Novell NetMail WebAdmin Username Stack Buffer Overflow (CVE-2007-1350)

Novell NetMail is an electronic mail server product that supports various email access and exchange protocols, including IMAP Internet Message Access Protocol and NMAP Network Messaging Application Protocol.WebAdmin is a browser based administrative tool used to manage NetMail...

WebMod 0.48 (Content-Length) Remote Buffer Overflow Exploit PoC

Exploit for unknown platform in category remote exploits =============================================================== WebMod 0.48 Content-Length Remote Buffer Overflow Exploit PoC =============================================================== / WebMod Stack Buffer Overflow by cybermind Kevin...

VeriSign Managed PKI Configuration Checker ActiveX control stack buffer overflow

Overview The VeriSign Configuration Checker ActiveX control contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The VeriSign Configuration Checker ActiveX control is provided by web-based digital...

Trend Micro ServerProtect fails ENG_SetRealTimeScanConfigInfo() stack buffer overflow

Overview Trend Micro ServerProtect contains a stack-based buffer overflow. Description Trend Micro ServerProtect fails to properly handle data passed to the ENGSetRealTimeScanConfigInforoutine possibly allowing a stack-based buffer overflow to occur. This overflow can be triggered by sending a...

Sybase EAServer 5.2 Remote Stack Buffer Overflow

This module exploits a stack buffer overflow in the Sybase EAServer Web Console. The offset to the SEH frame appears to change depending on what version of Java is in use by the remote server, making this exploit somewhat unreliable. This module requires Metasploit: https://metasploit.com/downloa...

EasyMail Objects IMAP4 Component Connect Method Remote Overflow

EasyMail Objects, a set of COM objects for supporting email protocols, is installed on the remote Windows host. The IMAP4 component of the version of the DjVu Browser Plug-in installed on the remote host reportedly is affected by a stack buffer overflow in the 'Connect' method that can be trigger...

Remotesoft .NET Explorer远程堆栈缓冲区溢出漏洞

Remotesoft .NET Explorer是一款反汇编工具。 Remotesoft .NET Explorer处理cpp文件存在一个缓冲区溢出，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 构建恶意cpp文件，诱使用户打开可触发。 Remotesoft .NET Explorer 2.0.1 目前没有详细解决方案提供： http://www.remotesoft.com/linker/ /usr/bin/ python print "--------------------------------------------------------------" print...

libxine -- buffer overflow vulnerability

xine Team reports: A new xine-lib version is now available. This release contains a security fix array index vulnerability which may lead to a stack buffer overflow...

EasyMail Objects 6.x - Connect Method Remote Stack Buffer Overflow

EasyMail Objects 6.x - Connect Method Remote Stack Buffer Overflow source: https://www.securityfocus.com/bid/22583/info EasyMail Objects is prone to a remote stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data prior to copying it to ...

Computer Associates BrightStor ARCserve Backup LGSERVER.EXE stack buffer overflow

Overview Computer Associates BrightStor ARCserve Backup contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Computer Associates BrightStor ARCserve Backup products come with a service called LGSERVER.EX...

Citrix Presentation/MetaFrame Server cpprov.dll畸形参数栈缓冲区溢出漏洞

Citrix Presentation Server允许用户通过网络远程访问应用程序。 Citrix Presentation Server的打印提供程序（ccprov.dll）在处理传送给EnumPrintersW和OpenPrinter函数的参数时存在栈溢出漏洞，远程攻击者可能利用此漏洞在服务器上执行任意指令。 如果攻击者能够通过本地API调用或RPC请求向OpenPrinter传送超过130字节的超长字符串做为其第一个参数的话，就可以触发这个溢出，导致在本地系统环境中执行任意代码。 Citrix MetaFrame XP 1.0 Citrix Presentation Server...

Novell NetMail IMAP SUBSCRIBE Buffer Overflow

This module exploits a stack buffer overflow in Novell's NetMail 3.52 IMAP SUBSCRIBE verb. By sending an overly long string, an attacker can overwrite the buffer and control program execution. This module requires Metasploit: https://metasploit.com/download Current source:...

Mercur Messaging 2005 IMAP Login Buffer Overflow

This module exploits a stack buffer overflow in Atrium Mercur IMAP 5.0 SP3. Since the room for shellcode is small, using the reverse ordinal payloads yields the best results. This module requires Metasploit: https://metasploit.com/download Current source:...

SoftiaCom WMailserver 1.0 Buffer Overflow

This module exploits a stack buffer overflow in SoftiaCom WMailserver 1.0 SMTP via a SEH frame overwrite. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SoftiaCom WMailserver 1.0 Buffer...

Microsoft Internet Explorer isComponentInstalled Overflow

This module exploits a stack buffer overflow in Internet Explorer. This bug was patched in Windows 2000 SP4 and Windows XP SP1 according to MSRC. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule...

EEYE: Adobe Download Manager AOM Stack Buffer Overflow Vulnerability

eEye Research - http://research.eeye.com Adobe Download Manager AOM Stack Buffer Overflow Vulnerability Release Date: December 5, 2006 Date Reported: November 10, 2006 Severity: High Code Execution Systems Affected: Adobe Download Manager 2.1.x and earlier Overview: eEye Digital Security has...

BlazeVideo HDTV PLF堆栈缓冲区溢出漏洞

BlazeVideo HDTV Player是一款功能强大、简单易用的高清数字电视播放软件。 BlazeVideo HDTV处理plf时存在问题，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 攻击者可以构建恶意的播放列表文件，诱使用户打开来触发，可导致以应用程序进程权限执行任意指令。 BlazeVideo BlazeVideo HDTV 2.1 目前没有解决方案提供： http://www.blazevideo.com/ / include stdio.h include stdlib.h include string.h int mainint argc, char argv...

Microsoft Plug and Play Service Registry Overflow

This module triggers a stack buffer overflow in the Windows Plug and Play service. This vulnerability can be exploited on Windows 2000 without a valid user account. Since the PnP service runs inside the service.exe process, this module will result in a forced reboot on Windows 2000. Obtaining cod...

MS06-066 Microsoft Services nwwks.dll Module Exploit

This module exploits a stack buffer overflow in the svchost service, when the netware client service is running. This specific vulnerability is in the nwapi32.dll module. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framewor...

MS06-066 Microsoft Services nwapi32.dll Module Exploit

This module exploits a stack buffer overflow in the svchost service when the netware client service is running. This specific vulnerability is in the nwapi32.dll module. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...