Lucene search
K
SeebugMost viewed

56796 matches found

seebug.org
seebug.org
added 2017/12/06 12:0 a.m.105 views

Mailsploit vulnerability exists in email address resolution

TL;DR: Mailsploit is a collection of bugs in email clients that allow effective sender spoofing and code injection attacks. The spoofing is not detected by Mail Transfer Agents MTA aka email servers, therefore circumventing spoofing protection mechanisms such as DMARC DKIM/SPF or spam filters. Bu...

7.2AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.105 views

MS15-061 Windows NTUserMessageCall Win32k Kernel Pool Overflow (Schlamperei)

No description provided by source. include include / Exploiting MS15-061 with reverse engineering Win32k.sys by steps : 1: hook PEB callback Function 2: trigger vulnerability make proper Window to lead vulnerable function 3: replace fake object with NtUserDefSetText in Desktop heap inside PEB...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.105 views

Cisco ASA < 8.4.4.6 & 8.2.5.32 - Ethernet Information Leak

No description provided by source. !/usr/bin/env python CVE-2003-0001 'Etherleak' exploit ================================= Exploit for hosts which use a network device driver that pads ethernet frames with data which vary from one packet to another, likely taken from kernel memory, system memory...

5CVSS5.1AI score0.73006EPSS
Exploits15
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.105 views

Mikrotik RouterOS sshd (ROSSSH) - Remote Preauth Heap Corruption

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2010/06/21 12:0 a.m.105 views

Spring Framework class.classLoader类远程代码执行漏洞

BUGTRAQ ID: 40954 CVE ID: CVE-2010-1622 Spring是一个广泛部署的开源架构,帮助开发人员构建高质量的应用。 Spring框架提供了允许使用客户端所提供的数据来更新对象属性的机制,而该机制允许攻击者修改用于通过class.classloader加载对象的类加载器的属性,这可能导致执行任意命令。例如,攻击者可以将类加载器所使用的URL修改到受控的位置。 0 SpringSource Spring Framework 3.0.0 - 3.0.2 SpringSource Spring Framework 2.5.0 - 2.5.7 厂商补丁:...

6CVSS9.4AI score0.52003EPSS
Exploits11
seebug.org
seebug.org
added 2009/01/15 12:0 a.m.105 views

Microsoft Windows SMB NT Trans2请求远程拒绝服务及代码执行漏洞(MS09-001)

BUGTRAQ ID: 33122 CVECAN ID: CVE-2008-4835 Windows是微软发布的非常流行的操作系统。 Microsoft服务器消息块(SMB)协议软件处理特制SMB数据包的方式存在安全漏洞,未经认证的远程攻击者可以在NT Trans2请求中指定畸形的值导致内核忙碌,必须重启系统才能恢复操作。利用此漏洞的大多数尝试会导致系统拒绝服务,但是远程执行代码在理论上是可行的。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Vista SP1 Microsoft Windows...

10CVSS6.9AI score0.44925EPSS
Exploits1
seebug.org
seebug.org
added 2007/12/26 12:0 a.m.105 views

Tikiwiki CMS tiki-listmovies.php文件目录遍历漏洞

BUGTRAQ ID: 27008 TikiWiki是一款网站内容管理系统,基于PHP+ADOdb+Smarty等技术构建。 TikiWiki的实现上存在输入验证漏洞,远程攻击者可能利用此漏洞非授权访问到服务器上任意文件的部分内容。 TikiWiki的tiki-listmovies.php脚本允许用户获得任意文件的前1000个字节。该脚本将movie参数值设置为$movie,删除最后4字节并添加.xml扩展名,然后调用fopen$confFile,'r'打开文件并读取文件的前1000个字节,接着传送这1000字节用作MovieWidth和MovieHeight...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2006/12/08 12:0 a.m.105 views

Hastymail IMAP SMTP命令注入漏洞

Hastymail IMAP是一款由PHP编写的IMAP协议实现客户端。 Hastymail IMAP不充分过滤用户提交的URI输入,远程攻击者可以利用漏洞执行其他SMTP命令。 由于对命令和信息缺少验证,可导致恶意用户注入任意IMAP/SMTP命令到邮件服务器,可导致绕过限制进行访问。 Hastymail Hastymail 1.5 Hastymail Hastymail 1.2 Hastymail Hastymail 1.1 Hastymail Hastymail 1.0.2 Hastymail Hastymail 1.0.1 升级程序: Hastymail Hastymail...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/07/09 12:0 a.m.105 views

