7301 matches found
CVE-2006-5856
Summary (CVE-2006-5856): Adobe Download Manager (ADM) prior to version 2.2 contains a stack-based buffer overflow in the AOM file parser. A long section name in the dm.ini file (populated from AOM files) can be used by a remote attacker to execute arbitrary code. Exploitation generally requires t...
CVE-2006-5856
Stack-based buffer overflow in the Adobe Download Manager before 2.2 allows remote attackers to execute arbitrary code via a long section name in the dm.ini file, which is populated via an AOM file...
GLSA-200611-26 : ProFTPD: Remote execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-200611-26 ProFTPD: Remote execution of arbitrary code Evgeny Legerov discovered a stack-based buffer overflow in the sreplace function in support.c, as well as a buffer overflow in in the modtls module. Additionally, an off-by-two...
BlazeVideo HDTV Player 2.1 - '.PLF' Local Buffer Overflow
/ ======================================================================== 0-day BlazeVideo HDTV Player 30 days of Media Player Exploits by Greg Linares Discovered and Reported By: Greg Linares [email protected] Reported Exploit Date: 12/1/2006 / include include include int mainint argc, ch...
CVE-2006-4400
Stack-based buffer overflow in the Apple Type Services ATS server in Mac OS 10.4.8 and earlier allow user-assisted attackers to execute arbitrary code via crafted font files...
CVE-2006-4400
Stack-based buffer overflow in the Apple Type Services ATS server in Mac OS 10.4.8 and earlier allow user-assisted attackers to execute arbitrary code via crafted font files...
CVE-2006-5864
Technical details (affected product/component/versions/root cause/impact/remediation) are not publicly provided in the supplied documents. Monitor for updates from the connected sources for concrete information.
CVE-2006-5780
Stack-based buffer overflow in nfsd.exe in XLink Omni-NFS Server 5.2 allows remote attackers to execute arbitrary code via a crafted TCP packet to port 2049 nfsd, as demonstrated by vdxlink.pm...
ZDI-06-035: Novell eDirectory NDS Server Host Header Buffer Overflow Vulnerability
ZDI-06-035: Novell eDirectory NDS Server Host Header Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-035.html October 26, 2006 -- CVE ID: CVE-2006-5478 -- Affected Vendor: Novell -- Affected Products: Novell eDirectory 8.8.1 -- TippingPointTM IPS Customer...
Novell eDirectory 8.x - iMonitor HTTPSTK Buffer Overflow (3)
Novell eDirectory 8.x - iMonitor HTTPSTK Buffer Overflow 3 source: https://www.securityfocus.com/bid/20655/info The Novell eDirectory server iMonitor is prone to a stack-based buffer-overflow vulnerability because it fails to perform sufficient bounds checking on client-supplied data before copyi...
MS Internet Explorer (VML) Remote Buffer Overflow Exploit (XP SP1)
No description provided by source. !/usr/bin/perl Microsoft Internet Explorer VML Remote Buffer Overflow Windows XP SP0-SP1 + Windows 2000 SP4 Author: Trirat Puttaraksa Kira trir00t at gmail.com http://sf-freedom.blogspot.com For educational purpose only Note: This exploit is modified from...
[Full-disclosure] TSRT-06-12: CA BrightStor Discovery Service Mailslot Buffer Overflow Vulnerability
TSRT-06-12: CA BrightStor Discovery Service Mailslot Buffer Overflow Vulnerability http://www.tippingpoint.com/security/advisories/TSRT-06-12.html October 5, 2006 -- CVE ID: CVE-2006-5142 -- Affected Vendor: Computer Associates -- Affected Products: BrightStor ARCserver Backup R11.5 Client...
CA BrightStor ARCserve Discovery Service Remote Buffer Overflow Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Computer Associates BrightStor ARCserve Backup, Enterprise Backup, Server Protection Suite and Business Protection Suite. Authentication is not required to exploit this vulnerability and both clien...
ie_vml_pl.txt
!/usr/bin/perl Microsoft Internet Explorer VML Remote Buffer Overflow Windows XP SP0-SP1 + Windows 2000 SP4 Author: Trirat Puttaraksa Kira http://sf-freedom.blogspot.com For educational purpose only Note: This exploit is modified from Shirkdog's PoC http://www.milw0rm.com/exploits/2400 I exploit...
CVE-2006-4948
CVE-2006-4948 affects ProSysInfo TFTPDWIN 0.4.2 and earlier. A stack-based buffer overflow in tftpd.exe can be triggered by a long filename sent to the TFTP server, allowing remote attackers to cause arbitrary code execution or a denial of service. Public references show a long filename vulnerabi...
CVE-2006-4868
CVE-2006-4868: A stack-based buffer overflow in VGX.dll (VML processing) used by Microsoft Outlook and Internet Explorer on Windows XP SP2 enables remote code execution via a crafted VML rect tag with a long fill parameter. Affected: Internet Explorer/VML handling. Impact per sources: arbitrary c...
CVE-2006-4379
CVE-2006-4379 affects Ipswitch IMail Server (and related Ipswitch products) where the SMTP daemon is vulnerable to a stack-based buffer overflow via a long RCPT TO argument (between @ and :) that allows remote code execution. Public material across advisories and exploit references notes the issu...
Ipswitch IMail Server SMTP Service Crafted RCPT String Remote Overflow
The remote host is running Ipswitch Collaboration Suite / IMail Secure Server / IMail Server, commercial messaging and collaboration suites for Windows. According to its banner, the version of Ipswitch Collaboration Suite / IMail Secure Server / IMail Server installed on the remote host has a...
CVE-2006-4359
The CVE-2006-4359 entry describes a stack-based buffer overflow in Trident Software PowerZip 7.06 Build 3895 affecting Windows 2000. The vulnerability arises from processing a ZIP archive containing a long filename, enabling remote code execution. Documents explicitly state the affected product/v...
CVE-2006-4326
Stack-based buffer overflow in Justsystem Ichitaro 9.x through 13.x, Ichitaro 2004, 2005, 2006, and Government 2006; Ichitaro for Linux; and FormLiner before 20060818 allows remote attackers to execute arbitrary code via long Unicode strings in a crafted document, as being actively exploited by...