Lucene search
K

5408 matches found

myhack58
myhack58
added 2007/05/05 12:0 a.m.27 views

WinRAR 7z-compressed packet processing overflow analysis and use-vulnerability and early warning-the black bar safety net

This article has been published in the hacker line of Defense of the 2 0 0 7 year 4 monthly. The author and the hacker line of Defense on the retention of copyright, reproduced, please indicate the original source. For the reader: overflow of lovers Pre-knowledge: Assembly language, buffer overfl...

7.3AI score
Exploits0
Cvelist
Cvelist
added 2007/04/19 10:0 a.m.23 views

CVE-2007-2152

Buffer overflow in the On-Access Scanner in McAfee VirusScan Enterprise before 8.0i Patch 12 allows user-assisted remote attackers to execute arbitrary code via a long filename containing multi-byte Unicode characters...

7.8AI score0.02605EPSS
Exploits0References8
seebug.org
seebug.org
added 2007/04/19 12:0 a.m.160 views

McAfee VirusScan On-Access扫描器超长Unicode文件名缓冲区溢出漏洞

McAfee VirusScan是一款流行的实时病毒保护应用程序。 McAfee VirusScan产品中的On-Access扫描器组件在处理包含有多字节字符的超长文件名时存在堆溢出漏洞,远程攻击者可能利用此漏洞控制受影响的系统。 如果目标系统安装了东亚语言文件并且将默认的Unicode代码页设置为包含有多字节的语言(如中文)的话,则在试图打开恶意文件或仅仅将鼠标悬停在该文件上就可能触发这个溢出,导致执行任意指令。 0 McAfee VirusScan Enterprise 8.0.0 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: a...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2007/04/18 12:0 a.m.28 views

McAffee VirusScan antivirus buffer overflow

Buffer overflow on oversized Unicode filename...

4.4AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2007/04/18 12:0 a.m.39 views

[Full-disclosure] iDefense Security Advisory 04.17.07: McAfee VirusScan On-Access Scanner Long Unicode File Name Buffer Overflow

McAfee VirusScan On-Access Scanner Long Unicode File Name Buffer Overflow iDefense Security Advisory 04.17.07 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 17, 2007 I. BACKGROUND McAfee VirusScan is an AntiVirus application that offers protection against the latest computer virus...

1.1AI score
Exploits0
seebug.org
seebug.org
added 2007/04/07 12:0 a.m.32 views

AOL SuperBuddy ActiveX Control Remote Code Execution Exploit (meta)

No description provided by source. require 'msf/core' module Msf class Exploits::Windows::Browser::AOLSuperBuddyLinkSBIcons 'AOL Sb.Superbuddy vulnerability', 'Description' = %q This module exploits a flaw in AOL Sb.SuperBuddy. We stole this code from a pre-existing metasploit module. ,...

9.3CVSS6.5AI score0.08434EPSS
Exploits5
Packet Storm
Packet Storm
added 2007/04/05 12:0 a.m.21 views

hpmercury-overflow.txt

!/usr/bin/perl POC exploit for Mercury Quality Center Spider90.ocx ProgColor Overflow credit to Skylined, Trirat Puttaraksa, HDM Skape and the rest of the metasploit crew. This exploit is just a cut and paste of thier code they deserve the credit Vulnerability found by Titon and Ri0t of Bastardla...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/04/04 12:0 a.m.21 views

HP Mercury Quality Center - Spider90.ocx ProgColor Overflow

HP Mercury Quality Center - Spider90.ocx ProgColor Overflow !/usr/bin/perl POC exploit for Mercury Quality Center Spider90.ocx ProgColor Overflow credit to Skylined, Trirat Puttaraksa, HDM Skape and the rest of the metasploit crew. This exploit is just a cut and paste of thier code they deserve t...

0.5AI score
Exploits0
0day.today
0day.today
added 2007/04/04 12:0 a.m.18 views

HP Mercury Quality Center Spider90.ocx ProgColor Overflow Exploit

Exploit for unknown platform in category remote exploits ================================================================= HP Mercury Quality Center Spider90.ocx ProgColor Overflow Exploit ================================================================= !/usr/bin/perl POC exploit for Mercury...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/04/04 12:0 a.m.40 views

HP Mercury Quality Center - Spider90.ocx ProgColor Overflow

!/usr/bin/perl POC exploit for Mercury Quality Center Spider90.ocx ProgColor Overflow credit to Skylined, Trirat Puttaraksa, HDM Skape and the rest of the metasploit crew. This exploit is just a cut and paste of thier code they deserve the credit Vulnerability found by Titon and Ri0t of Bastardla...

