IBM Lotus Domino iCalendar - Email Address Stack Buffer Overflow

source: http://labs.mwrinfosecurity.com/advisories/lotusdominoicalstackbufferoverflow/ IBM Lotus Domino iCalendar Email Address Stack Buffer Overflow Vulnerability Package Name: Lotus Domino Server Date Reported: 2010-01-09 Affected Versions: Versions 8.0 and 8.5 on AIX, AIX 64bit, Linux, Linux...

Hewlett-Packard Data Protector DtbClsLogin Utf8cpy Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Data Protector. Authentication is not required to exploit this vulnerability. The specific flaw exists within the function DtbClsLogin defined in the module dpwindtb.dll on Windows...

Fedora 14 : quagga-0.99.17-1.fc14 (2010-13928)

Bug 626783 - CVE-2010-2948 Quagga bgpd: Stack buffer overflow by processing certain Route-Refresh messages Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...

Adobe CoolType SING Table "uniqueName" Stack Buffer Overflow

This module exploits a vulnerability in the Smart INdependent Glyplets SING table handling within versions 8.2.4 and 9.3.4 of Adobe Reader. Prior versions are assumed to be vulnerable as well. This module requires Metasploit: https://metasploit.com/download Current source:...

Adobe CoolType SING Table "uniqueName" Stack Buffer Overflow

This module exploits a vulnerability in the Smart INdependent Glyplets SING table handling within versions 8.2.4 and 9.3.4 of Adobe Reader. Prior versions are assumed to be vulnerable as well. This module requires Metasploit: https://metasploit.com/download Current source:...

Oracle Secure Backup observiced.exe Buffer Overflow (CVE-2010-0072)

Oracle Secure Backup is a backup solution allowing for centralized tape backup management. The server allowsfor single point of management of data present on network attached storage NAS devices and distributed hostswhich may have different operating systems. A stack buffer overflow vulnerability...

Microsoft Plug and Play Service - Overflow (MS05-039) (Metasploit)

$Id: ms05039pnp.rb 10190 2010-08-30 20:40:05Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

NetTransport Download Manager 2.90.510 - Remote Buffer Overflow (Metasploit)

$Id: nettransport.rb 10150 2010-08-25 20:55:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Microsoft Office Excel PivotTable Cache Data Record Handling Overflow

Added: 08/19/2010 CVE: CVE-2010-2562 BID: 42199 OSVDB: 66991 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem Microsoft Excel is vulnerable to a stack buffer overflow due to a logic error when parsing...

Microsoft Office Excel PivotTable Cache Data Record Handling Overflow

Added: 08/19/2010 CVE: CVE-2010-2562 BID: 42199 OSVDB: 66991 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem Microsoft Excel is vulnerable to a stack buffer overflow due to a logic error when parsing...

Owning Virtual Worlds For Fun and Profit

I’m a security researcher. I find bugs in software, they get fixed. I write exploits, they give me a shell. It’s more or less always the same and it gets kind of boring. But there was one exploit I helped write back in 2007 that was a little different. This is the story of that exploit. Second Li...

A-PDF WAV to MP3 Converter 1.0.0 - '.m3u' Local Stack Buffer Overflow

Exploit Title: A-PDF WAV to MP3 Converter 1.0.0 .m3u Stack Buffer Overflow Author: d4rk-h4ck3r Date: 2010-07-17 Software Link: http://www.brothersoft.com/a-pdf-wav-to-mp3-converter-394393.html Greetz 2 : PASSEWORD , KAiSER-J , sec4ever , tli7a , All Tun!Sian h4ck3rz Spacial thanks 2 : MadjiX el...

Apple Releases QuickTime 7.6.7

Apple has released QuickTime 7.6.7 for Windows to address a vulnerability. This vulnerability is due to a stack buffer overflow that exists in QuickTime error logging. By convincing a user to open a specially crafted movie file, a remote attacker may be able to execute arbitrary code or cause a...

Xion Player 1.0.125 - Local Stack Buffer Overflow

Xion Player 1.0.125 - Local Stack Buffer Overflow !/usr/bin/python Title: Xion 1.0.125 Stack Buffer Overflow Date: August 13, 2010 Author: corelanc0d3r and dijital1 Grtz to dijital1 : I had a lot of fun working with you on this one ! : Grtz to dookie2000ca : Original Advisory:...

Xion Player 1.0.125 - Local Stack Buffer Overflow

!/usr/bin/python Title: Xion 1.0.125 Stack Buffer Overflow Date: August 13, 2010 Author: corelanc0d3r and dijital1 Grtz to dijital1 : I had a lot of fun working with you on this one ! : Grtz to dookie2000ca : Original Advisory: http://www.exploit-db.com/exploits/14517 hadji samir Platform: Window...

Sonique 2.0 - '.xpl' Remote Stack Buffer Overflow

source: https://www.securityfocus.com/bid/42434/info Sonique is prone to a remote stack-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to execute arbitrary code in the context of the...

Microsoft Windows - ANI LoadAniIcon() Chunk Size Stack Buffer Overflow (HTTP) (MS07-017) (Metasploit)

$Id: ms07017aniloadimagechunksize.rb 9984 2010-08-12 16:56:41Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Apple Zaps JailbreakMe Bugs in Record Time

Less than two weeks after exploits for a pair of serious security vulnerabilities were fitted into an automated JailbreakMe.com exploit, Apple has rushed out a patch to block the jailbreaking of iPhone, iPad and iPod Touch devices. The iOS 3.2.2 for iPad and iOS 4.0.2 iPhone and iPod Touch update...

SopCast New 0Day Remote Exploit

Exploit for windows platform in category remote exploits =============================== SopCast New 0Day Remote Exploit =============================== Sopcast POC by Sud0 Tested on XP SP3 EN on VBox with IE 7 Spraying a lot to get a nice unicode usable address 0x20260078 I sprayed with a set of...

Mini-stream Ripper 3.1.2.1 - Local Buffer Overflow (DEP Bypass)

Mini-stream Ripper 3.1.2.1 - Local Buffer Overflow DEP Bypass / DISCLAIMER THIS PROGRAM IS NOT INTENDED TO BE USED ON OTHER COMPUTERS AND IT IS DESTINED FOR PERSONAL RESEARCH ONLY!!!! The programs are provided as is without any guarantees or warranty. The author is not responsible for any damage ...