5749 matches found
OpenVms 8.3 Finger Service - Stack Buffer Overflow
source: https://www.securityfocus.com/bid/30589/info The finger service 'fingerd' on OpenVMS is prone to a stack-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input. Attackers can exploit this issue to execute arbitrary code in the context of the...
IrfanView 3.99 - .IFF File Local Stack Buffer Overflow
IrfanView 3.99 - .IFF File Local Stack Buffer Overflow /Irfan View 3.99 .IFF File Local Stack Buffer Overflow This sploit runs calc.exe tested on Win XP Pro sp3;If you run it on another vs of Win make sure you chance the retaddress,but it works almost all the time so.. . Credits for finding the b...
irfanviewiff-overflow.txt
/Irfan View 3.99 .IFF File Local Stack Buffer Overflow This sploit runs calc.exe tested on Win XP Pro sp3;If you run it on another vs of Win make sure you chance the retaddress,but it works almost all the time so.. . Credits for finding the bug and sploit go to fl0 fl0w. Gretez to all romanian...
BlazeVideo HDTV Player PLF文件堆栈缓冲区溢出漏洞
BUGTRAQ ID: 30442 CNCAN ID:CNCAN-2008073108 BlazeVideo HDTV Player是一款支持HDTV播放的媒体播放程序。 BlazeVideo HDTV Player处理播放列表文件存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 构建恶意的PLF文件,诱使用户使用BlazeVideo HDTV Player处理,可触发此漏洞。 BlazeVideo HDTV Player 3.5 目前没有解决方案提供: http://www.blazevideo.com/ /Blaze Video HDTV Player V 3.5...
Novell iPrint Client ActiveX Control Stack Buffer Overflow (CVE-2008-2908)
Novell iPrint is an application that enables users to install and manage printers, or submit print job from a web browser. A stack buffer overflow vulnerability has been reported in Novell iPrint Client. The vulnerability is due to a boundary error in a Novell iPrint ActiveX control. To trigger...
Novell GroupWise Messenger Client Buffer Overflow
This module exploits a stack buffer overflow in Novell's GroupWise Messenger Client. By sending a specially crafted HTTP response, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
Novell iPrint Client ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in Novell iPrint Client 4.34. When sending an overly long string to the GetDriverSettings property of ienipp.ocx an attacker may be able to execute arbitrary code. -- coding: binary -- This module requires Metasploit: https://metasploit.com/download...
Creative Software AutoUpdate Engine ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in Creative Software AutoUpdate Engine. When sending an overly long string to the cachefolder property of CTSUEng.ocx an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
GLD (Greylisting Daemon) Postfix Buffer Overflow
This module exploits a stack buffer overflow in the Salim Gasmi GLD 'GLD Greylisting Daemon Postfix Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in the Salim Gasmi GLD 'aushack' , 'Arch' = ARCHX86, 'Platform' = 'linux', 'References' = 'CVE', '2005-1099' ,...
DoubleTake/HP StorageWorks Storage Mirroring Service Authentication Overflow
This module exploits a stack buffer overflow in the authentication mechanism of NSI Doubletake which is also rebranded as HP Storage Works. This vulnerability was found by Titon of Bastard Labs. This module requires Metasploit: https://metasploit.com/download Current source:...
NASA Ames Research Center BigView 1.8 - .PNM Stack Buffer Overflow (PoC)
NASA Ames Research Center BigView 1.8 - .PNM Stack Buffer Overflow PoC source: https://www.securityfocus.com/bid/29517/info NASA Ames Research Center BigView is prone to a remote stack-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying ...
Borland Interbase integer overflow
Integer overflow on TCP/3050 traffic parsing leads to stack based buffer overflow...
Debian DSA-1579-1 : netpbm-free - insufficient input sanitizing
A vulnerability was discovered in the GIF reader implementation in netpbm-free, a suite of image manipulation utilities. Insufficient input data validation could allow a maliciously-crafted GIF file to overrun a stack buffer, potentially permitting the execution of arbitrary code. %NASLMINLEVEL...
PhotoStockPlus Uploader Tool ActiveX stack buffer overflows
Overview The PhotoStockPlus Uploader Tool ActiveX control contains several stack buffer overflows, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description PhotoStockPlus provides an image uploader ActiveX control, which is provided by the...
BigAnt Server 2.2 Buffer Overflow
This module exploits a stack buffer overflow in BigAnt Server 2.2. By sending a specially crafted packet, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
CA BrightStor ARCserve for Laptops and Desktops LGServer Buffer Overflow
This module exploits a stack buffer overflow in Computer Associates BrightStor ARCserve Backup for Laptops & Desktops 11.1. By sending a specially crafted request, an attacker could overflow the buffer and execute arbitrary code. This module requires Metasploit: https://metasploit.com/download...
Surgemail 3.8 - IMAP LSUB Command Remote Stack Buffer Overflow
source: https://www.securityfocus.com/bid/28377/info SurgeMail is prone to a remote stack-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input. Successfully exploiting this issue may allow remote attackers to execute arbitrary machine code in the conte...
BusinessObjects RptViewerAX ActiveX control stack buffer overflow
Overview The BusinessObjects RptViewerAX ActiveX control contains a stack buffer overflow, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description BusinessObjects 6.5 includes an ActiveX control called RptViewerAX, which is provided by...
KarjaSoft Sami FTP Server v2.0.2 USER Overflow
This module exploits an unauthenticated stack buffer overflow in KarjaSoft Sami FTP Server version 2.0.2 by sending an overly long USER string during login. The payload is triggered when the administrator opens the application GUI. If the GUI window is open at the time of exploitation, the payloa...
ZDI-08-009: Java Web Start tempbuff Stack Buffer Overflow
ZDI-08-009: Java Web Start tempbuff Stack Buffer Overflow http://www.zerodayinitiative.com/advisories/ZDI-08-009 March 12, 2008 -- CVE ID: CVE-2008-1188 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime -- TippingPointTM IPS Customer Protection: TippingPoin...