jetlib.sec » Tags » code-execution

Feeds

133351 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

2741 items tagged "code execution"

Related tags: proof of concept [+], internet explorer [+], initiative [+], freepbx [+], flash [+], virtual technician [+], virtual [+], php [+], mcafee [+], java [+], internet [+], technician [+], security [+], php code [+], exploits [+], cve [+], username [+], user [+], tftp [+], sysax [+], ssh [+], rpc [+], java web start [+], font [+], firefox [+], fckeditor [+], disclosure [+], dce [+], data protector [+], cross site scripting [+], command execution [+], ckeditor [+], active x control [+], symantec [+], server [+], runtime [+], quest [+], java runtime environment [+], intrust [+], explorer [+], exec [+], drupal [+], arbitrary code [+], apache [+], vulnerability [+], struts [+], playbook [+], owncloud [+], novell groupwise [+], novell [+], multiple [+], horde [+], groupwise address book [+], groupwise [+], exec cmd [+], data [+], core server [+], blackberry [+], application [+], advisory [+], code [+], xpi [+], x code [+], wrq [+], webcalendar [+], webapps [+], web [+], vulnerability research [+], vulnerabilities [+], voxtronic [+], voxlog [+], victim machine [+], version [+], tftp server [+], sql [+], shell metacharacters [+], sharpgrid [+], root code [+], ricoh [+], query string [+], protector [+], proper bounds [+], professional versions [+], professional [+], port 5631 [+], port 4444 [+], point [+], png format [+], payload [+], opcode [+], null byte [+], nuclear situation [+], ngs [+], network access control [+], mysqldumper [+], mozilla [+], module versions [+], metasploit [+], memory address [+], memory access [+], linux security [+], linux [+], lenovo [+], kernel [+], java extension [+], iran [+], internet explorer 8 [+], information disclosure [+], information [+], hfs [+], heap memory [+], google [+], globals [+], getobject function [+], ftp [+], firefox browser [+], file extension [+], exploit [+], environment [+], end [+], elastic [+], distinct [+], directory traversal vulnerability [+], directory traversal [+], directory [+], desktop protocol [+], desktop [+], default extensions [+], decisiontools [+], debian security [+], debian [+], dc dl  [+], critical vulnerability [+], crazytalk [+], chrome [+], callmenum [+], c program [+], bugtraq [+], based buffer overflow [+], backdoor [+], adobe shockwave player [+], address [+], addon [+], active x [+], remote [+], zdi [+], windows common controls [+], windows [+], vupen [+], ubercart [+], type [+], thinkmanagement [+], symantec pcanywhere [+], start [+], social engineering [+], shockwave [+], security research [+], research [+], pypam [+], ofbiz [+], notification [+], netdecision [+], microsoft windows common controls [+], microsoft windows [+], lib [+], landesk [+], injection [+], http [+], gajim [+], ffmpeg [+], editwrx [+], double [+], dell webcam [+], condition [+], cms [+], cgi [+], bootstrapped [+], backimage [+], argument [+], execution [+], oracle java [+], day [+], xsltresult [+], works [+], win [+], webware [+], uploader [+], unspecified [+], uniopc [+], uninitialized pointer [+], typeinfo [+], truetype font [+], truetype [+], true [+], trend micro [+], trend [+], tpti [+], tivoli provisioning manager express [+], tivoli [+], thunderbird [+], telus [+], technical [+], svq [+], suite [+], stream [+], storage data [+], storage [+], ssl [+], silverlight [+], signature verification [+], server code [+], security appliances [+], seamonkey [+], safari [+], robnetscanhost [+], query analyzer [+], provisioning [+], print [+], pointer [+], poc [+], php 5 [+], pcanywhere [+], parameter validation [+], overtake [+], openview [+], net [+], mysql [+], mvt [+], mozilla firefox [+], microsoft silverlight [+], microsoft net framework [+], micro control [+], micro [+], memory corruption [+], logic error [+], libxml [+], libtiff [+], java vm args [+], ita [+], ioquake [+], icclib [+], ibm [+], hp printers [+], hp digital sender [+], host services [+], heap corruption [+], functions [+], freetype [+], free [+], file upload [+], family connections [+], express [+], evince [+], engine [+], dom object [+], control [+], com [+], clientless [+], cisco adaptive [+], business [+], authenticode [+], apple safari [+], annotation [+], annotatex [+], andx [+], adaptive security [+], activex control [+], account [+], abb [+], oracle [+], zero [+], samba [+], buffer overflow [+], zero day [+], microsoft [+], adobe flash player [+], player [+], adobe [+], zone, zingiri, zenworks, zenphoto, zend, xss, xsrvd, xpdf, xosoft, xnfs, xmlsimpleaccessor, xmlcachemgr, xlsx, xendesktop, xenapp, x86, x snow, x internet, x extsetowner, x control, x compact, wshom, wrf, wormable, wordpress plugin, wordpress, word record, word, wopt, woff, wmp, wmi, witness systems, witness, winhlp32, winhlp, windows xp sp3, windows script, windows multimedia, windows movie maker, windows messenger, windows management instrumentation, windows machines, windows kernel, windows internet name service, windows fax, windows com object, windows 2003 sp2, window javascript, window, winamp, william kimball, wild, wikkawiki, width, wholetext, wes brown tags, wes brown, webstudio, webscan, webmanager pro, webmanager, webkit, webex player, webdav server, webdav, webappmon, webaccess, web worker, web studio, web interface, web developers, wbr, vulnerable version, vulnerability sun, vtiger crm, vtiger, vte, vpn, vmware products, vmware, vml, vlc media player, vlc, visual, visio, viscom, virtual method, video file, video emulation, video, vgx, vertical, version 6, veritas, vendor, vcenter, vbulletin, vbul, vbscript, vault, variable format, value, validate, usernames passwords, username parameter, use, usa, url data, url, uri validation, uri uninitialized, uri handler, upload, updates, update, unserialize, universal network, uninitialized, unified, unidata, unicode, uni, understand, unauthenticated, ufoalieninvasion, ufo alien invasion, ufo, tzname, typo3, typo, type parameter, txt, twsl, tunnel, ttf font, tsac, trun, trouble, trident, trendmicro, trend micro internet security, tree node, tree, traq, tracker, touch, total, tor, tooltalk, toolbar, tool, tom sawyer, tnef, tlist, tkhd, tivoli storage manager, tivoli provisioning manager, tivoli endpoint, tinymce, tinybrowser, timthumb, timecolorbehaviorcontainer, time2, time user, time element, time component, time, tiff image, tickets, ticket express, ticket, theft, tgz, tftpd, text parameter, text element, text, tex, termination code, technology of the future, technology microsoft, technology, teamspeak, teaming, tcpdf, tcp, target, tar gz, tar, talk, tags, tag removal, tag, tabular data control, tabular, table layout, table element, table, systems, system privileges, system message, system, symantec products, sybase, sxview, swf player, swf, svgtextelement, svgpointlist, svgpathseglist, svg, support incident, sunway, sun solaris, sun oracle, sun microsystems, sun jre, sun java runtime, sun java, sun calendar, sun, suite versions, suite 3, suhosin, suffers, substitution, styling, style object, style, studio, stubs, stts, stsz, stss, stsc, structure, strongswan, string code, string, stream service, storageworks, steping stone, step, stack overflows, stack overflow, stack buffer, ssl service, sshd, srcelement, src, sql injection, spss, sprmcmajority, splunk, splayer, spid, sphider, speedy, sp8, sp3, sort code, sort, sorenson video codec, sorenson, soliddb, solaris, software protection, soap request, soap, snow leopard, snmpviewer, smil, smb, smart, slplink, slaed cms, slaed, skin, size, siz, sipr, sip, simploo, simple, signedness, siemens automation, siemens, siddharth tags, shortcut, shockwave director, shockwave 3d, shellexecute, shell escape, shell, sharepoint, sharecenter, setup, setoutertext, servlet code, servlet, servicedesk, service monitor, service interface, service daemon, service, server x, server queue, server manager, server login, server java, server field, server directory, server client, server backup, server authentication, serv, sequenceparametersetnalunit, sentinel, sensitive system, selector, securstar, security vulnerability, security technologies, security bulletin, security agent, security advisory, secure desktop, secure content manager, secure, seam, sdk, scrollbars, scripting, script shell, script injection, script execution, script engine, script, scott dunlop, scott, scitools, scheduler service, scheduler, schannel, scanserver, scada hmi, scada, sasl, sapone, sapgui, sap management, sap gui, sap ag, sap, samplecount, sample, safer use, saas, s system, runin, run in, run, ruby, rtl, rtd, rpc protocol, router, root document, root, rogue server, rocket software, rocket, rmd, rle, ring, riff, rhino, rhapsody, rgba, reuse, retired, response, research