108 matches found
CVE-2015-3205
Libmimedir’s VCF parser is vulnerable to memory corruption when parsing a VCF file with two trailing NULL bytes, triggering risky free() calls during lexer memory cleanup. A PoC/exploit code demonstrates potential arbitrary code execution via crafted VCF inputs; exploitation status in the wild is...
CVE-2015-3205
libmimedir allows remote attackers to execute arbitrary code via a VCF file with two NULL bytes at the end of the file, related to "free" function calls in the "lexer's memory clean-up procedure."...
Libmimedir VCF Memory Corruption Proof Of Concept
!/usr/bin/python libmimedir-free.py Libmimedir VCF Memory Corruption PoC CVE-2015-3205 Jeremy Brown jbrown3264/gmail June 2015 -Synopsis- Adding two NULL bytes to the end of a VCF file allows a user to manipulate free calls which occur during it's lexer's memory clean-up procedure. This could lea...
Libmimedir - .VCF Memory Corruption (PoC)
Libmimedir - .VCF Memory Corruption PoC !/usr/bin/python libmimedir-free.py Libmimedir VCF Memory Corruption PoC CVE-2015-3205 Jeremy Brown jbrown3264/gmail June 2015 -Synopsis- Adding two NULL bytes to the end of a VCF file allows a user to manipulate free calls which occur during it's lexer's...
Libmimedir VCF Memory Corruption PoC
Libmimedir suffers from a memory corruption vulnerability. Adding two NULL bytes to the end of a VCF file allows a user to manipulate free calls which occur during it's lexer's memory clean-up procedure. This could lead to exploitable conditions such as crafting a specific memory chunk to allow f...
Libmimedir - '.VCF' Memory Corruption (PoC)
!/usr/bin/python libmimedir-free.py Libmimedir VCF Memory Corruption PoC CVE-2015-3205 Jeremy Brown jbrown3264/gmail June 2015 -Synopsis- Adding two NULL bytes to the end of a VCF file allows a user to manipulate free calls which occur during it's lexer's memory clean-up procedure. This could lea...
Freebox OS Web interface 3.0.2 XSS, CSRF
Hello list, Here are two CVEs I reported to Freebox, a french ISP: - CVE-2014-9382 - CSRF in VPN user account creation - CVE-2014-9405 - XSS Vulnerable product: Freebox OS Web interface 3.0.2. CVE-2014-9382 - CSRF in Freebox OS Web interface 3.0.2 allowing VPN user account creation...
Apple iOS 8.0.3 - Silent VCF & iMessage DoS Vulnerability
Document Title: =============== Apple iOS 8.0.3 - Silent VCF & iMessage DoS Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1324 Video: http://www.vulnerability-lab.com/getcontent.php?id=1333 Article:...
Slackware Advisory SSA:2004-014-01 kdepim security update
The remote host is missing an update as announced via advisory SSA:2004-014-01. OpenVAS Vulnerability Test $Id: esoftslkssa200401401.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...
Slackware: Security Advisory (SSA:2004-014-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2010-5251
Multiple untrusted search path vulnerabilities in IBM Lotus Notes 8.5 allow local users to gain privileges via a Trojan horse 1 nnoteswc.dll or 2 nlsxbe.dll file in the current working directory, as demonstrated by a directory that contains a .vcf, .vcs, or .ics file. NOTE: the provenance of this...
Microsoft Windows Mobile double free vulnerability
Double free on receiving VCF via MMS/bluetooth...
Microsoft Address Book 6.00.2900.5512(.vcf) DLL Hijacking Exploit
Exploit for windows platform in category local exploits ================================================================= Microsoft Address Book 6.00.2900.5512.vcf DLL Hijacking Exploit =================================================================...
FreeBSD : kdepim exploitable buffer overflow in VCF reader (da6f265b-8f3d-11d8-8b29-0020ed76ef5a)
A buffer overflow is present in some versions of the KDE personal information manager kdepim which may be triggered when processing a specially crafted VCF file. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the...
libVC library buffer overflow
Buffer overflow in countvcards on VCF files parsing...
CVE-2003-0988
Buffer overflow in the VCF file information reader for KDE Personal Information Management kdepim suite in KDE 3.1.0 through 3.1.4 allows attackers to execute arbitrary code via a VCF file...
CVE-2003-0988
CVE-2003-0988 affects KDE kdepim up to KDE 3.1.4; the buffer overflow is in the VCF file information reader, allowing arbitrary code execution via a crafted VCF file. Affected versions: KDE 3.1.0–3.1.4. The provided documents do not specify a fixed version or remediation details.
CVE-2003-0988
Removed by vendor...
Fedora Core 1 : kdepim-3.1.4-2 (2004-133)
The KDE team found a buffer overflow in the file information reader of VCF files. An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the name CVE-2003-0988 t...
FreeBSD : kdepim exploitable buffer overflow in VCF reader (84)
The following package needs to be updated: kdepim %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkgda6f265b8f3d11d88b290020ed76ef5a.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...