Sabdrimer PRO &lt;= 2.2.4 (pluginpath) Remote File Include Vulnerability

No description provided by source. VIRANGAR SECURITY TEAM Discovered By : A.nosrati www.virangar.org Public www.virangar.net Priv8 Mail: infoatvirangar.net Sabdrimer PRO v.2.2.4 Remote File Include Vulnerability Google Dork : "© Sabdrimer CMS" bug found in file : advanced1.php web Site :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2018/05/28 12:0 a.m.104 views

Bitmain Antminer D3/L3+/S9 - Remote Command Execution(CVE-2018-11220)

Exploit Title: Bitmain Antminer D3, L3+, and S9 devices allow Remote Command Execution Google Dork: N/A Date: 27/05/2018 Exploit Author: Corrado Liotta Vendor Homepage: https://www.bitmain.com/ Software Link: N/A Version: Antminer - D3, L3+, S9, and other Tested on: Windows/Linux CVE :...

0.9AI score0.16409EPSS
Exploits6
seebug.org
seebug.org
added 2018/02/24 12:0 a.m.104 views

Windows: Constrained Impersonation Capability EoP(CVE-2018-0821)

Windows: Constrained Impersonation Capability EoP Platform: Windows 10 1703/1709 not tested earlier versions Class: Elevation of Privilege Summary: It’s possible to use the constrained impersonation capability added in Windows 10 to impersonate a lowbox SYSTEM token leading to EoP. Description:...

7.6AI score0.02344EPSS
Exploits3
seebug.org
seebug.org
added 2017/11/16 12:0 a.m.104 views

Chrome < 62 UXSS(CVE-2017-5124)

No description provided by source. PoC.mht ------------------------- MIME-Version: 1.0 Content-Type: multipart/related; type="text/html"; boundary="----MultipartBoundary--" CVE-2017-5124 ------MultipartBoundary-- Content-Type: application/xml; ------MultipartBoundary-- Content-Type: text/html...

7.6AI score0.05245EPSS
Exploits5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.104 views

Tube Ace(Adult PHP Tube Script) SQL Injection

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.104 views

EasyFTP Server <= 1.7.0.11 CWD Command Stack Buffer Overflow

No description provided by source. $Id: easyftpcwdfixret.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.104 views

phpWebSite <= 0.10.0-full (topics.php) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl advisory sent in by SnIpErSA selfar2002athotmail.com http://www.target.com/topics.php?op=viewtopic&topic=-1%20Union%20select%20name,name,pass,name%20From%20users%20where%20uid=1 ported by str0ke milw0rm.com from x97Rangs code RST/GHC...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.104 views

Joomla 1.5.12 RCE via TinyMCE - Upload Vulnerability

No description provided by source. ?php / Joomla 1.5.12 Remote Code Execution via TinyMCE upload vulnerability Tested against : - Joomla 1.5.12 / Ubuntu 8.10 / Apache 2.2.9 - Joomla 1.5.12 / Windows XP SP2 / Apache 2.2.12 Luca daath De Fulgentis - daath at nibblesec.org http://blog.nibblesec.org ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/05/21 12:0 a.m.104 views

NTP 'ntpd' Autokey栈缓冲区溢出漏洞

Bugraq ID: 35017 CVE ID:CVE-2009-1252 CNCVE ID:CNCVE-20091252 NTP Network Time Protocol是一款客户端用于与时间服务器同步日期和时间的协议。 NTPd在以OpenSSL支持的情况下编译时存在栈缓冲区溢出,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 ntpd/ntpcrypto.c中cryptorecv函数使用sprintf存在缓冲区溢出,此漏洞需要配置使用autokey才会触发ntpd配置使用公钥加密进行NTP报文验证。远程未授权攻击者可以以ntpd守护程序权限执行任意代码。 Ubuntu...

