5408 matches found
WinRAR 7z-compressed packet processing overflow analysis and use-vulnerability and early warning-the black bar safety net
This article has been published in the hacker line of Defense of the 2 0 0 7 year 4 monthly. The author and the hacker line of Defense on the retention of copyright, reproduced, please indicate the original source. For the reader: overflow of lovers Pre-knowledge: Assembly language, buffer overfl...
CVE-2007-2152
Buffer overflow in the On-Access Scanner in McAfee VirusScan Enterprise before 8.0i Patch 12 allows user-assisted remote attackers to execute arbitrary code via a long filename containing multi-byte Unicode characters...
McAfee VirusScan On-Access扫描器超长Unicode文件名缓冲区溢出漏洞
McAfee VirusScan是一款流行的实时病毒保护应用程序。 McAfee VirusScan产品中的On-Access扫描器组件在处理包含有多字节字符的超长文件名时存在堆溢出漏洞,远程攻击者可能利用此漏洞控制受影响的系统。 如果目标系统安装了东亚语言文件并且将默认的Unicode代码页设置为包含有多字节的语言(如中文)的话,则在试图打开恶意文件或仅仅将鼠标悬停在该文件上就可能触发这个溢出,导致执行任意指令。 0 McAfee VirusScan Enterprise 8.0.0 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: a...
McAffee VirusScan antivirus buffer overflow
Buffer overflow on oversized Unicode filename...
[Full-disclosure] iDefense Security Advisory 04.17.07: McAfee VirusScan On-Access Scanner Long Unicode File Name Buffer Overflow
McAfee VirusScan On-Access Scanner Long Unicode File Name Buffer Overflow iDefense Security Advisory 04.17.07 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 17, 2007 I. BACKGROUND McAfee VirusScan is an AntiVirus application that offers protection against the latest computer virus...
AOL SuperBuddy ActiveX Control Remote Code Execution Exploit (meta)
No description provided by source. require 'msf/core' module Msf class Exploits::Windows::Browser::AOLSuperBuddyLinkSBIcons 'AOL Sb.Superbuddy vulnerability', 'Description' = %q This module exploits a flaw in AOL Sb.SuperBuddy. We stole this code from a pre-existing metasploit module. ,...
hpmercury-overflow.txt
!/usr/bin/perl POC exploit for Mercury Quality Center Spider90.ocx ProgColor Overflow credit to Skylined, Trirat Puttaraksa, HDM Skape and the rest of the metasploit crew. This exploit is just a cut and paste of thier code they deserve the credit Vulnerability found by Titon and Ri0t of Bastardla...
HP Mercury Quality Center - Spider90.ocx ProgColor Overflow
HP Mercury Quality Center - Spider90.ocx ProgColor Overflow !/usr/bin/perl POC exploit for Mercury Quality Center Spider90.ocx ProgColor Overflow credit to Skylined, Trirat Puttaraksa, HDM Skape and the rest of the metasploit crew. This exploit is just a cut and paste of thier code they deserve t...
HP Mercury Quality Center Spider90.ocx ProgColor Overflow Exploit
Exploit for unknown platform in category remote exploits ================================================================= HP Mercury Quality Center Spider90.ocx ProgColor Overflow Exploit ================================================================= !/usr/bin/perl POC exploit for Mercury...
HP Mercury Quality Center - Spider90.ocx ProgColor Overflow
!/usr/bin/perl POC exploit for Mercury Quality Center Spider90.ocx ProgColor Overflow credit to Skylined, Trirat Puttaraksa, HDM Skape and the rest of the metasploit crew. This exploit is just a cut and paste of thier code they deserve the credit Vulnerability found by Titon and Ri0t of Bastardla...
QQ Traveler vulnerability analysis and exploit(0day)-vulnerability warning-the black bar safety net
failwest shineast Vulnerability overview Tencent TTQQ Traveleris a multi-page browser has a friendly user interface, offers a variety of skin for the user based on personal preferences, in addition TT is a new more user-friendly features that make surfing the Internet more easily and freely, savi...
News Bin Pro 4.32 Article Grabbing Remote Unicode BoF Exploit
No description provided by source. / News Bin Pro 4.32 Article Grabbing Remote Unicode Buffer Overflow There is remote buffer overflow in News Bin Pro 4.32 that can be triggered by grabbing articles that contain an overly long file name. To exploit, convince someone to set his newsgroup server to...
News Bin Pro 4.32 - Article Grabbing Remote Unicode Buffer Overflow
News Bin Pro 4.32 - Article Grabbing Remote Unicode Buffer Overflow / News Bin Pro 4.32 Article Grabbing Remote Unicode Buffer Overflow There is remote buffer overflow in News Bin Pro 4.32 that can be triggered by grabbing articles that contain an overly long file name. To exploit, convince someo...
News Bin Pro 4.32 - Article Grabbing Remote Unicode Buffer Overflow
/ News Bin Pro 4.32 Article Grabbing Remote Unicode Buffer Overflow There is remote buffer overflow in News Bin Pro 4.32 that can be triggered by grabbing articles that contain an overly long file name. To exploit, convince someone to set his newsgroup server to your ip:119 and ask him to downloa...
Microsoft Windows - DCE-RPC svcctl ChangeServiceConfig2A() Memory Corruption
Microsoft Windows - DCE-RPC svcctl ChangeServiceConfig2A Memory Corruption !/usr/bin/python MS Windows DCE-RPC svcctl ChangeServiceConfig2A 0day Memory Corruption PoC Exploit Bug discovered by Krystian Kloskowski h07 Tested on Windows 2000 SP4 Polish all patches Requires.. - Impacket :...
VERITAS NetBackup bpcd daemon command chaining vulnerability
Added: 02/16/2007 CVE: CVE-2006-4902 BID: 21565 OSVDB: 31334 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem The NetBackup bpcd daemon fails to properly validate chained commands. A remote attacker could execute arbitrary commands by appending the...
Fedora Core 5 : python-2.4.3-9.FC5 (2006-1049)
Fix overflow bug in unicode repr Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Directory traversal
F5 FirePass 5.4 through 5.5.2 and 6.0 allows remote attackers to access restricted URLs via 1 a trailing null byte, 2 multiple leading slashes, 3 Unicode encoding, 4 URL-encoded directory traversal or same-directory characters, or 5 upper case letters in the domain name...
CVE-2007-0187
F5 FirePass 5.4 through 5.5.2 and 6.0 allows remote attackers to access restricted URLs via 1 a trailing null byte, 2 multiple leading slashes, 3 Unicode encoding, 4 URL-encoded directory traversal or same-directory characters, or 5 upper case letters in the domain name...
CVE-2006-6865
The CVE-2006-6865 entry describes a directory traversal in SoftArtisans FileUp (SAFileUp) 5.0.14. An attacker can read arbitrary files by supplying a path parameter containing a Unicode-encoded dot-dot ( %c0%ae ), bypassing the normal ".." sequence checks in SAFileUpSamples/util/viewsrc.asp. The ...