5748 matches found
Quick FTP Pro 2.1 Transfer-Mode Overflow
This module exploits a stack buffer overflow in the Quick TFTP Pro server product. MS Update KB926436 screws up the opcode address being used in oledlg.dll resulting in a DoS. This is a port of a sploit by Mati "muts" Aharoni. This module requires Metasploit: https://metasploit.com/download Curre...
SuSE 10 Security Update : Mozilla (ZYPP Patch Number 5654)
This update backports lots of security fixes to mozilla-xulrunner package of SLES 10. It contains among others the following security fixes : - XBM image uninitialized memory reading. MFSA 2008-45 / CVE-2008-4069 - resource: traversal vulnerabilities. MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068 ...
openSUSE 10 Security Update : seamonkey (seamonkey-5657)
This patch updates SeaMonkey to version 1.1.12, fixing security and other bugs : MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities MFSA 2008-43: BOM characters stripped from JavaScript before...
MS Windows GDI (EMR_COLORMATCHTOTARGETW) Exploit MS08-021
No description provided by source. EMRCOLORMATCHTOTARGETW stack buffer overflow exploit By Ac!dDrop This is one of the 2 Vulnerabilities of MS08-021 Tested on Windows xp professional SP1 GDi32.dll 5.1.2600.1106 kernel32.dll 5.1.2600.1106 ws232.dll 5.1.2600.0 calc.zip--- executes calculator IE.zip...
Mercury/32 4.01 IMAP LOGIN SEH Buffer Overflow
This module exploits a stack buffer overflow in Mercury/32 'Mercury/32 4.01 IMAP LOGIN SEH Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in Mercury/32 'mu-b', Discovery and exploit 'MC', Metasploit module 'Ivan Racic' Automatic targeting + egg hunter , 'License...
Microsoft Windows - GDI (EMR_COLORMATCHTOTARGETW) (MS08-021)
EMRCOLORMATCHTOTARGETW stack buffer overflow exploit By Ac!dDrop This is one of the 2 Vulnerabilities of MS08-021 Tested on Windows xp professional SP1 GDi32.dll 5.1.2600.1106 kernel32.dll 5.1.2600.1106 ws232.dll 5.1.2600.0 calc.zip--- executes calculator IE.zip and localhost.zip ------ connects ...
MS Windows GDI (EMR_COLORMATCHTOTARGETW) Exploit MS08-021
Exploit for unknown platform in category remote exploits ========================================================= MS Windows GDI EMRCOLORMATCHTOTARGETW Exploit MS08-021 ========================================================= EMRCOLORMATCHTOTARGETW stack buffer overflow exploit By Ac!dDrop This...
Microsoft Windows - GDI (EMR_COLORMATCHTOTARGETW) (MS08-021)
Microsoft Windows - GDI EMRCOLORMATCHTOTARGETW MS08-021 EMRCOLORMATCHTOTARGETW stack buffer overflow exploit By Ac!dDrop This is one of the 2 Vulnerabilities of MS08-021 Tested on Windows xp professional SP1 GDi32.dll 5.1.2600.1106 kernel32.dll 5.1.2600.1106 ws232.dll 5.1.2600.0 calc.zip---...
Mozilla Thunderbird < 2.0.0.17 Multiple Vulnerabilities
Binary data 4696.prm...
Mozilla Firefox < 2.0.0.17 Multiple Vulnerabilities
Binary data 4692.prm...
SeaMonkey < 1.1.12 Multiple Vulnerabilities
Binary data 4693.prm...
SeaMonkey < 1.1.12 Multiple Vulnerabilities
The installed version of SeaMonkey is affected by various security issues : - Using a specially crafted UTF-8 URL in a hyperlink, an attacker might be able to exploit a stack buffer overflow in the Mozilla URL parsing routes to execute arbitrary code. MFSA 2008-37 - It is possible to bypass the...
mozilla -- multiple vulnerabilities
The Mozilla Foundation reports: MFSA 2008-37UTF-8 URL stack buffer overflow MFSA 2008-38nsXMLDocument::OnChannelRedirect same-origin violation MFSA 2008-39Privilege escalation using feed preview page and XSS flaw MFSA 2008-40Forced mouse drag MFSA 2008-41Privilege escalation via XPCnativeWrapper...
Debian Security Advisory DSA 1637-1 (git-core)
The remote host is missing an update to git-core announced via advisory DSA 1637-1. OpenVAS Vulnerability Test $Id: deb16371.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1637-1 git-core Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
SuSE 10 Security Update : imlib2 (ZYPP Patch Number 5572)
This update fixes two security problems in imlib2. Specially crafted xpm files could trigger a stack based buffer overflow in imlib2 which could potentially be exploited to execute arbitrary code. CVE-2008-2426 A crash in PNM handling due to a NULL pointer dereference was fixed. %NASLMINLEVEL 703...
ZDI-08-058: Apple QuickTime Panorama PDAT Atom Parsing Buffer Overflow Vulnerability
ZDI-08-058: Apple QuickTime Panorama PDAT Atom Parsing Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-058 September 9, 2008 -- CVE ID: CVE-2008-3625 -- Affected Vendors: Apple -- Affected Products: Apple Quicktime -- TippingPointTM IPS Customer Protection:...
Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow Exploit
No description provided by source. /Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow This sploit Launches calc.exe .. classical buffer overflow ,a 500 byte buffer is causing the exeption. Tested on WinXP Pro sp3,compiled with DEv-C++ 4.9.9.2. After preparation: |Access violation when...
Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow Exploit
Exploit for unknown platform in category local exploits ================================================================== Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow Exploit ================================================================== /Numark Cue 5.0 rev 2 Local .M3U File...
EMC AlphaStor Agent Buffer Overflow
This module exploits a stack buffer overflow in EMC AlphaStor 3.1. By sending a specially crafted message, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
OpenVms 8.3 Finger Service - Stack Buffer Overflow
source: https://www.securityfocus.com/bid/30589/info The finger service 'fingerd' on OpenVMS is prone to a stack-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input. Attackers can exploit this issue to execute arbitrary code in the context of the...