6.8CVSS0.21123EPSS
Exploits1
seebug.org
seebug.org
added 2008/11/06 12:0 a.m.104 views

hMAilServer 4.4.2 (PHPWebAdmin) File Inclusion Vulnerabilities

No description provided by source. hMAilServer 4.4.2 PHPWebAdmin local & remote file inclusion poc by Nine:Situations:Group::strawdog -------------------------------------------------------------------------------- our site: http://retrogod.altervista.org software site: http://www.hmailserver.com...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/11/08 12:0 a.m.104 views

Mono System.Math BigInteger整数溢出漏洞

BUGTRAQ ID: 26279 CVECAN ID: CVE-2007-5197 Mono是基于.NET框架的开源开发平台,允许开发人员构建Linux和跨平台的应用。 Mono的Mono.Math.BigInteger类在实现BigInteger数据类型时存在整数溢出漏洞,允许本地攻击者执行任意指令。 Mono Mono 2.0 Mono Mono 1.x 厂商补丁: Debian ------ Debian已经为此发布了一个安全公告(DSA-1397-1)以及相应补丁: DSA-1397-1:New mono packages fix integer overflow...

7.5CVSS0.2AI score0.0362EPSS
Exploits1
seebug.org
seebug.org
added 2007/06/18 12:0 a.m.104 views

PHPMyInventory Global.Inc.PHP远程文件包含漏洞

PHPMyInventory是一款基于PHP的WEB应用程序。 PHPMyInventory不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'Global.Inc.PHP'脚本对用户提交的'strIncludePrefix'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 phpMyInventory 2.8 目前没有详细解决方案提供: http://sourceforge.net/projects/phpmyinventory/...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/03/12 12:0 a.m.104 views

NukeSentinel <= 2.5.06 (mysql >= 4.0.24) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php = 4.0.24 Exploit --- ----------------------------------------------------------------------- PHP conditions: none CMS conditions: disableswitch URL: http://www.acid-root.new.fr/ ----------------------------------------------------------------------...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/10/25 12:0 a.m.104 views

AlberT-EasySite PSA_PATH远程文件包含漏洞

AlberT-EasySite是一款基于PHP的站点生成系统。 AlberT-EasySite在处理用户请求时存在输入验证漏洞,远程攻击者可能利用此漏洞在服务器上以Web进程权限执行任意命令。 AlberT-EasySite没有正确地验证AES/modules/auth/phpsecurityadmin/include/logout.php文件中对PSAPATH参数的输入,允许攻击者通过包含本地或外部资源执行任意PHP代码。成功攻击要求打开了registerglobals。 AlberT AlberT-EasySite 1.0 AlberT AlberT-EasySite 0.8.12...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2003/11/13 12:0 a.m.104 views

MS Frontpage Server Extensions fp30reg.dll Exploit (MS03-051)

漏洞描述:Microsoft FrontPage服务器扩展是Microsoft公司开发的用于加强IIS Web服务器的功能的软件包。Microsoft FrontPage Server Extensions存在两个新的安全漏洞,可导致远程攻击者可以利用这个漏洞进行缓冲区溢出攻击,可能以FrontPage进程权限在系统上执行任意指令。 第一个漏洞是由于FrontPage服务扩展的远程调试功能上存在缓冲区溢出,这个功能用于用户远程连接FrontPage服务扩展的服务器和远程调试内容使用,如Visual...

7.5CVSS6.7AI score0.83075EPSS
Exploits10
seebug.org
seebug.org
added 2021/06/17 12:0 a.m.103 views

SonicWall NSM On-Prem命令执行漏洞(CVE-2021-20026)

...

9CVSS1AI score0.11642EPSS
Exploits1
seebug.org
seebug.org
added 2017/12/26 12:0 a.m.103 views

Asus_DeleteOfflineClientOverflow

Vulnerability: Stack buffer overflow in httpd ------------------------------------------ Exploitation: Can control the $pc. Use together with a session hijack vulnerability or in a csrf attack, can remote code execution and then get a connectback shell. ------------------------------------------...

