CVE-2006-6444

The CVE-2006-6444 issue affects Nostra DivX Player versions 2.1, 2.2.00.0 (and possibly earlier). It is caused by a stack-based buffer overflow triggered by a long string in an M3U file, which allows a remote attacker to execute arbitrary code. The vulnerability is exploitable remotely via crafte...

CVE-2006-6444

Stack-based buffer overflow in Nostra DivX Player 2.1, 2.2.00.0, and possibly earlier, allows remote attackers to execute arbitrary code via a long string in an M3U file. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2006-6442

Stack-based buffer overflow in the SetClientInfo function in the CDDBControlAOL.CDDBAOLControl ActiveX control cddbcontrol.dll, as used in America Online AOL 7.0 4114.563, 8.0 4129.230, and 9.0 Security Edition 4156.910, and possibly other products, allows remote attackers to execute arbitrary co...

CVE-2006-6385

CVE-2006-6385 describes a stack-based buffer overflow in Intel PRO Ethernet NDIS miniport drivers (PRO 10/100, PRO/1000, PRO/10GbE for PCI, PCI-X, PCIe) before 2006-12-05. The flaw allows a local attacker to execute arbitrary code with kernel-level privileges via an incorrect OID-handling functio...

CVE-2006-5856

Summary (CVE-2006-5856): Adobe Download Manager (ADM) prior to version 2.2 contains a stack-based buffer overflow in the AOM file parser. A long section name in the dm.ini file (populated from AOM files) can be used by a remote attacker to execute arbitrary code. Exploitation generally requires t...

CVE-2006-5856

Stack-based buffer overflow in the Adobe Download Manager before 2.2 allows remote attackers to execute arbitrary code via a long section name in the dm.ini file, which is populated via an AOM file...

GLSA-200611-26 : ProFTPD: Remote execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200611-26 ProFTPD: Remote execution of arbitrary code Evgeny Legerov discovered a stack-based buffer overflow in the sreplace function in support.c, as well as a buffer overflow in in the modtls module. Additionally, an off-by-two...

BlazeVideo HDTV Player 2.1 - '.PLF' Local Buffer Overflow

/ ======================================================================== 0-day BlazeVideo HDTV Player 30 days of Media Player Exploits by Greg Linares Discovered and Reported By: Greg Linares [email protected] Reported Exploit Date: 12/1/2006 / include include include int mainint argc, ch...

CVE-2006-4400

Stack-based buffer overflow in the Apple Type Services ATS server in Mac OS 10.4.8 and earlier allow user-assisted attackers to execute arbitrary code via crafted font files...

CVE-2006-4400

Stack-based buffer overflow in the Apple Type Services ATS server in Mac OS 10.4.8 and earlier allow user-assisted attackers to execute arbitrary code via crafted font files...

CVE-2006-5864

Technical details (affected product/component/versions/root cause/impact/remediation) are not publicly provided in the supplied documents. Monitor for updates from the connected sources for concrete information.

CVE-2006-5780

Stack-based buffer overflow in nfsd.exe in XLink Omni-NFS Server 5.2 allows remote attackers to execute arbitrary code via a crafted TCP packet to port 2049 nfsd, as demonstrated by vdxlink.pm...

ZDI-06-035: Novell eDirectory NDS Server Host Header Buffer Overflow Vulnerability

ZDI-06-035: Novell eDirectory NDS Server Host Header Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-035.html October 26, 2006 -- CVE ID: CVE-2006-5478 -- Affected Vendor: Novell -- Affected Products: Novell eDirectory 8.8.1 -- TippingPointTM IPS Customer...

Novell eDirectory 8.x - iMonitor HTTPSTK Buffer Overflow (3)

Novell eDirectory 8.x - iMonitor HTTPSTK Buffer Overflow 3 source: https://www.securityfocus.com/bid/20655/info The Novell eDirectory server iMonitor is prone to a stack-based buffer-overflow vulnerability because it fails to perform sufficient bounds checking on client-supplied data before copyi...

MS Internet Explorer (VML) Remote Buffer Overflow Exploit (XP SP1)

No description provided by source. !/usr/bin/perl Microsoft Internet Explorer VML Remote Buffer Overflow Windows XP SP0-SP1 + Windows 2000 SP4 Author: Trirat Puttaraksa Kira trir00t at gmail.com http://sf-freedom.blogspot.com For educational purpose only Note: This exploit is modified from...

[Full-disclosure] TSRT-06-12: CA BrightStor Discovery Service Mailslot Buffer Overflow Vulnerability

TSRT-06-12: CA BrightStor Discovery Service Mailslot Buffer Overflow Vulnerability http://www.tippingpoint.com/security/advisories/TSRT-06-12.html October 5, 2006 -- CVE ID: CVE-2006-5142 -- Affected Vendor: Computer Associates -- Affected Products: BrightStor ARCserver Backup R11.5 Client...

CA BrightStor ARCserve Discovery Service Remote Buffer Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Computer Associates BrightStor ARCserve Backup, Enterprise Backup, Server Protection Suite and Business Protection Suite. Authentication is not required to exploit this vulnerability and both clien...

ie_vml_pl.txt

!/usr/bin/perl Microsoft Internet Explorer VML Remote Buffer Overflow Windows XP SP0-SP1 + Windows 2000 SP4 Author: Trirat Puttaraksa Kira http://sf-freedom.blogspot.com For educational purpose only Note: This exploit is modified from Shirkdog's PoC http://www.milw0rm.com/exploits/2400 I exploit...

CVE-2006-4948

CVE-2006-4948 affects ProSysInfo TFTPDWIN 0.4.2 and earlier. A stack-based buffer overflow in tftpd.exe can be triggered by a long filename sent to the TFTP server, allowing remote attackers to cause arbitrary code execution or a denial of service. Public references show a long filename vulnerabi...

CVE-2006-3507

Multiple stack-based buffer overflows in the AirPort wireless driver on Apple Mac OS X 10.3.9 and 10.4.7 allow physically proximate attackers to execute arbitrary code by injecting crafted frames into a wireless network...