libvncserver: server stacked-based buffer overflow flaws in file transfer handling

Two stack-based buffer overflow flaws were found in the way LibVNCServer handled file transfers. A remote attacker could use this flaw to crash the VNC server using a malicious VNC client...

PT-2014-2598 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.x through 3.x Description: The issue is a stack-based buffer overflow in the acdb ioctl function in audio acdb.c in the acdb audio driver. This allows attackers to gain privileges via an application that leverages...

Yokogawa Patches Buffer Overflow Bugs in ICS Gear

Vulnerabilities in production control system software used in manufacturing, energy and other critical industries worldwide have been patched by the vendor, an advisory from the Industrial Control System Cyber Emergency Response Team said. Yokogawa Electric Corp., of Japan patched critical buffer...

lftp <= 2.6.9 - Remote Stack based Overflow Exploit

No description provided by source. / lftp remote stack-based overflow exploit by Li0n7 voila fr Vulnerability discovered by Ulf Harnhammar Ulf.Harnhammar.9485 student uu se Lftp versions later than 2.6.10 are prone to a remotly exploitable stack-based overflow in trynetscapeproxy and trysquideplf...

marbles 1.0.1 - Local Home Environment Variable Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8710/info A problem in the handling of data in the Home environment variable has been reported in the marbles program. This may make it possible for a local attacker to gain elevated privileges. / c-marbles.c PoC exploit...

BrowseFTP Client 1.62 Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3781/info BrowseFTP is an ftp client that runs on various Microsoft Windows operating systems. An issue has been reported which could allow for a malicious ftp server to execute arbitrary code on a BrowseFTP client user...

H-Sphere Webshell 2.4 - Local Root Exploit

No description provided by source. source: http://www.securityfocus.com/bid/6527/info A vulnerability has been discovered in H-Sphere Webshell. During the pre-authentication phase Webshell fails to perform sufficient bounds checking on user-supplied HTTP parameters. As a result, a malicious...

Cogent DataHub <= 7.1.1.63 Stack Overflow

No description provided by source. Luigi Auriemma Application: Cogent DataHub http://www.cogentdatahub.com/Products/CogentDataHub.html Versions: = 7.1.1.63 Platforms: Windows Bug: stack unicode overflow Exploitation: remote Date: 13 Sep 2011 Author: Luigi Auriemma e-mail: [email protected] web...

SAS Integration Technologies Client 9.31_M1 (SASspk.dll) - Stack-Based Overflow

No description provided by source. !-- SAS Integration Technologies Client 9.31M1 SASspk.dll Stack-based Overflow Vendor: SAS Institute Inc. Product web page: http://www.sas.com Affected version: Deployment Manager 9.3.0.0 Model 12.05, TS1M2 SAS Integration Technologies Client 9.31M1 Summary: SAS...

Chasys Draw IES - Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

Acunetix 8 build 20120704 - Remote Stack Based Overflow

No description provided by source. !/usr/bin/python Title: Acunetix Web Vulnerability Scanner Buffer Overflow Exploit Version: 8 Build: 20120704 Tested on: Windows XP SP2 en Vendor: http://www.acunetix.com/ Original Advisory: http://an7isec.blogspot.co.il/2014/04/pown-noobs-acunetix-0day.html...

IrfanView 4.33 Format PlugIn TTF File Parsing Stack Based Overflow

No description provided by source. Application: IrfanView 4.33 Format PlugIn TTF File Parsing Stack Based Overflow Plateform: Windows Exploitation: Remote code execution Secunia Number: SA49319 PRL: 2012-11 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com...

3CDaemon 2.0 - Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/4638/info 3CDaemon is an FTP server developed by Dan Gill of 3Com. Reportedly, it is possible to initiate a buffer overflow on a host running 3CDaemon. Submitting an unusually large amount of data to the ftp server, could...

WinZIP <= 10.0.7245 (FileView ActiveX) Remote Buffer Overflow Exploit

No description provided by source. / WinZip = 10.0.7245 FileView ActiveX buffer overflow exploit ============================================================ A vulnerability has been identified within Winzip that allows remote attackers to execute arbitrary code. User interaction is required to...

3Com TFTP Service <= 2.0.1 - Remote Buffer Overflow Exploit (meta)

No description provided by source. package Msf::Exploit::3comtftplongmode; use strict; use base Msf::Exploit; use Pex::Text; use IO::Socket; my $advanced = ; my $info = 'Name' = 'TFTP Server 3CTftpSvc Buffer Overflow Vulnerability', 'Version' = '$ 1.0 $', 'Authors' = 'Enseirb vincenty at...

Oracle Java 6 OBJECT tag "launchjnlp"/"docbase" Param Buffer Overflow Exploit

No description provided by source. Source: http://code.google.com/p/skylined/issues/detail?id=23 SSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSS ,dSSSSSSSSSSSS SSSS ,dSSY' SSSS SSSS SSSS SSSS SSSSb, SSSS ,dSSSSSSSSSSSS SSSSSSSSSSSSb,...

ghttpd 1.4.x Log() Function Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5960/info A buffer overflow has been reported in ghttpd which will allow arbitrary code to be executed with the privileges of the webserver. The overflow occurs when the argument to a 'GET' request is of excessive length...

Easy CD-DA Recorder - (PLS File) Buffer Overflow

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::FILEFORMAT def initializeinfo =...

Linux Kernel 2.6.x NETLINK_FIB_LOOKUP Local Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23677/info The Linux kernel is prone to a denial-of-service vulnerability. This issue presents itself when a NETLINK message is misrouted. A local attacker may exploit this issue to trigger an infinite-recursion stack-bas...

PSOProxy 0.91 Remote Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/9706/info It has been reported that PSOProxy is prone to a remote buffer overflow vulnerability. The issue is due to the insufficient boundary checking. A malicious user may exploit this condition to potentially corrupt...