7.4AI score
Exploits0
myhack58
myhack58
added 2007/04/02 12:0 a.m.14 views

QQ Traveler vulnerability analysis and exploit(0day)-vulnerability warning-the black bar safety net

failwest shineast Vulnerability overview Tencent TTQQ Traveleris a multi-page browser has a friendly user interface, offers a variety of skin for the user based on personal preferences, in addition TT is a new more user-friendly features that make surfing the Internet more easily and freely, savi...

7.6AI score
Exploits0
seebug.org
seebug.org
added 2007/03/12 12:0 a.m.17 views

News Bin Pro 4.32 Article Grabbing Remote Unicode BoF Exploit

No description provided by source. / News Bin Pro 4.32 Article Grabbing Remote Unicode Buffer Overflow There is remote buffer overflow in News Bin Pro 4.32 that can be triggered by grabbing articles that contain an overly long file name. To exploit, convince someone to set his newsgroup server to...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/03/12 12:0 a.m.14 views

News Bin Pro 4.32 - Article Grabbing Remote Unicode Buffer Overflow

News Bin Pro 4.32 - Article Grabbing Remote Unicode Buffer Overflow / News Bin Pro 4.32 Article Grabbing Remote Unicode Buffer Overflow There is remote buffer overflow in News Bin Pro 4.32 that can be triggered by grabbing articles that contain an overly long file name. To exploit, convince someo...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2007/03/12 12:0 a.m.33 views

News Bin Pro 4.32 - Article Grabbing Remote Unicode Buffer Overflow

/ News Bin Pro 4.32 Article Grabbing Remote Unicode Buffer Overflow There is remote buffer overflow in News Bin Pro 4.32 that can be triggered by grabbing articles that contain an overly long file name. To exploit, convince someone to set his newsgroup server to your ip:119 and ask him to downloa...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/03/10 12:0 a.m.23 views

Microsoft Windows - DCE-RPC svcctl ChangeServiceConfig2A() Memory Corruption

Microsoft Windows - DCE-RPC svcctl ChangeServiceConfig2A Memory Corruption !/usr/bin/python MS Windows DCE-RPC svcctl ChangeServiceConfig2A 0day Memory Corruption PoC Exploit Bug discovered by Krystian Kloskowski h07 Tested on Windows 2000 SP4 Polish all patches Requires.. - Impacket :...

0.3AI score
Exploits0
Saint
Saint
added 2007/02/16 12:0 a.m.33 views

VERITAS NetBackup bpcd daemon command chaining vulnerability

Added: 02/16/2007 CVE: CVE-2006-4902 BID: 21565 OSVDB: 31334 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem The NetBackup bpcd daemon fails to properly validate chained commands. A remote attacker could execute arbitrary commands by appending the...

10CVSS7.3AI score0.04105EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2007/01/17 12:0 a.m.11 views

Fedora Core 5 : python-2.4.3-9.FC5 (2006-1049)

Fix overflow bug in unicode repr Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

5.5AI score
Exploits0References1
Prion
Prion
added 2007/01/12 5:4 a.m.22 views

Directory traversal

F5 FirePass 5.4 through 5.5.2 and 6.0 allows remote attackers to access restricted URLs via 1 a trailing null byte, 2 multiple leading slashes, 3 Unicode encoding, 4 URL-encoded directory traversal or same-directory characters, or 5 upper case letters in the domain name...

7.5CVSS7.2AI score0.03618EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2007/01/11 2:0 a.m.32 views

CVE-2007-0187

F5 FirePass 5.4 through 5.5.2 and 6.0 allows remote attackers to access restricted URLs via 1 a trailing null byte, 2 multiple leading slashes, 3 Unicode encoding, 4 URL-encoded directory traversal or same-directory characters, or 5 upper case letters in the domain name...

6.7AI score0.03618EPSS
Exploits0References9
CVE
CVE
added 2007/01/04 10:0 p.m.45 views

CVE-2006-6865

The CVE-2006-6865 entry describes a directory traversal in SoftArtisans FileUp (SAFileUp) 5.0.14. An attacker can read arbitrary files by supplying a path parameter containing a Unicode-encoded dot-dot ( %c0%ae ), bypassing the normal ".." sequence checks in SAFileUpSamples/util/viewsrc.asp. The ...

7.8CVSS7AI score0.04396EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder