(0Day) IBM Lotus Domino iCalendar Meeting Request Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of IBM Lotus Domino. Authentication is not required to exploit this vulnerability. The specific flaw exists within the nrouter.exe service while processing a malformed calendar meeting...

BMC Perform Agent Service Daemon BGS_MULTIPLE_READS Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of BMC Perform Agent. Authentication is not required to exploit this vulnerability. The specific flaw exists within the service daemon which listens by default on TCP port 6768. When processing the...

IBM DB2 db2dasrrm validateUser Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM DB2. Authentication is not required to exploit this vulnerability. The specific flaw exists within the db2dasrrm process responsible for handling queries to the com.ibm.db2.das.core.DasSysCmd...

Symantec AMS Intel Alert Handler Pin Number Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Alert Management System. Authentication is not required to exploit this vulnerability. The specific flaw exists within the pagehndl.dll module while processing data sent from the msgsys.ex...

CVE-2011-0495

CVE-2011-0495 affects Asterisk Open Source prior to the fixed versions listed in multiple advisories. The issue is a stack-based buffer overflow in ast_uri_encode in main/utils.c that can be triggered by crafted caller ID data and exploited via (1) SIP channel driver, (2) URIENCODE dialplan funct...

FreeBSD : asterisk -- Exploitable Stack Buffer Overflow (5ab9fb2a-23a5-11e0-a835-0003ba02bf30)

The Asterisk Development Team reports : The releases of Asterisk 1.4.38.1, 1.4.39.1, 1.6.1.21, 1.6.2.15.1, 1.6.2.16.2, 1.8.1.2, and 1.8.2.1 resolve an issue when forming an outgoing SIP request while in pedantic mode, which can cause a stack buffer to be made to overflow if supplied with carefull...

HP OpenView Network Node Manager nnmRptConfig.exe nameParams text1 Buffer Overflow

Added: 01/20/2011 CVE: CVE-2011-0268 BID: 45762 OSVDB: 70473 Background HP OpenView Network Node Manager is network availability and performance management software. Problem A stack buffer overflow vulnerability allows remote attackers to execute arbitrary commands by requesting the...

Citrix Provisioning Services streamprocess.exe Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Citrix Provisioning Services. Authentication is not required to exploit this vulnerability. The specific flaw exists within the streamprocess.exe component which listens by default on UDP port 6095...

AST-2011-001: Stack buffer overflow in SIP channel driver

Asterisk Project Security Advisory - AST-2011-001 Product Asterisk Summary Stack buffer overflow in SIP channel driver Nature of Advisory Exploitable Stack Buffer Overflow Susceptibility Remote Authenticated Sessions Severity Moderate Exploits Known No Reported On January 11, 2011 Reported By...

asterisk -- Exploitable Stack Buffer Overflow

The Asterisk Development Team reports: The releases of Asterisk 1.4.38.1, 1.4.39.1, 1.6.1.21, 1.6.2.15.1, 1.6.2.16.2, 1.8.1.2, and 1.8.2.1 resolve an issue when forming an outgoing SIP request while in pedantic mode, which can cause a stack buffer to be made to overflow if supplied with carefully...

Nuance PDF Reader 6.0 - Launch Stack Buffer Overflow (Metasploit)

$Id: nuancepdflaunchoverflow.rb 11516 2011-01-08 01:13:26Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Mini-Stream 3.0.1.1 - Buffer Overflow Exploit

Mini-Stream 3.0.1.1 Buffer Overflow Exploit. Local exploit for windows platform $Id: ministream.rb 11516 2011-01-08 01:13:26Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for mo...

Bywifi 2.8.1 Stack Buffer Overflow

Exploit Title: bywifi 2.8.1 stack buffer overflow Author: Anonymous Software Link: bywifi.com Version: 2.8.1 Tested on: windows xp Professional French CVE : N/a include include include int main //file name char exploit700="bywifi.exe "; //ret addr char ret = "x5D\x38\x82\x7C"; //junk data char...

HP Photo Creative 2.x audio.Record.1 - ActiveX Control Remote Stack Buffer Overflow

HP Photo Creative 2.x audio.Record.1 - ActiveX Control Remote Stack Buffer Overflow //add user one, user "sun" pass "tzu" shellcode = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u3749%u4949" + "%u4949%u4949%u4949%u4949%u4949%u4949%u5a51%u456a" + "%u5058%u4230%u4231%u6b41%u4141%u3255%u4241%u3241...

HP Photo Creative 2.x audio.Record.1 - ActiveX Control Remote Stack Buffer Overflow

//add user one, user "sun" pass "tzu" shellcode = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u3749%u4949" + "%u4949%u4949%u4949%u4949%u4949%u4949%u5a51%u456a" + "%u5058%u4230%u4231%u6b41%u4141%u3255%u4241%u3241" + "%u4142%u4230%u5841%u3850%u4241%u6d75%u6b39%u494c" +...

GIMP 2.6.7 - Multiple File Plugins Remote Stack Buffer Overflow Vulnerabilities

GIMP 2.6.7 - Multiple File Plugins Remote Stack Buffer Overflow Vulnerabilities source: https://www.securityfocus.com/bid/45647/info GIMP is prone to multiple remote stack-based buffer-overflow vulnerabilities because it fails to perform adequate checks on user-supplied input. Successfully...

Novell iPrint Client Netscape Plugin call-back-url Parameter Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell iPrint Client. Authentication is not required to exploit this vulnerability. The flaw exists within the npnipp.dll Mozilla browser plugin for iPrint client. When assembling a URL using the...

Xion Audio Player 1.0.126 - Unicode Stack Buffer Overflow (Metasploit)

$Id: xionm3usehbof.rb 11353 2010-12-16 20:11:01Z egypt $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

Race River Integard Home/Pro - LoginAdmin Password Stack Buffer Overflow (Metasploit)

$Id: integardpasswordbof.rb 11344 2010-12-15 19:49:40Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

SAP NetWeaver Business Client SapThemeRepository ActiveX Control Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP NetWeaver Business Client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...