9.3CVSS0.1AI score0.07552EPSS
Exploits6
seebug.org
seebug.org
added 2017/12/04 12:0 a.m.103 views

TPshop 前台SQL注入#1

0x01 说明 TPshop开源商城系统 Thinkphp shop的简称 ,是深圳搜豹网络有限公司开发的一套多商家模式的商城系统。适合企业及个人快速构建个性化网上商城。包含PC+IOS客户端+Adroid客户端+微商城,系统PC+后台是基于ThinkPHP5 MVC构架开发的跨平台开源软件,设计得非常灵活,具有模块化架构体系和丰富的功能,易于与第三方应用系统无缝集成,在设计上,包含相当全面,以模块化架构体系,让应用组合变得相当灵活,功能也相当丰富。 下载地址:http://www.tp-shop.cn/Index/Index/download.html 目录大概结构 ├─index.p...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2017/11/06 12:0 a.m.103 views

Google PDFium TIFF Image Flate Decoder Code Execution Vulnerability(CVE-2017-5133)

Summary An off-by-one read/write on the heap vulnerability exists in the TIFF image decoder functionality of Pdfium as used by Google Chrome up to and including 60.0.3112.101. A specially crafted PDF file can trigger an off-by-one read and write on the heap resulting in memory corruption and a...

9.4AI score0.01999EPSS
Exploits1
seebug.org
seebug.org
added 2017/05/27 12:0 a.m.103 views

Mozilla Firefox: out-of-bounds read in gfxTextRun(CVE-2017-5447)

Mozilla bug tracker link: https://bugzilla.mozilla.org/showbug.cgi?id=1343552 There is an out-of-bounds read vulnerability in Firefox. The vulnerability was confirmed on the nightly ASan build. PoC: .class1 float: left; white-space: pre-line; .class2 border-bottom-style: solid; font-face: Arial;...

9.2AI score0.17526EPSS
Exploits4
seebug.org
seebug.org
added 2017/05/05 12:0 a.m.103 views

Pwn2Own 2017: UAF in JSC::CachedCall (WebKit)

Pwn2Own 2017: UAF in JSC::CachedCall WebKit As a quick introduction, we are Samuel Groß, AKA saelo, and Niklas Baumstark, both students at Karlsruhe Institute of Technology, and have been playing CTF together for quite some time before we decided to team up for this year’s Pwn2Own. Today we are...

6.8CVSS9AI score0.08038EPSS
Exploits4
seebug.org
seebug.org
added 2016/02/15 12:0 a.m.103 views

ecstore app/dev/svinfo.php 信息泄露漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/07 12:0 a.m.103 views

BookingeCMS HotelCMS酒店预订管理系统provinceId参数存在注入

0x01 漏洞简述 提交时间: 2015-09-04 13:33 公开时间: 2015-12-06 09:00 漏洞类型: SQL注射漏洞 珠海中新信息科技有限公司开发的BookingeCMS HotelCMS /?m=city.getCity 文件provinceId参数存在注入 0x02 漏洞利用 测试Payload: (post提交) /?m=city.getCity provinceId=1' AND SELECT 7525 FROMSELECT COUNT,CONCAT0x7c,MIDIFNULLCASTCURRENTUSER AS...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/09/28 12:0 a.m.103 views

Huawei Home Gateway UPnP/1.0 IGD/1.00 - Password Disclosure

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.103 views

FusionPHP Fusion News 3.3/3.6 X-ForwordedFor PHP Script Code Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13661/info FusionPHP Fusion News is prone to a remote PHP code injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. This may facilitate unauthorized access. ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.103 views

UCenter Home 2.0 - SQL Injection Vulnerability

No description provided by source. --==UCenter Home 2.0 -0day Remote SQL Injection Vulnerability==-- / Author : KnocKout / Greatz : DaiMon,BARCOD3,RiskY and iranian hackers / Contact: [email protected] / Cyber-Warrior.org/CWKnocKout --==--==--==--==--==--==--==--==--==--== Script : UCenter Home...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.103 views

Eyeland Studio Inc. (game.php) SQL Injection Vulnerability

No description provided by source. Eyeland Studio Inc. game.php SQL Injection Vulnerability Author : CoBRa21 Script Home : http://www.eyeland.com/ Dork : Eyeland Studio Inc. All Rights Reserved. inurl:game.php SQL Injection:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/05/08 12:0 a.m.103 views

ezEIP 3 /download.ashx 任意文件下载漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/04/25 12:0 a.m.103 views

