18 matches found
SUPERAntiSpyware Professional X 10.0.1264 DLL Hijacking / Privilege Escalation
Title: SUPERAntiSpyware Professional X Version =10.0.1264 "version.dll" Local Privilege Escalation Date: 03.04.2024 Author: M. Akil Gündoğan Vendor Homepage: https://superantispyware.com/ Version: 10.0.1262 and lastest version 10.0.1264 Tested on: Windows 10 Professional x64 PoC Video:...
GHSA-X7J7-QP7J-HW3Q Cross-site scripting (XSS) from writer field content in the site frontend
Impact Kirby's writer field stores its formatted content as HTML code. Unlike with other field types, it is not possible to escape HTML special characters against cross-site scripting XSS attacks, otherwise the formatting would be lost. Cross-site scripting XSS is a type of vulnerability that...
Cross Site Scripting and RCE in baserCMS
baserCMS 4.3.6 and earlier is affected by Cross Site Scripting XSS and Remote Code Execution RCE. Impact: XSS to RCE via Arbitrary file upload. Attack vector is: Administrator must be logged in. Components are: ThemeFilesController.php, UploaderFilesController.php. Tested baserCMS Version : 4.3.6...
Vulnerability Spotlight: Multiple Vulnerabilities in CorelDRAW X8
Today, Talos is disclosing several vulnerabilities that have been identified in CorelDRAW X8. CorelDRAW X8 is graphics suite used for manipulating raster and vector images and is a common alternative to Adobe Creative Cloud. Several of the vulnerabilities being disclosed today specifically affect...
JetAudio 8.1.3 - .mp4 Crash (PoC)
JetAudio 8.1.3 - .mp4 Crash PoC Exploit Title : jetAudio 8.1.3 Basic Use-after-free Corrupted mp4 Crash POC Product : jetAudio Basic Date : 12.12.2014 Exploit Author : ITDefensor Vulnerability Research Team http://itdefensor.ru/ Software Link : http://www.jetaudio.com/download/ Vulnerable version...
Microsoft Internet Explorer 910 - CFormElement Use-After-Free Memory Corruption (PoC) (MS14-035)
Microsoft Internet Explorer 910 - CFormElement Use-After-Free Memory Corruption PoC MS14-035 loaded = false ; function func if loaded document.body.innerHTML = "" ; // free CFormElement input1 = document.getElementById"input1" ; input1.onclick = func ; loaded = true ; input1.click; // Call DoClic...
Microsoft Internet Explorer 8910 - CInput Use-After-Free Crash (PoC) (MS14-035)
Microsoft Internet Explorer 8910 - CInput Use-After-Free Crash PoC MS14-035 MS14-035 Internet Explorer CInput Use-after-free POC Test check var startfl=false; function changer // Call of changer function will happen inside mshtml!CFormElement::DoReset call, after execution of this function crash ...
DDIVRT-2012-48 VMware View Connection Server Directory Traversal (CVE-2012-5978)
Title ----- DDIVRT-2012-48 VMware View Connection Server Directory Traversal CVE-2012-5978 Severity -------- High Date Discovered --------------- September 26, 2012 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: r@b13$ Vulnerability Description...
DDIVRT-2011-38 KnowledgeTree login.php Blind SQL Injection
Title ----- DDIVRT-2011-38 KnowledgeTree login.php Blind SQL Injection Severity -------- High Date Discovered --------------- November 18, 2011 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: sxkeebler and r@b13$ Vulnerability Description...
DDIVRT-2011-35 Cisco Unified Contact Center Express Directory Traversal [CVE-2011-3315]
Title ----- DDIVRT-2011-35 Cisco Unified Contact Center Express Directory Traversal CVE-2011-3315 Severity -------- High Date Discovered --------------- August 9, 2011 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: r@b13$ Vulnerability Description...
TELUS Security Labs VR - Microsoft Office Excel Malformed Records Stack Buffer Overflow
Microsoft Office Excel Malformed Records Stack Buffer Overflow TSL ID : FSC20090609-01 Reference: http://telussecuritylabs.com/threats/show/FSC20090609-01 1. Affected Software Microsoft Office Excel 2000 Microsoft Office Excel 2002 Reference: http://office.microsoft.com/en-us/excel/default.aspx 2...
DDIVRT-2009-22 SMART Board Whiteboard Directory Traversal Vulnerability
Title ----- DDIVRT-2009-22 SMART Board Whiteboard Directory Traversal Vulnerability Severity -------- High Date Discovered --------------- January 19th, 2009 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: David Marshall and r@b13$ Vulnerability Description...
Google Chrome Browser 0.2.149.27 (SaveAs) Remote BOF Exploit
Exploit for unknown platform in category remote exploits ============================================================ Google Chrome Browser 0.2.149.27 SaveAs Remote BOF Exploit ============================================================ PoC Code is in Attach file because this file is saved in...
Google Chrome 0.2.149.27 - SaveAs Remote Buffer Overflow
Google Chrome 0.2.149.27 - SaveAs Remote Buffer Overflow PoC Code is in Attach file because this file is saved in 'Unicode' type for exploit. Here is Description for this Vuln : · Type of Issue : Buffer Overflow. · Affected Software : Google Chrome 0.2.149.27. · Exploitation Environment : Goog...
Google Chrome 0.2.149.27 - 'SaveAs' Remote Buffer Overflow
PoC Code is in Attach file because this file is saved in 'Unicode' type for exploit. Here is Description for this Vuln : · Type of Issue : Buffer Overflow. · Affected Software : Google Chrome 0.2.149.27. · Exploitation Environment : Google Chrome Language: Vietnamese on Windows XP SP2. ·...
CA-ArcServe
CA ArcServe is prone to a remote buffer overflow because it fails to perform adequate boundary-checks on user-supplied data. Successfully exploiting will allow an attacker to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a...
DDIVRT-2008-11 BadBlue uninst.exe DoS
Title ----- DDIVRT-2008-11 BadBlue uninst.exe DoS Severity -------- Medium Date Discovered --------------- March 5th 2008 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: Steven James and r@b13$ Vulnerability Description ------------------------- BadBlue is a...
[Full-disclosure] DM Primer error handling weakness & an old CAM BO revisited
Apologies for the poor grammer and formatting... DM Primer is a shared service related to CA's Unicenter Remote Control. It is used in Enterprise environments to deploy URC6 from the URC v6.x Administration server. Dmprimer.exe listens on a client device for instructions from the server in a...