Ability Server 2.34 STOR Command Stack Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Ability Server 2....

php: stack-based buffer overflow in socket_connect()

Stack-based buffer overflow in the socketconnect function in ext/sockets/sockets.c in PHP 5.3.3 through 5.3.6 might allow context-dependent attackers to execute arbitrary code via a long pathname for a UNIX socket...

PT-2011-4788 · Ammsoft · Scriptftp

Name of the Vulnerable Software and Affected Versions: AmmSoft ScriptFTP version 3.3 Description: The issue is a stack-based buffer overflow that allows remote FTP servers to execute arbitrary code. This can occur when a long filename is received in response to a LIST command. The exploitation ca...

Oracle 1 0 & 11g exp.exe 0day stack overflow-vulnerability warning-the black bar safety net

Just being bored, I found a Oracle 11g database, there is a bit of high impact but low likleyhood of 0day attacks. The vulnerability is the Oracle export utility on the command line to specify the parameter file inside the“file”field within the analysis. The EXPORT utility as privileged code...

PHP 5.3.6 Buffer Overflow PoC (ROP) CVE-2011-1938

No description provided by source. ?php / Jonathan Salwan - @shellstorm http://shell-storm.org 2011-06-04 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1938 Stack-based buffer overflow in the socketconnect function in ext/sockets/sockets.c in PHP 5.3.3 through 5.3.6 might allow...

Microsoft Office Visio VISIODWG.DLL DXF File Handling Vulnerability

No description provided by source. $Id: visiodxfbof.rb 13034 2011-06-26 16:09:53Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...

Microsoft Office Visio VISIODWG.DLL DXF File Handling Vulnerability

This module exploits a stack based overflow vulnerability in the handling of the DXF files by Microsoft Visio 2002. Revisions prior to the release of the MS bulletin MS10-028 are vulnerable. The overflow occurs when the application is used to import a specially crafted DXF file, while parsing the...

IBM Tivoli Endpoint 4.1.1 - Remote SYSTEM

IBM Tivoli Endpoint 4.1.1 - Remote SYSTEM !/usr/bin/python tiv-sys.py IBM Tivoli Endpoint 4.1.1 Remote SYSTEM Exploit Jeremy Brown 0xjbrown41-gmail-com June 2011 Discovered by: Brian Adeloye of Tenable Network Security This exploit makes use of two vulnerabilities: 1 Base64 authentication...

HT Editor 2.0.18 - File Opening Stack Overflow

HT Editor 2.0.18 - File Opening Stack Overflow Exploit Title: HT Editor File openning Stack Overflow 0day Date: March 30th 2011 Author: ZadYree Software Link: http://hte.sourceforge.net/downloads.html Version: Thanks =cut use 5.010; my $esp, $retaddr; my $scz =...

HT Editor 2.0.18 Stack Overflow

Exploit Title: HT Editor File openning Stack Overflow 0day Date: March 30th 2011 Author: ZadYree Software Link: http://hte.sourceforge.net/downloads.html Version: Thanks =cut use strict; use warnings; use constant SHELLCODE = "\xeb\x11\x5e\x31\xc9\xb1\x21\x80\x6c\x0e"...

MOXA Device Manager MDM Tool Buffer Overflow Vulnerability

MOXA Device Manager is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

xRadio 0.95b (.xrl) Local Buffer Overflow (SEH)

Exploit for windows platform in category local exploits GotGeek Labs http://www.gotgeek.com.br/ xRadio 0.95b .xrl Local Buffer Overflow SEH + Description With xRadio you can listen internet radio with Windows Media Player Technology tm. You can setup a radio list and import asx's files. The progr...

A-PDF All to MP3 Converter 2.0.0 - .wav Local Buffer Overflow (SEH)

A-PDF All to MP3 Converter 2.0.0 - .wav Local Buffer Overflow SEH Exploit Title: A-PDF All to MP3 Converter v.2.0.0 SEH overflow Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: = 2.0.0 Tested on: Win XP SP2 English Date: 29/01/2011 Author: m0nna Email: [email protected]...

A-PDF All to MP3 Converter 2.0.0 - '.wav' Local Buffer Overflow (SEH)

Exploit Title: A-PDF All to MP3 Converter v.2.0.0 SEH overflow Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: = 2.0.0 Tested on: Win XP SP2 English Date: 29/01/2011 Author: m0nna Email: [email protected] triggering details: Open the app, drag the crafted .wav file, cal...

A-PDF All To MP3 Converter 2.0.0 Buffer Overflow

Exploit Title: A-PDF All to MP3 Converter v.2.0.0 SEH overflow Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: = 2.0.0 Tested on: Win XP SP2 English Date: 29/01/2011 Author: m0nna Email: [email protected] triggering details: Open the app, drag the crafted .wav file, cal...

CVE-2009-5018

Stack-based buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to execute arbitrary code via a long command-line argument, as demonstrated by a CGI program that launches gif2png...

CVE-2011-0263

Affected product: HP OpenView Network Node Manager (OV NNM) versions 7.51 and 7.53 running on various OSes. Vulnerability: Multiple stack-based buffer overflows in the ovas.exe component (OVAS service) allow remote code execution via long Source Node or Destination Node names. Impact: Remote atta...

CVE-2010-3872

The CVE-2010-3872 issue affects Apache mod_fcgid. A flaw in fcgid_header_bucket_read() (fcgid_bucket.c) could trigger a stack-based buffer overflow from malformed FastCGI responses, potentially crashing the server or allowing arbitrary code execution with the server’s privileges. Public sources i...

HP - 'OmniInet.exe' MSG_PROTOCOL Buffer Overflow (Metasploit) (1)

$Id: hpomniinet2.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Month Of Abysssec Undisclosed Bugs - Microsoft Office Visio Overflow

''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 8 Binary Analysis | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-8-microsoft-office-visio-dxf-file-stack-overflow/ http://www.exploit-db.com/sploits/moaub-8-exploit.zip ''' ''' Title :...