Cerulean Studios Trillian Image Filename XML Tag Stack Buffer Overflow (CVE-2008-5401)

Cerulean Studios' Trillian is an instant messaging IM client application that can interact with various IM protocols such as MSN, AIM, ICQ, YAHOO, etc. There exists a stack buffer overflow vulnerability in Trillian instant messenger client application. The vulnerability is due to a boundary error...

ISC DHCP 'dhclient' 'script_write_params()' Stack Buffer Overflow Vulnerability

No description provided by source. / cve-2009-0692.c ISC DHCP dhclient 3.1.2p1 Remote Exploit Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0692 Stack-based buffer overflow in the scriptwriteparams method in...

Microsoft Word Record Parsing Remote Stack Buffer Overflow Vulnerability

Description Microsoft Word is prone to a remote stack-buffer overflow vulnerability. Attackers can exploit this issue by enticing victims into opening a specially crafted Word '.doc' file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running th...

Hewlett-Packard Power Manager Administration Buffer Overflow

This module exploits a stack buffer overflow in Hewlett-Packard Power Manager 4.2. Sending a specially crafted POST request with an overly long Login string, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...

Java Runtime Environment HsbParser.getSoundBank Stack Buffer Overflow

Added: 11/06/2009 CVE: CVE-2009-3867 BID: 36881 OSVDB: 59711 Background The Java Runtime Environment JRE is part of the Java Development Kit JDK, a set of programming tools for developing Java applications. The Java Runtime Environment provides the minimum requirements for executing a Java...

Symantec Multiple Products AeXNSConsoleUtilities Buffer Overflow

Added: 11/06/2009 CVE: CVE-2009-3031 BID: 36698 OSVDB: 59597 Background Symantec Altiris Deployment Solution provides tools to deploy software on desktops and servers. Problem A stack buffer overflow vulnerability in the AeXNSConsoleUtilities.dll ActiveX control allows remote attackers to execute...

Java Runtime Environment HsbParser.getSoundBank Stack Buffer Overflow

Added: 11/06/2009 CVE: CVE-2009-3867 BID: 36881 OSVDB: 59711 Background The Java Runtime Environment JRE is part of the Java Development Kit JDK, a set of programming tools for developing Java applications. The Java Runtime Environment provides the minimum requirements for executing a Java...

Symantec Multiple Products AeXNSConsoleUtilities Buffer Overflow

Added: 11/06/2009 CVE: CVE-2009-3031 BID: 36698 OSVDB: 59597 Background Symantec Altiris Deployment Solution provides tools to deploy software on desktops and servers. Problem A stack buffer overflow vulnerability in the AeXNSConsoleUtilities.dll ActiveX control allows remote attackers to execute...

Java Runtime Environment HsbParser.getSoundBank Stack Buffer Overflow

Added: 11/06/2009 CVE: CVE-2009-3867 BID: 36881 OSVDB: 59711 Background The Java Runtime Environment JRE is part of the Java Development Kit JDK, a set of programming tools for developing Java applications. The Java Runtime Environment provides the minimum requirements for executing a Java...

Microsoft Visual Basic VBP Buffer Overflow

This module exploits a stack buffer overflow in Microsoft Visual Basic 6.0. When a specially crafted vbp file containing a long reference line, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...

NSFOCUS SA2009-01 : UiTV UiPlayer UiCheck Component Stack Buffer Overflow Vulnerability

NSFOCUS Security Advisory SA2009-01 UiTV UiPlayer UiCheck Component Stack Buffer Overflow Vulnerability Release Date: 2009-10-16 CVE ID: CVE-2009-2970 http://www.nsfocus.com/en/advisories/0901.html Affected system: ============== UiTV UiPlayer UiCheck.dll 1.0.0.6 and prior versions Unaffected...

SAP GUI 7.1 — Insecure Method, Code execution

Application: SAP GUI Versions Affected: SAP GUI SAP GUI 7.1 Vendor URL: Bugs: Insecure method, Code Execution Exploits: YES Reported: 16.10.2009 Vendor response: 27.10.2009 Date of Public Advisory: 23.03.2010 Author: Sintsov Alexey Description Insecure method was founded in SAPBExCommonResources...

POP Peeper v3.4 DATE Buffer Overflow

This module exploits a stack buffer overflow in POP Peeper v3.4. When a specially crafted DATE string is sent to a client, an attacker may be able to execute arbitrary code. This module is based off of krakowlabs code. This module requires Metasploit: https://metasploit.com/download Current sourc...

POP Peeper v3.4 UIDL Buffer Overflow

This module exploits a stack buffer overflow in POP Peeper v3.4. When a specially crafted UIDL string is sent to a client, an attacker may be able to execute arbitrary code. This module is based off of krakowlabs code. This module requires Metasploit: https://metasploit.com/download Current sourc...

activePDF WebGrabber ActiveX Control Buffer Overflow

This module exploits a stack buffer overflow in activePDF WebGrabber 3.8. When sending an overly long string to the GetStatus method of APWebGrb.ocx 3.8.2.0 an attacker may be able to execute arbitrary code. This control is not marked safe for scripting, so choose your attack vector accordingly...

Electronic Arts SnoopyCtrl ActiveX Control Buffer Overflow

This module exploits a stack buffer overflow in Electronic Arts SnoopyCtrl ActiveX Control NPSnpy.dll 1.1.0.36. When sending an overly long string to the CheckRequirements method, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download...

Amaya Browser v11.0 'bdo' Tag Overflow

This module exploits a stack buffer overflow in the Amaya v11 Browser. By sending an overly long string to the "bdo" tag, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...

Apple QuickTime obji Atom Parsing Stack Buffer Overflow (CVE-2008-1022)

There exists a stack buffer overflow vulnerability in Apple QuickTime application. The vulnerability is due to improper processing of atoms in QuickTime movie files. A remote attacker may exploit this vulnerability by providing a crafted QuickTime movie file to the target user, causing abnormal...

Omni-NFS Server Buffer Overflow

This module exploits a stack buffer overflow in Xlink Omni-NFS Server 5.2 When sending a specially crafted nfs packet, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

EMC ApplicationXtender (KeyWorks) ActiveX Control Buffer Overflow

This module exploits a stack buffer overflow in the KeyWorks KeyHelp ActiveX Control KeyHelp.ocx 1.2.3120.0. This ActiveX Control comes bundled with EMC's Documentation ApplicationXtender 5.4. This module requires Metasploit: https://metasploit.com/download Current source:...