Camtasia Relay - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-100

This module enables you to integrate your Drupal site with TechSmith Relay software. The module doesn't sufficiently sanitize user input under the meta access tab. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "view meta information". CVE...

TechSmith Camtasia Open Redirect Vulnerability

TechSmith Camtasia a tool specialized in recording screen actions, it can easily record screen actions in any color mode, including images, sound effects, mouse tracks, narration sounds and more. An open redirection vulnerability exists in TechSmith Camtasia, which can be exploited by remote...

TechSmith Camtasia 7 / 8 Cross Site Scripting

Title: Reflected XSS in Flash files of TechSmith Camtasia 8 & 7 Author: Soroush Dalili @irsdl Affected Software: TechSmith Camtasia v8.4.4 latest 8.x & v7.1.1 latest 7.x Vendor URL: http://www.techsmith.com/camtasia-version-history.html Vendor Status: vulnerable CVE-ID: - Camtasia 8 v8.4.4 latest...

TechSmith Snagit 10 (Build 788) DLL Hijacking Exploit (dwmapi.dll)

No description provided by source. / TechSmith Snagit 10 Build 788 Dll Hijacking Exploit By: Encrypt3d.M!nd Date: 25\8\2010 Download: http://www.techsmith.com/download/snagittrial.asp Details: Compile the following code and rename it to dwmapi.dl and place file with one of the affected types in t...

Snagit 11.0.1 DLL Hijack

Exploit Title: Snagit 11.0.1 dwmapi.dll DLL Hijacking Exploit Date: 2012-08-23 Author: coolkaveh [email protected] Greets To Mohammad Morteza Sanaie [email protected] Https://twitter.com/coolkaveh Vendor Homepage: http://www.techsmith.com/ Version: 11.0.1build93 Tested on: windows X...

CVE-2012-4045

Multiple heap-based buffer overflows in bmp.w5s in Winamp before 5.63 build 3235 allow remote attackers to execute arbitrary code via the 1 strf chunk in BIRGB or 2 UYVY video data in an AVI file, or 3 decompressed TechSmith Screen Capture Codec TSCC data in an AVI file...

CVE-2012-4045

Multiple heap-based buffer overflows in bmp.w5s in Winamp before 5.63 build 3235 allow remote attackers to execute arbitrary code via the 1 strf chunk in BIRGB or 2 UYVY video data in an AVI file, or 3 decompressed TechSmith Screen Capture Codec TSCC data in an AVI file...

Snagit v 8.2.1 DLL Hijacking Exploit

Exploit for windows platform in category local exploits ==================================== Snagit v 8.2.1 DLL Hijacking Exploit ==================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ ...

TechSmith Snagit Insecure Library Loading Vulnerability

This host is installed with TechSmith Snagit and is prone to insecure library loading vulnerability. OpenVAS Vulnerability Test $Id: gbtechsmithsnagitinsecurelibloadvuln.nasl 5364 2017-02-20 13:26:07Z cfi $ TechSmith Snagit Insecure Library Loading Vulnerability Authors: Sooraj KS Copyright:...

TechSmith Snagit Insecure Library Loading Vulnerability

TechSmith Snagit is prone to insecure library loading vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Camtasia Studio 7 (mfc90enu.dll, mfc90loc.dll) DLL Hijacking Exploit

Exploit for windows platform in category local exploits ==================================================================== Camtasia Studio 7 mfc90enu.dll, mfc90loc.dll DLL Hijacking Exploit ====================================================================...

CVE-2010-3130

Untrusted search path vulnerability in TechSmith Snagit all versions 10.x and 11.x allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a snag, snagcc, or snagprof file...

Design/Logic Flaw

Untrusted search path vulnerability in TechSmith Snagit all versions 10.x and 11.x allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a snag, snagcc, or snagprof file...

CVE-2010-3130

Untrusted search path vulnerability in TechSmith Snagit all versions 10.x and 11.x allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a snag, snagcc, or snagprof file...

CVE-2010-3130

Snagit DLL preloading vulnerability (CVE-2010-3130) affects TechSmith Snagit 10.x and 11.x. A malicious dwmapi.dll located in the same folder as a snag, snagcc, or snagprof file can be loaded, enabling arbitrary code execution via DLL hijacking when a user opens a crafted Snagit file from an atta...

TechSmith Snagit 10 (Build 788) DLL Hijacking Exploit (dwmapi.dll)

Exploit for windows platform in category local exploits ================================================================== TechSmith Snagit 10 Build 788 DLL Hijacking Exploit dwmapi.dll ================================================================== / TechSmith Snagit 10 Build 788 Dll Hijackin...

TechSmith Snagit 10 (Build 788) - dwmapi.dll DLL Hijacking

TechSmith Snagit 10 Build 788 - dwmapi.dll DLL Hijacking / TechSmith Snagit 10 Build 788 Dll Hijacking Exploit By: Encrypt3d.M!nd Date: 25\8\2010 Download: http://www.techsmith.com/download/snagittrial.asp Details: Compile the following code and rename it to dwmapi.dl and place file with one of t...

TechSmith Snagit 10 (Build 788) - 'dwmapi.dll' DLL Hijacking

/ TechSmith Snagit 10 Build 788 Dll Hijacking Exploit By: Encrypt3d.M!nd Date: 25\8\2010 Download: http://www.techsmith.com/download/snagittrial.asp Details: Compile the following code and rename it to dwmapi.dl and place file with one of the affected types in the same directory of the dll Affect...

Cross site scripting

Cross-site scripting XSS vulnerability in ActionScript in arbitrary Shockwave Flash SWF controller files created by Techsmith Camtasia Studio before 5 allows remote attackers to inject arbitrary additional SWF content via a URL in the csPreloader parameter...

CVE-2008-6061

Cross-site scripting XSS vulnerability in ActionScript in arbitrary Shockwave Flash SWF controller files created by Techsmith Camtasia Studio before 5 allows remote attackers to inject arbitrary additional SWF content via a URL in the csPreloader parameter...