6725 matches found
MS05-039 Microsoft Plug and Play Service Overflow
This module exploits a stack buffer overflow in the Windows Plug and Play service. This vulnerability can be exploited on Windows 2000 without a valid user account. NOTE: Since the PnP service runs inside the service.exe process, a failed exploit attempt will cause the system to automatically...
EasyMail Objects IMAP4 Component Connect Method Remote Overflow
EasyMail Objects, a set of COM objects for supporting email protocols, is installed on the remote Windows host. The IMAP4 component of the version of the DjVu Browser Plug-in installed on the remote host reportedly is affected by a stack buffer overflow in the 'Connect' method that can be trigger...
HP Mercury LoadRunner Agent buffer overflow
magentproc.exe TCP/54345 stack buffer overrun on oversized serveripname paramter...
Remotesoft .NET Explorer远程堆栈缓冲区溢出漏洞
Remotesoft .NET Explorer是一款反汇编工具。 Remotesoft .NET Explorer处理cpp文件存在一个缓冲区溢出,远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 构建恶意cpp文件,诱使用户打开可触发。 Remotesoft .NET Explorer 2.0.1 目前没有详细解决方案提供: http://www.remotesoft.com/linker/ /usr/bin/ python print "--------------------------------------------------------------" print...
libxine -- buffer overflow vulnerability
xine Team reports: A new xine-lib version is now available. This release contains a security fix array index vulnerability which may lead to a stack buffer overflow...
CA BrightStor ARCserve for Laptops and Desktops LGServer Buffer Overflow
This module exploits a stack buffer overflow in Computer Associates BrightStor ARCserve Backup for Laptops & Desktops 11.1. By sending a specially crafted request, an attacker could overflow the buffer and execute arbitrary code. This module requires Metasploit: https://metasploit.com/download...
EasyMail Objects 6.x - Connect Method Remote Stack Buffer Overflow
EasyMail Objects 6.x - Connect Method Remote Stack Buffer Overflow source: https://www.securityfocus.com/bid/22583/info EasyMail Objects is prone to a remote stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data prior to copying it to ...
Computer Associates BrightStor ARCserve Backup LGSERVER.EXE stack buffer overflow
Overview Computer Associates BrightStor ARCserve Backup contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Computer Associates BrightStor ARCserve Backup products come with a service called LGSERVER.EX...
Citrix Presentation/MetaFrame Server cpprov.dll畸形参数栈缓冲区溢出漏洞
Citrix Presentation Server允许用户通过网络远程访问应用程序。 Citrix Presentation Server的打印提供程序(ccprov.dll)在处理传送给EnumPrintersW和OpenPrinter函数的参数时存在栈溢出漏洞,远程攻击者可能利用此漏洞在服务器上执行任意指令。 如果攻击者能够通过本地API调用或RPC请求向OpenPrinter传送超过130字节的超长字符串做为其第一个参数的话,就可以触发这个溢出,导致在本地系统环境中执行任意代码。 Citrix MetaFrame XP 1.0 Citrix Presentation Server...
ISS PAM.dll ICQ Parser Buffer Overflow
This module exploits a stack buffer overflow in the ISS products that use the iss-pam1.dll ICQ parser Blackice/RealSecure. Successful exploitation will result in arbitrary code execution as LocalSystem. This exploit only requires 1 UDP packet, which can be both spoofed and sent to a broadcast...
Novell NetMail IMAP SUBSCRIBE Buffer Overflow
This module exploits a stack buffer overflow in Novell's NetMail 3.52 IMAP SUBSCRIBE verb. By sending an overly long string, an attacker can overwrite the buffer and control program execution. This module requires Metasploit: https://metasploit.com/download Current source:...
Mercur Messaging 2005 IMAP Login Buffer Overflow
This module exploits a stack buffer overflow in Atrium Mercur IMAP 5.0 SP3. Since the room for shellcode is small, using the reverse ordinal payloads yields the best results. This module requires Metasploit: https://metasploit.com/download Current source:...
SoftiaCom WMailserver 1.0 Buffer Overflow
This module exploits a stack buffer overflow in SoftiaCom WMailserver 1.0 SMTP via a SEH frame overwrite. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SoftiaCom WMailserver 1.0 Buffer...
Microsoft Internet Explorer isComponentInstalled Overflow
This module exploits a stack buffer overflow in Internet Explorer. This bug was patched in Windows 2000 SP4 and Windows XP SP1 according to MSRC. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule...
iDefense Security Advisory 12.12.06: Sun Microsystems Solaris ld.so 'doprf()' Buffer Overflow Vulnerability
Sun Microsystems Solaris ld.so 'doprf' Buffer Overflow Vulnerability iDefense Security Advisory 12.12.06 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 12, 2006 I. BACKGROUND Solaris is a UNIX operating system developed by Sun Microsystems. More information can be found at...
EEYE: Adobe Download Manager AOM Stack Buffer Overflow Vulnerability
eEye Research - http://research.eeye.com Adobe Download Manager AOM Stack Buffer Overflow Vulnerability Release Date: December 5, 2006 Date Reported: November 10, 2006 Severity: High Code Execution Systems Affected: Adobe Download Manager 2.1.x and earlier Overview: eEye Digital Security has...
BlazeVideo HDTV PLF堆栈缓冲区溢出漏洞
BlazeVideo HDTV Player是一款功能强大、简单易用的高清数字电视播放软件。 BlazeVideo HDTV处理plf时存在问题,远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 攻击者可以构建恶意的播放列表文件,诱使用户打开来触发,可导致以应用程序进程权限执行任意指令。 BlazeVideo BlazeVideo HDTV 2.1 目前没有解决方案提供: http://www.blazevideo.com/ / include stdio.h include stdlib.h include string.h int mainint argc, char argv...
Microsoft Plug and Play Service Registry Overflow
This module triggers a stack buffer overflow in the Windows Plug and Play service. This vulnerability can be exploited on Windows 2000 without a valid user account. Since the PnP service runs inside the service.exe process, this module will result in a forced reboot on Windows 2000. Obtaining cod...
3CTftpSvc TFTP Long Mode Buffer Overflow
This module exploits a stack buffer overflow in 3CTftpSvc 2.0.1. By sending a specially crafted packet with an overly long mode field, a remote attacker could overflow a buffer and execute arbitrary code on the system. This module requires Metasploit: https://metasploit.com/download Current sourc...
MS06-066 Microsoft Services nwwks.dll Module Exploit
This module exploits a stack buffer overflow in the svchost service, when the netware client service is running. This specific vulnerability is in the nwapi32.dll module. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framewor...