security, request username, request code, request, reporter engine, reporter agent, reporter, replication manager, replication, replaceitem, rendering, removechild, removal, remote shell, remote exploit, remote buffer overflow, relationship, register, reference, redux, record stack, record, rec, realwin, realtimedata, realplayer user, realplayer application, realplayer activex control, realplayer, realnetworks realplayer, realnetworks, realnetwork, realgames, real time data, real networks, real, reads, reader, read av, read, rcsl, rcadcm, rca dcm425, rational, radialgradiant, quot, quicktime player, quicktime pict, quicktime panorama, quicktime media, quicktime apple, quicktime, quality manager, quality, quake engine, quake, qtx, qemu, qdmc, qdm, python code, python, pwn, punk, pump, publisher, provisioning services, protocol handlers, protocol handler, protection, property, promotic, progressive mesh, proftpd, proficy historian, proficy, procyon, processinstruction, process, pro versions, prl, privilege elevation, private fields, printing system, printing, printer, preauth, pragyan, powerpoint viewer, powerpoint, power, pool overflow, pnpixpat, plus, plugin version, plugin, platespin, pki client, pki, pivottable, piix, pidgin, pictureheader, pict images, pict, pickle data, phpscheduleit, phpmyfaq, phpmyadmin, phpids, phpauctionsystem, php nuke, php barcode, pfr, perl module, perl, performance, pdf, pcx image, pcvue, pattype, patch, password disclosure, parsing, parent, parameter reference, paper, panorama, packet count, packard, package, ovpi, ovet, overflow code, overflow, outlook, order, orchestrator, orchestrate, oracle sql, oracle hyperion, oracle fusion middleware, oracle database 11g, oracle database, oracle 9i, option element, option, operations manager, operations, opera web browser, opera browser, opera, opentype font, opentype, openttd, opentext, openoffice, openldap packages, openldap, openjdk, openedit, opendchub, open, ooxml, onreadystatechange event, online, onefilecms, onebridge, omegabill, ole, officeartblip, officeart, office excel, office art, office, oeplaceholderatom, ocx, ocs inventory, ocs, objects, object memory, object index, object, obj, o.s, nwftpd, numberoftiles, null pointer, ntlm authentication, nstreeselection, nstreecontentview, nsopoc, nsoadv, nsfocus, nsense, novellzenworks, novell zenworks asset management, novell zenworks, novell netware version, novell netware rpc, novell netware 6, novell netware, novell iprint, novell groupwise webaccess, novell groupwise internet agent, notes, nortel, nodeiterator, node movement, node, nnmrptconfig, nnm, nlm, nitrosecurity, nipplib, nic, nibe, newvcommon, new, netxtreme, networks, networker module, networker, network node manager, network, netware, netstorage, netcraft toolbar, netcraft, netcat, nested, name, mycioscn, mycart, myasutil, mupdf, multimedia library, msunicode, mso, msn, ms internet, mpg, mpeg, mpauploader, mp4v, mozff, moving, moviemaker, movie maker, movie file, movie, movement, mouse, mosquito, month, monitoring tool, module, modification, modem string, mobile safari, mobile data, mobile, moaub, mjpeg, mit kerberos, mit, mirroring, minicms, midi stream, midi plugin, midi file format, midi, middleware, microsys, microsoft works 7, microsoft word, microsoft windows versions, microsoft windows media player, microsoft windows media, microsoft visual studio, microsoft visio, microsoft vbscript, microsoft sharepoint server, microsoft sharepoint, microsoft publisher, microsoft producer, microsoft powerpoint, microsoft outlook, microsoft office xp, microsoft office word, microsoft office powerpoint, microsoft office 2007, microsoft office, microsoft iis, microsoft forefront, microsoft fax, microsoft excel, microsoft directx, microsoft data analyzer, microsoft cab, micro internet, method, meta characters, meta, messenger, messagebox, message size, message, meshcms, merethis, mercury loadrunner, mercury, memory copy, memory buffer, memory allocation, memory addresses, memory, memcpy, mediavideo, media operations, media application, media, maxdb, max os, max, matrix structures, matrix, marshaled, marker, manager. these, manager. authentication, manager. affected, manager v1, manager remote, manager ovutil, manager nnmrptconfig, manager fastback, manager cve , manager client, manager casprocessor, manager