6880 matches found
Catia V5-6R2013 - 'CATV5_AllApplications' Stack Buffer Overflow (PoC)
''' Exploit Title: Dassault Systemes Catia V5-6R2013 "CATV5AllApplications" Stack Buffer Overflow Date: 2-18-2014 Exploit Author: Mohamed Shetta Email: mshetta |at| live |dot| com Vendor Homepage: http://www.3ds.com/products-services/catia/portfolio/catia-v5/latest-release/ Tested on: Windows 7 &...
SolidWorks Workgroup PDM 2014 SP2 Opcode 2001 - Denial of Service
''' Exploit Title: SolidWorks Workgroup PDM 2014 SP2 Opcode 2001 Remote Code Execution Vulnerability Date: 2-18-2014 Author: Mohamed Shetta Email: mshetta |at| live |dot| com Vendor Homepage: http://www.solidworks.com/sw/products/product-data-management/workgroup-pdm.htm Tested on: Windows 7...
VideoCharge Studio - 'CHTTPResponse::GetHttpResponse()' Remote Stack Buffer Overflow
source: https://www.securityfocus.com/bid/65685/info VideoCharge Studio is prone to a remote stack-based buffer-overflow vulnerability because the software fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. Successful exploits allow remo...
Dassault Systemes Catia - Remote Stack Buffer Overflow
Dassault Systemes Catia - Remote Stack Buffer Overflow source: https://www.securityfocus.com/bid/65675/info Catia is prone to a stack-based buffer-overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied input. An attacker can exploit this issue to...
Ultra Mini HTTPd 1.21 - 'POST' Remote Stack Buffer Overflow (1)
Exploit Title: Ultra Mini HTTPD stack buffer overflow POST request Date: 16 Feb 2014 Exploit Author: Sumit Vendor Homepage: http://www.picolix.jp/ Software Link: http://www.vector.co.jp/soft/winnt/net/se275154.html Version: 1.21 Tested on: Windows XP Professional SP3 Description: A buffer overflo...
IBM Forms Viewer XFDL Form Processing Stack Buffer Overflow (CVE-2013-5447)
A stack buffer overflow vulnerability exists in IBM Forms Viewer. The vulnerability is due to an error when processing XFDL forms and can be exploited to cause a stack-based buffer overflow. A remote attacker can exploit this vulnerability by enticing a user to download and process a specially...
Updated socat package fixes security vulnerability
Due to a missing check in socat before 2.0.0-b7 during assembly of the HTTP request line, a long target server name in the documentation in the PROXY-CONNECT address can cause a stack buffer overrun. Exploitation requires that the attacker is able to provide the target server name to the...
MGASA-2014-0070 Updated socat package fixes security vulnerability
Due to a missing check in socat before 2.0.0-b7 during assembly of the HTTP request line, a long target server name in the documentation in the PROXY-CONNECT address can cause a stack buffer overrun. Exploitation requires that the attacker is able to provide the target server name to the...
IBM Lotus Quickr ActiveX Stack Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Lotus Quickr for Domino. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within an ActiveX...
socat PROXY-CONNECT地址栈缓冲区溢出漏洞
BUGTRAQ ID: 65201 CVECAN ID: CVE-2014-0019 Socat是一个基于命令行的工具,可以创建两个双向字节流并在其间传输数据。 socat 1.3.0.0-1.7.2.2、2.0.0-b1-2.0.0-b6存在栈缓冲区溢出漏洞,本地用户通过命令行内PROXY-CONNECT地址中的超长服务器名称,即可利用此漏洞在受影响应用中执行任意代码。 0 socat socat 2.0.0-b1 - 2.0.0-b6 socat socat 1.3.0.0 - 1.7.2.2 厂商补丁: socat -----...
Oracle Outside In MDB - File Parsing Stack Buffer Overflow (PoC)
!/usr/bin/python Exploit Title: Oracle Outside In MDB File Parsing Stack Based Buffer Overflow PoC Date: 16th January 2014 PoC Author: Citadelo Vendor Homepage: http://www.oracle.com Software Link: http://www.oracle.com/us/technologies/embedded/025613.htm Version: = 8.4.1.52 and 8.4.0.108 CVE :...
Oracle Outside In MDB - File Parsing Stack Buffer Overflow (PoC)
Oracle Outside In MDB - File Parsing Stack Buffer Overflow PoC !/usr/bin/python Exploit Title: Oracle Outside In MDB File Parsing Stack Based Buffer Overflow PoC Date: 16th January 2014 PoC Author: Citadelo Vendor Homepage: http://www.oracle.com Software Link:...
Mp3info Stack Buffer Overflow
Waste of CPU clock N2 Exploit for: mp3info! Latest version Author: jsacco - [email protected] Vendor: http://ibiblio.org/mp3info/ No-one-cares-about programs! junk = "\x90\x90\x90\x90"8 shellcode = "\x31\xc0\x50\x68//sh\x68/bin\x89\xe3\x50\x53\x89\xe1\x99\xb0\x0b\xcd\x80" buffer =...
socat -- buffer overflow with data from command line
Florian Weimer of the Red Hat Product Security Team reports: Due to a missing check during assembly of the HTTP request line a long target server name in the PROXY-CONNECT address can cause a stack buffer overrun. Exploitation requires that the attacker is able to provide the target server name t...
MuPDF 1.3 - 'xps_parse_color()' Stack Buffer Overflow
============================================================= 0day - MuPDF Stack-based Buffer Overflow in xpsparsecolor ============================================================= Date of discovery: 2013-01-26 Software Links: http://www.mupdf.com/ ; http://en.wikipedia.org/wiki/MuPDF Version:...
FreeBSD bsnmpd 'GETBULK PDU'请求远程栈缓冲区溢出漏洞
BUGTRAQ ID: 64967 CVECAN ID: CVE-2014-1452 FreeBSD bsnmpd是简单的可扩展SNMP后台程序。 bsnmpd8后台程序在处理特制的GETBULK PDU请求时存在栈缓冲区溢出漏洞,成功利用后可导致在服务程序上下文中执行任意代码,造成拒绝服务。 0 FreeBSD FreeBSD 9.x 临时解决方法: FreeBSD推荐下列三种做法: 1 升级您现在受影响的系统到漏洞修复日期后的FreeBSD stable或 release / security branch releng。 2 用源代码补丁更新您的受影响系统:...
Hewlett-Packard Data Protector Backup Client Service rrda Remote Code Execution Vulnerability
This vulnerability allows remote attackers directory traversal on vulnerable installations of HP OpenView Data Protector. Authentication is not required to exploit this vulnerability. This specific flaw exists in the Backup Client Service OmniInet.exe. The Backup Client Service listens on TCP por...
IcoFX Stack Buffer Overflow
This module exploits a stack-based buffer overflow vulnerability in version 2.1 of IcoFX. The vulnerability exists while parsing .ICO files, where a specially crafted ICONDIR header providing an arbitrary long number of images in the file can be used to trigger the overflow when reading the...
Quick Heal Antivirus Pro 'pepoly.dll' Stack Buffer Overflow Vulnerability
Quick Heal Antivirus Pro is prone to stack buffer overflow vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
RealPlayer RMP File Version Attribute Buffer Overflow
Added: 12/27/2013 CVE: CVE-2013-6877 BID: 64398 OSVDB: 101356 Background RealNetworks RealPlayer includes an embedded player which plays media embedded in a web page. Problem RealNetworks Windows RealPlayer 17.0.2.206 and earlier versions are vulnerable to remote code execution due to improper...