka .ws file...

IBM Personal Communications I-Series Access WorkStation 5.9 Profile

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

IBM Personal Communications I-Series Access Workstation 5.9 - Profile (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'IBM Personal...

Orbit Downloader URL Unicode Conversion Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Orbit Downloader...

Debian DSA-2415-1 : libmodplug - several vulnerabilities

Several vulnerabilities that can lead to the execution of arbitrary code have been discovered in libmodplug, a library for MOD music based on ModPlug. The Common Vulnerabilities and Exposures project identifies the following issues : - CVE-2011-1761 epiphant discovered that the abc file parser is...

CVE-2012-0238

Stack-based buffer overflow in opcImg.asp in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary code via unspecified vectors...

DJ Studio Pro 5.1.6.5.2 SEH Exploit MSF

Exploit for windows platform in category local exploits $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

DJ Studio Pro 5.1.6.5.2 - Local Overflow (SEH) (Metasploit)

DJ Studio Pro 5.1.6.5.2 - Local Overflow SEH Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Gentoo Security Advisory GLSA 201201-08 (FontForge)

The remote host is missing updates announced in advisory GLSA 201201-08. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

CVE-2012-0978

Stack-based buffer overflow in npjp2.dll in LuraWave JP2 Browser Plug-In 1.1.1.11 and other versions before 2.1.1.11 allows remote attackers to execute arbitrary code via a JPEG2000 JP2 file with a crafted Quantization Default QCD marker segment...

HP Diagnostics Server 'magentservice.exe' Buffer Overflow Vulnerability

HP Diagnostics Server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

IrfanView JPEG-2000 Plugin Remote Stack Based Buffer Overflow Vulnerability

This host has IrfanView with JPEG-2000 plugin installed and is prone to stack based buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbirfanviewjpeg2000bofvuln.nasl 5940 2017-04-12 09:02:05Z teissa $ IrfanView JPEG-2000 Plugin Remote Stack Based Buffer Overflow Vulnerability Authors...

Fedora 15 : qt-4.7.4-10.fc15 (2011-17565)

This build addresses a security issue : - CVE-2011-3922 qt: Stack-based buffer overflow in embedded harfbuzz code as well as includes an upstream patch to address : - 'closed windows stay in the taskbar sometimes, taskbar doesn't react on clicks', http://bugs.kde.org/275469 Note that Tenable...

CVE-2012-0807

Stack-based buffer overflow in the suhosinencryptsinglecookie function in the transparent cookie-encryption feature in the Suhosin extension before 0.9.33 for PHP, when suhosin.cookie.encrypt and suhosin.multiheader are enabled, might allow remote attackers to execute arbitrary code via a long...