科讯KESION CMS最新版任意文件上传WEBSHELL

简要描述: 最新版本上传漏洞哦^^ 详细说明: 会员上传文件漏洞,可以上传任意后缀 user/swfupload.asp文件漏洞 If UpFileObj.Form"NoReName"="1" Then '不更名 Dim PhysicalPath,FsoObj:Set FsoObj = KS.InitialObjectKS.Setting99 PhysicalPath = Server.MapPathreplaceTempFileStr,"|","" TempFileStr= midTempFileStr,1, InStrRevTempFileStr, "/" & FileTitles ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/04/22 12:0 a.m.103 views

TRS WCM后台SQL注入一枚

简要描述: 详细说明: 测试版本:WCM6.5,问题出在后台“新建栏目分发” 直接看图: select WCMDocument.DocId from WCMCHNLDOC,WCMDocument where WCMDocument.DocId=WCMChnlDoc.DocId and WCMChnlDoc.CHNLID=? AND 注入点 AND WCMChnlDoc.DOCSTATUS0 and WCMChnlDoc.Modal0 and WCMChnlDoc.DocChannel0 order by WCMChnlDoc.DOCORDERPRI desc,...

7.7AI score
Exploits0
seebug.org
seebug.org
added 2014/03/17 12:0 a.m.103 views

php-gd 'gdxpm.c'空指针拒绝服务漏洞

Bugtraq ID:66233 CVE ID:CVE-2014-2497 php-gd是一个图片处理扩展库。 php-gd 'gdxpm.c'中的gdImageCreateFromXpm函数存在安全漏洞,调用strlen解析image.colorTablei.ccolor时存在空指针引用错误,允许攻击者利用漏洞使链接此库的应用崩溃。 0 php-gd = v5.4.17-2 目前没有详细解决方案提供: http://www.php.net/ php imagecreatefromxpm"monochome-poc.xpm"; gdb p colorTable0 $2 = string ...

4.3CVSS7.9AI score0.22319EPSS
Exploits3
seebug.org
seebug.org
added 2013/12/16 12:0 a.m.103 views

Bitrix Site Manager用户身份欺骗漏洞

CVECAN ID: CVE-2013-6788 Bitrix Site Manager是一款web站点管理工具。 Bitrix Site Manager中的预购电子存储模块显示时,没能充分核查数据的真实性,远程未经认证的用户可以更改“BITRIXSMSALEUID”的cookie,浏览其他用户的购物信息和执行某些操作,如添加或删除购物车中的物品。 0 Bitrix Site Manager=12.5.13 厂商补丁: Bitrix ----- 升级"sale"模块到14.0.1版本,请到厂商的主页下载:...

7.5CVSS6.4AI score0.01628EPSS
Exploits2
seebug.org
seebug.org
added 2012/10/16 12:0 a.m.103 views

nginx "location" 受限制资源服务漏洞

CVE ID: CVE-2011-4963 nginx是一款使用非常广泛的高性能Web服务器。 nginx允许远程攻击者通过请求内的“.”或某些“$indexallocation”序列,绕过目标访问限制或访问受限文件。 0 Nginx 1.2.x 厂商补丁: Nginx ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://nginx.net/...

5CVSS0.05959EPSS
Exploits1
seebug.org
seebug.org
added 2011/08/01 12:0 a.m.103 views

Apache Tomcat SecurityManager Security Bypass Vulnerability

Bugtraq ID:46177 CVE:CVE-2010-3718 Apache Tomcat is prone to a security-bypass vulnerability. Successful exploits will allow attackers to bypass certain security restrictions and gain access to arbitrary files and directories in the context of the web server. This issue affects Apache Tomcat...

1.2CVSS6AI score0.01353EPSS
Exploits1
seebug.org
seebug.org
added 2011/06/16 12:0 a.m.104 views

Microsoft ATL/MFC跟踪工具'dwmapi.dll' DLL装载任意代码执行漏洞

Bugtraq ID: 42811 CVE ID:CVE-2010-3190 Microsoft Visual Studio是微软公司的开发工具套件系列产品,是一个基本完整的开发工具集,包括了软件整个生命周期中所需要的大部分工具。 Microsoft Visual Studio中使用的ATL MFC Trace Tool AtlTraceTool8.exe工具不安全装载'dwmapi.dll'库,攻击者可以诱使用户在远程WebDAV或SMB共享上打开 TRC,cu,rs,rc或res文件,可以以用户安全上下文装载任意库。 Microsoft Visual Studio 2010 0...

