iTunes m3u Playlist Overflow

Added: 07/03/2012 CVE: CVE-2012-0677 BID: 53933 OSVDB: 82897 Background iTunes is a free media player for multiple platforms. Problem iTunes does not properly validate parameters for EXTINF: directives in m3u files. This results in an exploitable stack overflow. Resolution Upgrade to iTunes 10.6....

DSquare Exploit Pack: D2SEC_HPPM2

Name| d2sechppm2 ---|--- CVE| CVE-2009-3999 Exploit Pack| D2ExploitPack Description| HP Power Manager Export Logs Stack Overflow Vulnerability Notes|...

WebLogic 10.0 Mod_wl 远程POST数据导致栈溢出

No description provided by source...

libxml multiple security vulnerability

Memory use-after-free, stack overflow exhaustion...

MP3 Studio 1.0 (.mpf /.m3u File) Local Stack Overflow PoC

Exploit for unknown platform in category dos / poc ========================================================= MP3 Studio 1.0 .mpf /.m3u File Local Stack Overflow PoC ========================================================= !/usr/bin/perl Found By :: HACK4LOVE MP3 Studio v 1.0 .mpf /.m3u File Loca...

M3U/M3L to ASX/WPL 1.1 (ASX M3U M3L) Local BOF PoC

No description provided by source. !/usr/bin/perl M3U/M3L to ASX/WPL v1.1 asx,m3u,m3l Local Stack Overflow POC Download: http://proletsoft.freeservers.com/mmb/m3utoasx.html Welcom Back Milw0rm my $crash="\x41" x 5000 ; openmyfile,'PoC.m3u';asx,m3u,m3l print myfile $crash; By ThE g0bL!N Ismail Fih...

DSquare Exploit Pack: D2SEC_SAPGUI

Name| d2secsapgui ---|--- CVE| CVE-2008-4387 Exploit Pack| D2ExploitPack Description| SAP AG SAPgui mdrmsap.dll ActiveX Stack Overflow Notes|...

SuSE 10 Security Update : gv (ZYPP Patch Number 2267)

A stackoverflow in the postscript viewer gv could be used to exploited to execute code, if the user could be tricked into viewing a prepared postscript file. CVE-2006-5864 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

openSUSE 10 Security Update : libpng (libpng-2322)

The sPLT chunk handling in libpng was incorrect and a handcrafted PNG file could be use to cause an out-of-bounds read, effectively crashing the PNG viewer or webbrowser. CVE-2006-5793 Additionaly a 2 byte stackoverflow was fixed which we do not believe to be exploitable. It will cause an abort o...

openSUSE 10 Security Update : gv (gv-2266)

A stackoverflow in the postscript viewer gv could be used to exploited to execute code, if the user could be tricked into viewing a prepared postscript file. CVE-2006-5864 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fr...

eCentrex VOIP Client UACOMX.OCX ActiveX控件栈溢出漏洞

BUGTRAQ ID: 25383 eCentrex VOIP Client是一款网络电话客户端软件。 eCentrex VOIP Client的ActiveX控件实现上存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞控制用户系统。 eCentrex SIP UA Com模块（euacom.dll）在处理传送给eCentrex VOIP Client组件ActiveX控件（uacomx.ocx）的ReInit方式的超长参数时存在栈溢出漏洞，如果用户受骗访问了恶意网页，就可能触发这个溢出，导致执行任意指令。 eCentrex VOIP Client ActiveX 2.0.1...

RealNetworks RealPlayer/HelixPlayer SMIL wallclock Stack Overflow PoC

No description provided by source. !-- author: axis site: http://www.ph4nt0m.org -- smil xmlns="http://www.w3.org/2000/SMIL20/CR/Language" body par...

Microsoft Windows Animated Cursor Stack Overflow Exploit

Exploit for unknown platform in category remote exploits ======================================================== Microsoft Windows Animated Cursor Stack Overflow Exploit ======================================================== !/usr/bin/env python $Id: win32-loadaniicon.py 4 2007-06-02 00:47:59Z...

CentOS 3 / 4 : gnupg (CESA-2006:0754)

Updated GnuPG packages that fix two security issues are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. GnuPG is a utility for encrypting data and creating digital signatures. Tavis Ormandy discovered a stack overwrite flaw in t...

Re: [Full-disclosure] ZDI-06-040: WinZip FileView ActiveX Control Unsafe Method Exposure Vulnerability

7245 correctly resolves this issue; standard stack overflow in WZFILEVIEW.FilePattern snatching EIP; PoC below; HTML HEAD TITLE/TITLE /HEAD BODY SCRIPT LANGUAGE="VBScript" !-- Sub WZFILEVIEWOnAfterItemAddItem WZFILEVIEW.FilePattern = "SMASHTHESTACKHERE" end sub -- /SCRIPT OBJECT ID="WZFILEVIEW"...

MS03-049 Microsoft Workstation Service NetAddAlternateComputerName Overflow

This module exploits a stack buffer overflow in the NetApi32 NetAddAlternateComputerName function using the Workstation service in Windows XP. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule...

CVE-2022-40156

Removed by vendor...