5408 matches found
ooVoo 1.7.1.35 - URL Protocol Remote Unicode Buffer Overflow (PoC)
ooVoo 1.7.1.35 - URL Protocol Remote Unicode Buffer Overflow PoC ?php / ooVoo 1.7.1.35 URL Protocol remote unicode buffer overflow poc by Nine:Situations:Group::bruiser tested against IE8b/xp sp3 9sg site: http://retrogod.altervista.org/ software site: http://www.oovoo.com/ description: ooVoo is ...
ooVoo 1.7.1.35 (URL Protocol) remote unicode buffer overflow poc
?php / ooVoo 1.7.1.35 URL Protocol remote unicode buffer overflow poc by Nine:Situations:Group::bruiser tested against IE8b/xp sp3 9sg site: http://retrogod.altervista.org/ software site: http://www.oovoo.com/ description: ooVoo is a startup video conferencing and instant messaging application,...
oovoo-overflow.txt
CMP ECX,EAX-0C ---------------------------------------------------------------- 04:22:12.015 pid=0E10 tid=0C08 EXCEPTION first-chanc...
ooVoo 1.7.1.35 (URL Protocol) Remote Unicode Buffer Overflow PoC
Exploit for unknown platform in category dos / poc ================================================================ ooVoo 1.7.1.35 URL Protocol Remote Unicode Buffer Overflow PoC ================================================================ ?php / ooVoo 1.7.1.35 URL Protocol remote unicode...
ooVoo 1.7.1.35 - 'URL Protocol' Remote Unicode Buffer Overflow (PoC)
?php / ooVoo 1.7.1.35 URL Protocol remote unicode buffer overflow poc by Nine:Situations:Group::bruiser tested against IE8b/xp sp3 9sg site: http://retrogod.altervista.org/ software site: http://www.oovoo.com/ description: ooVoo is a startup video conferencing and instant messaging application,...
chilkatcrypt-exec.txt
----------------------------------------------------------------------------- Chilkat Crypt Activex Component Arbitrary File Creation/Execution url: http://www.chilkatsoft.com File: ChilkatCrypt2.dll CLSID: 3352B5B9-82E8-4FFD-9EB1-1A3E60056904 ProgID: ChilkatCrypt2.ChilkatCrypt2.1 Descr.: Chilkat...
Chilkat Crypt - ActiveX Arbitrary File CreationExecution
Chilkat Crypt - ActiveX Arbitrary File CreationExecution ----------------------------------------------------------------------------- Chilkat Crypt Activex Component Arbitrary File Creation/Execution url: http://www.chilkatsoft.com File: ChilkatCrypt2.dll CLSID:...
Chilkat Crypt Activex Arbitrary File Creation/Execution PoC
Exploit for unknown platform in category remote exploits =========================================================== Chilkat Crypt Activex Arbitrary File Creation/Execution PoC ===========================================================...
Chilkat Crypt - ActiveX Arbitrary File Creation/Execution
----------------------------------------------------------------------------- Chilkat Crypt Activex Component Arbitrary File Creation/Execution url: http://www.chilkatsoft.com File: ChilkatCrypt2.dll CLSID: 3352B5B9-82E8-4FFD-9EB1-1A3E60056904 ProgID: ChilkatCrypt2.ChilkatCrypt2.1 Descr.: Chilkat...
bittorrent-overflow.txt
!/usr/bin/perl BitTorrent 6.0.3 .torrent File Stack Buffer Overflow Exploit 09/21/2008 by ksOSe && oVeret use warnings; use strict; If you change thisavoid \x80-\x9f unless you really know what you are doing you must also change the length value of the decoder my $shellcode = windows/exec...
BitTorrent 6.0.3 .torrent File Stack Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl BitTorrent 6.0.3 .torrent File Stack Buffer Overflow Exploit 09/21/2008 by ksOSe && oVeret use warnings; use strict; If you change thisavoid \x80-\x9f unless you really know what you are doing you must also change the length value of the decoder m...
Debian DSA-1649-1 : iceweasel - several vulnerabilities
Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0016 Justin Schuh, Tom Cross and Peter Williams discovered a buffer overfl...
DSA-1649-1 iceweasel - several vulnerabilities
Bulletin has no description...
IBM WebSphere Application Server管理控制台溢出漏洞
BUGTRAQ ID: 13853 IBM Websphere应用服务器以基于Java和Servlet引擎为基础,支持多种HTTP服务,可帮助用户完成从开发、发布到维护交互式的动态网站的所有工作。 WebSphere Application Server管理控制台中存在Unicode缓冲区溢出漏洞,远程攻击者可能利用此漏洞在主机上执行任意指令。 起因是其认证机制。仅在服务器启用了"global security...
tomcat Unicode directory traversal vulnerability
Directory traversal vulnerability in Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6.0.16, when allowLinking and UTF-8 are enabled, allows remote attackers to read arbitrary files via encoded directory traversal sequences in the URI, a different vulnerability than...
tomcat Unicode directory traversal vulnerability
Directory traversal vulnerability in Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6.0.16, when allowLinking and UTF-8 are enabled, allows remote attackers to read arbitrary files via encoded directory traversal sequences in the URI, a different vulnerability than...
Make XWork ParametersInterceptor safe from parameter injection attacks
The XWork ParametersInterceptor is a security nightmare as it gives user input submitted form parameters unfettered access to getter/setter methods on action objects. In addition, the interceptor has been shown in the past to be vulnerable to Unicode attacks. Rather than fight a constant and ofte...
Chilkat XML ActiveX Remote Arbitrary File Creation/Execution Exploit
No description provided by source. ----------------------------------------------------------------------------- Chilkat XML ActiveX Remote Arbitrary File Creation/Execution url: www.chilkatsoft.com File: ChilkatUtil.dll = 3.0.3.0 CLSID: 5022FAE8-B780-4B78-B8DC-1AF1145A4F42 ProgID:...
Gentoo Security Advisory GLSA 200503-23 (rxvt-unicode)
The remote host is missing updates announced in advisory GLSA 200503-23. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200805-03 (aterm eterm rxvt mrxvt multi-aterm wterm rxvt-unicode)
The remote host is missing updates announced in advisory GLSA 200805-03. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...