caslogdirectinserthandler, manager atlcom, manager agent, manager administration, manager, management homepage, management agent, management, manageengine, malicious content, malformed, maker, magnetproc, magneto, mac os x, mac os, mac cve , mac, m business, lzw, lpd, lotus notes user, lotus domino server, lotus domino, lotus 123, lotus, loop condition, loop, logical screen, logging code, log, local, loadrunner, loading code, lnam, lms, live, list, linuxshield, linux distributions, linkedslideatom, linebox, license server, license, libxslt, librpc, library reference, library code, library, libfontparser, libavcodec, letter style, letter, length, ld library, layout grid, layout code, layer 3, layer, launcher, krb5, knowledgebase, kleophatra, kiwi, kills, kernel stack, kernel code, kerberos, kdc, kayako, kadmind, justsystems, json, jscript, jruby, jre java, jre, jpeg2000, jpeg, journal, joomlacamp, joomla, jdownloader, jboss seam, jboss, javascript onload, javascript array, javascript, java sandbox, java deployment, java class, java applet, jar file, jakcms, j integra, ivr, isc dhcp, isc, ipswitch, iprint, ipod, iphone, ip spoofing, ios, inventory, invalid values, invalid pointer, invalid index, invalid hostname, invalid base, invalid addresses, invalid, intrusion detection system, internet security suite, internet name service, internet gateway, internet explorer window, internet explorer versions, internet explorer user, internet explorer link, internet explorer code, internet agent, interface code, interface, interbase, intelligent management, intelligent, intel, integrated asset management, integrated, integra 2, integer overflow vulnerability, integer overflow, integer, instrumentation service, instance, insomnia, insight, insertion code, insecure method, insecure, input validation, inode, injection bug, inheritance, informix dynamic server, informix database server, informix, indusoft, indexd, index code, index, inclusion, incident, improper, impresspages, impersonation, iml, imap server, imap, imanager, imail server, imail, imaging, imageshack, imagemap code, imageio, image processing, image manager, image file, image, iis, ignition, ietf, iepeers, identity, icq, icount, icon, icmpv, icmp, ichitaro, icedtea, ice, icc, ica, ibm informix, hyperion, html time, html tags, html tables, html elements, html, hpsbma, hpopenview, hpediag, hp system, hp storageworks, hp power, hp openview nnm, hp openview network node manager, hp openview, hp network, hp mercury, hp linux, hover, hotplug, hosted, host, hook code, honeywell, homepage, homebase, hmi, historian, hijacking, hierarachy, hfpicture, helix server, helix, heat, heap, header code, header, harvester, handshake, handling, handheld, h 264, gzip, gui, groupwise client, grid control, graphical user interface, graniteds, gpgsm, gold version, gold, gnupg, gnu gzip, gnu, glyphs, glue, global stream, glob, glibc, glassfish, giop, gif, ghostscript, ghost, getserverinfo, getnnmdata, getcharnumatposition, get, gentoo linux security, gentoo, genr, genl, gateway security, gateway, gadu gadu, gadu, fusion, function, ftagent, freewebshop, freebsd security, freebsd, free software updates, free pointer, free error, framework, frame element, frame dimensions, fraise, fragmentation, fpx, fpp, foxit reader, foxit, foundation administrator, forgery, foreignobject, forefront, forcecontrol, fonts, font format, fon, fngroupname, floating point, flexnet, flc delta, flc, flashpix, flag field, first class client, first, finder, financial, file deletion, file corruption, file, field, feh, fax cover page, fax, fastback, extsetowner, externname, extension, expression language, expression, exporthtml, explorer telnet, exim, execvp, execution environment, exec script, exec cgi, exe component, exe code, exe, exception handling, exception, excel user, excel spreadsheet, excel, event, etrust, etoken, esm, esignal, escape, escalation, error, eroom, eric, equality, entry, entexu, enterprise server, enterprise portal, enterprise, ensurecachedattrparamarrays, enging, engines, engine applications, endpoint, end result, encoding, enabled, emulation based, emc smarts, emc documentum, emc, embedding, embarcadero, elst, elevation, elements, element code, element, eglibc, efront, editable, edgesight, easy, e107, e pre , dynamic, dvipng, dvi, dunlop, driver stack, drivecrypt, download, dotnetnuke, dos, domino