BigAnt Server DDNF Request Stack Buffer Overflow

A stack buffer overflow vulnerability has been reported in BigAnt Server...

Lianja SQL 1.0.0RC5.1 db_netserver Stack Buffer Overflow Vulnerability

This Metasploit module exploits a stack buffer overflow in the dbnetserver process which is spawned by the Lianja SQL server. The issue is fixed in Lianja SQL 1.0.0RC5.2. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the...

Lianja SQL 1.0.0RC5.1 db_netserver Stack Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Lianja SQL 1.0.0RC5.1 dbnetserver Sta...

Lianja SQL 1.0.0RC5.1 db_netserver Stack Buffer Overflow

This module exploits a stack buffer overflow in the dbnetserver process, which is spawned by the Lianja SQL server. The issue is fixed in Lianja SQL 1.0.0RC5.2. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

Nginx HTTP Server 1.3.9-1.4.0 Chunked Encoding Stack Buffer Overflow

This Metasploit module exploits a stack buffer overflow in versions 1.3.9 to 1.4.0 of nginx. The exploit first triggers an integer overflow in the ngxhttpparsechunked by supplying an overly long hex value as chunked block size. This value is later used when determining the number of bytes to read...

Nginx HTTP Server 1.3.9-1.4.0 Chunked Encoding Stack Buffer Overflow

This module exploits a stack buffer overflow in versions 1.3.9 to 1.4.0 of nginx. The exploit first triggers an integer overflow in the ngxhttpparsechunked by supplying an overly long hex value as chunked block size. This value is later used when determining the number of bytes to read into a sta...

nginx 'ngx_http_parse.c'栈缓冲区溢出漏洞

BUGTRAQ ID: 59699 CVECAN ID: CVE-2013-2028 nginx是HTTP及反向代理服务器，同时也用作邮件代理服务器。 nginx 1.3.9 - 1.4.0在解析HTTP块时，"ngxhttpparsechunked"函数 http/ngxhttpparse.c中存在错误，可被利用造成栈缓冲区溢出。 0 Nginx 1.3.9 - 1.4.0 临时解决方法： 建议您升级到nginx 1.4.1或者是1.5.0。但如果您不能立刻安装补丁或者升级，您可以采取以下措施以降低威胁： 在每个server块中使用如下配置 if $httptransferencodi...

WPS Office 'Wpsio.dll'栈缓冲区溢出漏洞

BUGTRAQ ID: 59529 CVECAN ID: CVE-2012-4886 WPS Office 是金山软件公司的一套办公软件。 WPS Office 2012 及其他版本中，Wpsio.dll模块存在栈缓冲区溢出漏洞，该漏洞源于文件内的某BSTR类型的字符串被复制到栈缓冲区时没有检查长度。攻击者可利用此漏洞造成受影响软件崩溃，可能执行任意代码。 0 Kingsoft Corp WPS Office 厂商补丁： Kingsoft Corp ------------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： www.wps....

WPS Office Wpsio.dll - Stack Buffer Overflow Vulnerability

Exploit for windows platform in category dos / poc Affected Prodects Affected Version: http://wdl.cache.ijinshan.com/wps/download/special/WPS2012.12012.exe The WPS office is a free desktop office suite compatible with Microsoft office,popular in China. Vulnerability Details In module wpsio.dll, a...

WPS Office - 'Wpsio.dll' Stack Buffer Overflow

WPS Office Wpsio.dll Stack Buffer Overflow Vulnerability PoC: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/25140.tgz 1 Summary CVE number: CVE-2012-4886 Impact: High Vendor homepage: http://www.wps.cn Credit: Zhangjiantao of Hangzhou DPtech Technologies 2...

3S CoDeSys Gateway Server Crafted Packet Stack Overflow

Added: 04/29/2013 CVE: CVE-2012-4708 BID: 58032 OSVDB: 90371 Background Smart Software Solutions GmbH 3S manufactures CoDeSys Gateway Server, a Supervisory Control and Data Acquisition/Human-Machine Interface SCADA/HMI product. The Gateway Server listens on TCP port 1211. Problem 3S CoDeSys Gatew...

3S CoDeSys Gateway Server Crafted Packet Stack Overflow

Added: 04/29/2013 CVE: CVE-2012-4708 BID: 58032 OSVDB: 90371 Background Smart Software Solutions GmbH 3S manufactures CoDeSys Gateway Server, a Supervisory Control and Data Acquisition/Human-Machine Interface SCADA/HMI product. The Gateway Server listens on TCP port 1211. Problem 3S CoDeSys Gatew...

Foxit Reader Plugin for Firefox URL String Stack Buffer Overflow

A stack buffer overflow vulnerability has been identified in Foxit Reader Plugin for Firefox. The vulnerability is due to a lack of bounds checking in an essential dll file, and affects handling of URLs. A remote attacker could exploit this vulnerability by enticing a target user to load a...

7T Interactive Graphical SCADA RMS Reports Buffer Overflow

7-Technologies' IGSS is a Supervisory Control and Data Acquisition SCADA system used for monitoring and controlling industrial processes. Multiple buffer overflow vulnerabilities have been reported in 7T Interactive Graphical SCADA System IGSS. The vulnerability is due to boundary errors in the...

Debian Security Advisory DSA 2663-1 (tinc - stack based buffer overflow)

Martin Schobert discovered a stack-based vulnerability in tinc, a Virtual Private Network VPN daemon. When packets are forwarded via TCP, packet length is not checked against the stack buffer length. Authenticated peers could use this to crash the tinc daemon and maybe execute arbitrary code. Not...

Allied Telesyn TFTP (AT-TFTP) Server/Daemon 2.0 - Stack Buffer Overflow (Denial of Service) (PoC)

Exploit Title: AT-TFTP 2.0 long filename stack based buffer overflow - DOS Date: 12.04.2013 Exploit Author: xisone@STM Solutions Vendor Homepage: http://www.alliedtelesis.com/ Software Link:...

Allied Telesyn TFTP (AT-TFTP) ServerDaemon 2.0 - Stack Buffer Overflow (Denial of Service) (PoC)

Allied Telesyn TFTP AT-TFTP ServerDaemon 2.0 - Stack Buffer Overflow Denial of Service PoC Exploit Title: AT-TFTP 2.0 long filename stack based buffer overflow - DOS Date: 12.04.2013 Exploit Author: xisone@STM Solutions Vendor Homepage: http://www.alliedtelesis.com/ Software Link:...

ActFax RAW Server Stack Buffer Overflow

Added: 04/12/2013 BID: 57789 OSVDB: 89944 Background ActFax is a Windows-based software package that sends, receives and electronically stores faxes. Problem The ActFax RAW server is vulnerable to a boundary error when processing the @F000 data field, which could result in stack-based buffer...

FreeBSD : firebird -- Remote Stack Buffer Overflow (6adca5e9-95d2-11e2-8549-68b599b52a02)

Firebird Project reports : The FirebirdSQL server is vulnerable to a stack-based buffer overflow that can be triggered when an unauthenticated user sends a specially crafted packet. The result can lead to remote code execution as the user which runs the FirebirdSQL server. %NASLMINLEVEL 70300 C...

AST-2013-001: Buffer Overflow Exploit Through SIP SDP Header

Asterisk Project Security Advisory - AST-2013-001 Product Asterisk Summary Buffer Overflow Exploit Through SIP SDP Header Nature of Advisory Exploitable Stack Buffer Overflow Susceptibility Remote Unauthenticated Sessions Severity Major Exploits Known No Reported On 6 January, 2013 Reported By Ul...