9.3CVSS7.3AI score0.09038EPSS
Exploits1
seebug.org
seebug.org
added 2009/12/16 12:0 a.m.103 views

Pre Hospital Management System (department.php id) SQL Injection Vulnerability

No description provided by source. ? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: department.php id Remote SQL Injection Vulnerability ? Vendor:www.preproject.com/hms.asp ? ? Software:PRE HOSTPITAL MANAGEMENT SYSTEM ? Price $750.00 ? author: R3d-D3v!L ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/09/09 12:0 a.m.103 views

Mambo Component com_hestar Remote SQL Injection Vulnerability

No description provided by source. comhestar 1.0.0 Author : M3NW5 M3NW5athackermaildotcom Homepage : http://www.indonesiancoder.com Date : Monday, Semptember 07, 2009 ------------------------------------------------------------------------------------------------------- | |.-----..--|...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/06/04 12:0 a.m.103 views

ACDSee产品TIFF及字体文件解析缓冲区溢出漏洞

BUGTRAQ ID: 35175,35176 ACDSee是一款图象查看、转换、管理工具,可使用在Microsoft Windows操作系统下。 如果用户使用ACDSee产品打开了畸形的TIFF图形或字体文件的话,就可以触发多个缓冲区溢出,导致执行任意代码。 ACD Systems, Inc ACDSee 9.x ACD Systems, Inc ACDSee 11.x ACD Systems, Inc ACDSee 10.x ACD Systems, Inc ACDSee Photo Manager Pro 2.5 ACD Systems, Inc ACDSee Photo...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2008/10/16 12:0 a.m.103 views

Microsoft Excel BIFF文件格式解析栈溢出漏洞(MS08-057)

BUGTRAQ ID: 31705 CVECAN ID: CVE-2008-3471 Excel是微软Office办公套件中的电子表格工具。 Excel在解析BIFF文件格式时使用文件中记录的内容计算拷贝用户提供数据的栈缓冲区的大小,如果远程攻击者在记录中设置了特制的记录值的话,就可能触发栈溢出,导致执行任意指令。 Microsoft Excel Viewer 2003 SP3 Microsoft Excel Viewer 2003 Microsoft Excel Viewer Microsoft Excel 2007 SP1 Microsoft Excel 2007 Microsoft...

9.3CVSS6.8AI score0.52318EPSS
Exploits1
seebug.org
seebug.org
added 2008/03/20 12:0 a.m.103 views

CUPS CGI接口远程堆溢出漏洞

BUGTRAQ ID: 28307 CVECAN ID: CVE-2008-0047 Common Unix Printing System CUPS是一款通用Unix打印系统,是Unix环境下的跨平台打印解决方案,基于Internet打印协议,提供大多数PostScript和raster打印机服务。 CUPS的CGI接口处理畸形的用户请求时存在堆缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制服务器。 CUPS在TCP 631端口上监听请求,这个接口允许访问一些用于管理CUPS和提供打印任务信息的CGI应用。如果远程攻击者向这个端口提交了恶意请求的话,就可能触发堆溢出,导致执行任意指令。...

9.3CVSS0.8AI score0.06765EPSS
Exploits1
seebug.org
seebug.org
added 2007/01/30 12:0 a.m.103 views

IBM AIX邮件服务绕过认证漏洞

IBM AIX是一款商业性质的UNIX操作系统。 AIX的各种邮件服务(pop3d、pop3ds、imapd和imapds)在认证过程中存在漏洞,在某些环境下可能允许本应拒绝的服务通过认证,这样攻击者就可以获得非授权访问。 IBM AIX 5.3 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: ftp://aix.software.ibm.com/aix/efixes/security/pop3difix.tar.Z...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2006/12/27 12:0 a.m.103 views

Forum82远程文件包含漏洞

Forum82是一款基于PHP的web应用程序。 Forum82不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于多个脚本对用户提交的'repertorylevel'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 Forum82 Forum82 2.5.2 目前没有详细解决方案提供,请关注以下链接: http://forum82.sourceforge.net/...

7.1AI score
Exploits0
Total number of security vulnerabilities5000