server, domino, domain, dom tree, dom range, dom prototype, dom node, dom modification, dom editing, dom cloning, dom attribute, dom, documentum eroom, documentum, document position, document load, document, docebo, dns, dll loading, dll file, dll, dkim, distiller, display driver, diskpulse, disk image, disk, directx directshow, directx, directshow, directory service manager, directory server, director file, director, dirapi, dhcp, dhclient, developer tools, destination buffer, design flaw, depth, denial of service, denial, demand applications, defense, decompression code, decompression, decoding, decoder, decode, debian linux, dbserver, dbqueryext, dborparamqry, datatype, datac, database java, database, data validation, darknet, dangling pointer, d two, d tiff resource, d texture, d support, d remote, d pict, d pcx, d parsing, d link, d iff, d file, d bmp, d assets, custom, cswv, css styled, csa, cs5, cs code, crystal reports, cross application, cross, crm, crlf, creation vulnerability, creation, createprocess, crafted, cover, counter, couchdb, corruption issues, corruption, correction, correct reference, core, cooltype, cookie, convincing users, conversion code, controller, control replication, contenteditable, content, confirms, configuration management, configuration, conference journal, conference, concrete, computer associates arcserve, computer associates, computer, compressor, component version, compiler optimization, command, col, cognos, codec, cod, coat, cmysqlite, cmsqlite, cmm, cloud, closedctd, cloning, clod, client response, client pool, client message, client exec, client config, client, clickonce, click, class integer, class, cktricky, citrix access, citrix, cisco webex, cisco unified, cisco telepresensce, cisco telepresence, cisco security advisory, cisco security, cisco secure, cisco products, cisco ios, cisco icm, cisco catalyst, cisco, cinepak, ciframeelement, chroot environment, chilkatftp, chilkat software, chilkat, check, chart, character, channel, ceserver, certificate request, centreon, center, cell, cdr, cck, care software, care, caption element, caption, canonical, can bite, camp, caller name, calendar manager, calendar, cache data, cabextract, cab file, cab, ca xosoft, ca arcserve, byte code, bypassing, bypass, button, burp, bulletin, build, bugs microsoft, bug, buffer overflow vulnerability, buffer, buby, browser, broadwin, broadcom netxtreme, broadcom, bridge design, bridge, box, bounds, boundelements, body element, body, bmp image, bmp, bmc patrol, bluetooth, blue, blog entry, blob, blink, blazeds, black ice, black hat, black, bkpixpat, bitweaver, bit depth, bit, binfile, bind request, bigdecimal, biff, bgra, bga, beehive, bcaaa, bbcode, batch script, barcode, balitbang, backwpup, babylon online dictionary, babylon, awhost, avira antivir, avi parsing, avi file, avi, avaya, autovue, autostart, automation, automatic updates, automatic, auto, authentication mechanisms, authentication mechanism, authentication, authenticate, audit, audio codec, audio, attribute, attacking, attacker, atrc, atoms, atom, atlcom, atas, asset, asmx, asmrulebook, aslr, asf, ascii string, art shape, art object, art drawing, array index, array, arender, arcserve, arbitrary files, arbitrary commands, arbitrary command, arbitrary, aqt, apps, application loading, application layer protocol, application installer, application crash, applet, apple webkit, apple security, apple quicktime player, apple quicktime, apple preview, apple os x, apple os, apple mobile, apple lossless, apple iphone, apple colorsync, apple, appenditem, appendchild, app, aphpkb, anywhere, anecms, andy, android, anchor tag, anchor, amf, alloca, alguest, alert management, alert, aladdin etoken, aladdin, ajaxuploadimagefile, ajax, aidicms, agustin azubel, agent management, agent, advantech, advanced audio coding, advanced, adserver, adobe reader, adobe image, adobe download manager, adobe acrobat reader, adobe acrobat, administrator, administrative tools, administrative, administration kit, administration, admin, adaptive server enterprise, adaptive server, adaptive, activex version, activex plugin, activex data object, activex code, activex, active template library, acrobat versions, acrobat, acms, ace, accurate reference, access, abysssec, abu dhabi, aarflash, aac files, aac file, aac, Tools, Support, Software, ExploitsVulnerabilities, Community, Bugs

• May 23, 2012
• 6:33

  Symantec End Point Protection / Network Access Control 11.x Code Execution

   » ‎ Packet Storm Security Exploits
  Symantec End Point Protection version 11.x and Symantec Network Access Control version 11.x local code execution proof of concept exploit.

  Tags:  point symantec end network-access-control code-execution proof-of-concept  

• 6:33

  Symantec End Point Protection / Network Access Control 11.x Code Execution

   » ‎ Packet Storm Security Recent Files
  Symantec End Point Protection version 11.x and Symantec Network Access Control version 11.x local code execution proof of concept exploit.

  Tags:  point symantec end network-access-control code-execution proof-of-concept  

• 6:33

  Symantec End Point Protection / Network Access Control 11.x Code Execution

   » ‎ Packet Storm Security Misc. Files
  Symantec End Point Protection version 11.x and Symantec Network Access Control version 11.x local code execution proof of concept exploit.

  Tags:  point symantec end network-access-control code-execution proof-of-concept  

• 0:00

  Vuln: Adobe Flash Player CVE-2012-0779 Object Type Confusion Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Adobe Flash Player CVE-2012-0779 Object Type Confusion Remote Code Execution Vulnerability

  Tags:  player adobe flash code-execution adobe-flash-player vulnerability  

• May 22, 2012
• 0:00

  Vuln: PHP 'com_print_typeinfo()' Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  PHP 'com_print_typeinfo()' Remote Code Execution Vulnerability

  Tags:  typeinfo print com code-execution vulnerability  

• May 18, 2012
• 14:00

  [remote exploits] - PHP 5.4 Win32 Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [remote exploits] - PHP 5.4 Win32 Code Execution

  Tags:  exploit code remote code-execution exploits  

• 7:21

  PHP 5.4 Win32 Code Execution

   » ‎ Packet Storm Security Exploits
  PHP version 5.4.3 code execution exploit for Win32.

  Tags:  version code execution code-execution  

• 7:21

  PHP 5.4 Win32 Code Execution

   » ‎ Packet Storm Security Recent Files
  PHP version 5.4.3 code execution exploit for Win32.

  Tags:  version code execution code-execution  

• 7:21

  PHP 5.4 Win32 Code Execution

   » ‎ Packet Storm Security Misc. Files
  PHP version 5.4.3 code execution exploit for Win32.

  Tags:  version code execution code-execution  

• May 16, 2012
• 16:25

  Linux Kernel HFS Plus Buffer Overflow

   » ‎ Packet Storm Security Advisories
  PRE-CERT Security Advisory - The Linux kernel contains a vulnerability in the driver for HFS plus file systems that may be exploited for code execution or privilege escalation. A specially-crafted HFS plus filesystem can cause a buffer overflow via the memcpy() call of hfs_bnode_read() (in fs/hfsplus/bnode.c).

  Tags:  kernel hfs linux buffer-overflow code-execution  

• 16:25

  Linux Kernel HFS Plus Buffer Overflow

   » ‎ Packet Storm Security Recent Files
  PRE-CERT Security Advisory - The Linux kernel contains a vulnerability in the driver for HFS plus file systems that may be exploited for code execution or privilege escalation. A specially-crafted HFS plus filesystem can cause a buffer overflow via the memcpy() call of hfs_bnode_read() (in fs/hfsplus/bnode.c).

  Tags:  kernel hfs linux buffer-overflow code-execution  

• 16:25

  Linux Kernel HFS Plus Buffer Overflow

   » ‎ Packet Storm Security Misc. Files
  PRE-CERT Security Advisory - The Linux kernel contains a vulnerability in the driver for HFS plus file systems that may be exploited for code execution or privilege escalation. A specially-crafted HFS plus filesystem can cause a buffer overflow via the memcpy() call of hfs_bnode_read() (in fs/hfsplus/bnode.c).

  Tags:  kernel hfs linux buffer-overflow code-execution  

• 0:00

  Vuln: Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

  Tags:  samba dce rpc code-execution vulnerability  

• May 15, 2012
• 0:00

  Vuln: FFmpeg Prior to 0.7.8 and 0.8.7 Multiple Remote Code Execution Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  FFmpeg Prior to 0.7.8 and 0.8.7 Multiple Remote Code Execution Vulnerabilities

  Tags:  ffmpeg multiple remote code-execution  

• 0:00

  Vuln: FFmpeg SVQ1 Stream File Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  FFmpeg SVQ1 Stream File Remote Code Execution Vulnerability

  Tags:  ffmpeg svq stream code-execution vulnerability  

• May 11, 2012
• 14:59

  Distinct TFTP 3.01 Writable Directory Traversal Execution

   » ‎ Packet Storm Security Exploits
  This Metasploit module exploits a vulnerability found in Distinct TFTP server. The software contains a directory traversal vulnerability that allows a remote attacker to write arbitrary file to the file system, which results in code execution under the context of 'SYSTEM'.

  Tags:  directory tftp distinct directory-traversal-vulnerability tftp-server code-execution  

• 14:59

  Distinct TFTP 3.01 Writable Directory Traversal Execution

   » ‎ Packet Storm Security Recent Files
  This Metasploit module exploits a vulnerability found in Distinct TFTP server. The software contains a directory traversal vulnerability that allows a remote attacker to write arbitrary file to the file system, which results in code execution under the context of 'SYSTEM'.

  Tags:  directory tftp distinct directory-traversal-vulnerability tftp-server code-execution  

• 14:59

  Distinct TFTP 3.01 Writable Directory Traversal Execution

   » ‎ Packet Storm Security Misc. Files
  This Metasploit module exploits a vulnerability found in Distinct TFTP server. The software contains a directory traversal vulnerability that allows a remote attacker to write arbitrary file to the file system, which results in code execution under the context of 'SYSTEM'.

  Tags:  directory tftp distinct directory-traversal-vulnerability tftp-server code-execution  

• May 10, 2012
• 7:00

  Bugtraq: Adobe Shockwave Player Remote Code Execution (CVE-2012-2030)

   » ‎ SecurityFocus Vulnerabilities
  Adobe Shockwave Player Remote Code Execution (CVE-2012-2030)

  Tags:  adobe-shockwave-player code-execution bugtraq  

• 7:00

  Bugtraq: Adobe Shockwave Player Remote Code Execution (CVE-2012-2031)

   » ‎ SecurityFocus Vulnerabilities
  Adobe Shockwave Player Remote Code Execution (CVE-2012-2031)

  Tags:  shockwave player adobe adobe-shockwave-player code-execution bugtraq  

• May 09, 2012
• 10:23

  DecisionTools SharpGrid Active-X Code Execution

   » ‎ Packet Storm Security Exploits
  DecisionTools SharpGrid suffers from an active-x related remote command execution vulnerability.

  Tags:  sharpgrid decisiontools execution x-code command-execution code-execution active-x  

• 10:23

  DecisionTools SharpGrid Active-X Code Execution

   » ‎ Packet Storm Security Recent Files
  DecisionTools SharpGrid suffers from an active-x related remote command execution vulnerability.

  Tags:  sharpgrid decisiontools execution x-code command-execution code-execution active-x  

• 10:23

  DecisionTools SharpGrid Active-X Code Execution

   » ‎ Packet Storm Security Misc. Files
  DecisionTools SharpGrid suffers from an active-x related remote command execution vulnerability.

  Tags:  sharpgrid decisiontools execution x-code command-execution code-execution active-x  

• 0:00

  Vuln: Oracle Java SE Remote Java Runtime Environment Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Java SE Remote Java Runtime Environment Code Execution Vulnerability

  Tags:  oracle runtime remote java-runtime-environment oracle-java code-execution  

• 0:00

  Vuln: Oracle Java SE CVE-2012-0498 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Java SE CVE-2012-0498 Remote Code Execution Vulnerability

  Tags:  oracle code remote oracle-java code-execution cve  

• 0:00

  Vuln: Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

  Tags:  code-execution samba vulnerability  

• May 08, 2012
• 6:13

  PHP Enter Code Injection

   » ‎ Packet Storm Security Exploits
  PHP Enter suffers from a code execution vulnerability.

  Tags:  code-execution vulnerability  

• 6:13

  PHP Enter Code Injection

   » ‎ Packet Storm Security Recent Files
  PHP Enter suffers from a code execution vulnerability.

  Tags:  code-execution vulnerability  

• 6:13

  PHP Enter Code Injection

   » ‎ Packet Storm Security Misc. Files
  PHP Enter suffers from a code execution vulnerability.

  Tags:  code-execution vulnerability  

• 0:00

  Vuln: Microsoft Windows 'Win32k.sys' TrueType Font Handling Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Windows 'Win32k.sys' TrueType Font Handling Remote Code Execution Vulnerability

  Tags:  microsoft win windows truetype-font code-execution microsoft-windows  

• May 05, 2012
• 18:32

  PHP CGI Argument Injection

   » ‎ Packet Storm Security Exploits
  When run as a CGI, PHP up to version 5.3.12 and 5.4.2 is vulnerable to an argument injection vulnerability. This Metasploit module takes advantage of the -d flag to set php.ini directives to achieve code execution. From the advisory: "if there is NO unescaped '=' in the query string, the string is split on '+' (encoded space) characters, urldecoded, passed to a function that escapes shell metacharacters (the "encoded in a system-defined manner" from the RFC) and then passes them to the CGI binary."

  Tags:  cgi php argument shell-metacharacters code-execution query-string  

• 18:32

  PHP CGI Argument Injection

   » ‎ Packet Storm Security Recent Files
  When run as a CGI, PHP up to version 5.3.12 and 5.4.2 is vulnerable to an argument injection vulnerability. This Metasploit module takes advantage of the -d flag to set php.ini directives to achieve code execution. From the advisory: "if there is NO unescaped '=' in the query string, the string is split on '+' (encoded space) characters, urldecoded, passed to a function that escapes shell metacharacters (the "encoded in a system-defined manner" from the RFC) and then passes them to the CGI binary."

  Tags:  shell-metacharacters code-execution query-string  

• 18:32

  PHP CGI Argument Injection

   » ‎ Packet Storm Security Misc. Files
  When run as a CGI, PHP up to version 5.3.12 and 5.4.2 is vulnerable to an argument injection vulnerability. This Metasploit module takes advantage of the -d flag to set php.ini directives to achieve code execution. From the advisory: "if there is NO unescaped '=' in the query string, the string is split on '+' (encoded space) characters, urldecoded, passed to a function that escapes shell metacharacters (the "encoded in a system-defined manner" from the RFC) and then passes them to the CGI binary."

  Tags:  cgi php argument shell-metacharacters code-execution query-string  

• May 04, 2012
• 0:00

  Vuln: ICCLIB CVE-2012-1616 Use-After-Free Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  ICCLIB CVE-2012-1616 Use-After-Free Remote Code Execution Vulnerability

  Tags:  free remote icclib code-execution vulnerability  

• May 03, 2012
• 15:45

  McAfee Virtual Technician MVTControl 6.3.0.1911 GetObject Vulnerability

   » ‎ Packet Storm Security Exploits
  This Metasploit modules exploits a vulnerability found in McAfee Virtual Technician's MVTControl. This ActiveX control can be abused by using the GetObject() function to load additional unsafe classes such as WScript.Shell, therefore allowing remote code execution under the context of the user.

  Tags:  mcafee technician virtual virtual-technician getobject-function code-execution  

• 15:45

  McAfee Virtual Technician MVTControl 6.3.0.1911 GetObject Vulnerability

   » ‎ Packet Storm Security Recent Files
  This Metasploit modules exploits a vulnerability found in McAfee Virtual Technician's MVTControl. This ActiveX control can be abused by using the GetObject() function to load additional unsafe classes such as WScript.Shell, therefore allowing remote code execution under the context of the user.

  Tags:  mcafee technician virtual virtual-technician getobject-function code-execution  

• 15:45

  McAfee Virtual Technician MVTControl 6.3.0.1911 GetObject Vulnerability

   » ‎ Packet Storm Security Misc. Files
  This Metasploit modules exploits a vulnerability found in McAfee Virtual Technician's MVTControl. This ActiveX control can be abused by using the GetObject() function to load additional unsafe classes such as WScript.Shell, therefore allowing remote code execution under the context of the user.

  Tags:  mcafee technician virtual virtual-technician getobject-function code-execution  

• 0:00

  Vuln: Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

  Tags:  samba dce rpc code-execution vulnerability  

• May 01, 2012
• 19:11

  Symantec pcAnywhere Remote Code Execution

   » ‎ Packet Storm Security Exploits
  Symantec pcAnywhere versions 12.5 and below are vulnerable to a remote code execution vulnerability. A flaw exists in the authentication component listening on TCP port 5631 which does not sufficiently validate user-submitted data.

  Tags:  code-execution port-5631 vulnerability  

• 19:11

  Symantec pcAnywhere Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  Symantec pcAnywhere versions 12.5 and below are vulnerable to a remote code execution vulnerability. A flaw exists in the authentication component listening on TCP port 5631 which does not sufficiently validate user-submitted data.

  Tags:  code-execution port-5631 vulnerability  

• 19:11

  Symantec pcAnywhere Remote Code Execution

   » ‎ Packet Storm Security Misc. Files
  Symantec pcAnywhere versions 12.5 and below are vulnerable to a remote code execution vulnerability. A flaw exists in the authentication component listening on TCP port 5631 which does not sufficiently validate user-submitted data.

  Tags:  code symantec pcanywhere code-execution port-5631 vulnerability  

• April 30, 2012
• 14:00

  [remote exploits] - McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [remote exploits] - McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 Code Execution

  Tags:  remote mcafee virtual virtual-technician code-execution exploits  

• 12:02

  Bugtraq: NGS00118 Technical Advisory: Symantec pcAnywhere Remote Code Execution as SYSTEM

   » ‎ SecurityFocus Vulnerabilities
  NGS00118 Technical Advisory: Symantec pcAnywhere Remote Code Execution as SYSTEM

  Tags:  advisory technical ngs symantec-pcanywhere code-execution symantec  

• 12:00

  Bugtraq: McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 ActiveX Control GetObject() Security Bypass Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 ActiveX Control GetObject() Security Bypass Remote Code Execution Vulnerability

  Tags:  mcafee technician virtual virtual-technician code-execution mvt  

• 7:32

  McAfee Virtual Technician 6.3.0.1911 Code Execution

   » ‎ Packet Storm Security Exploits
  McAfee Virtual Technician version 6.3.0.1911 suffers from a MVT.MVTControl.6300 GetObject() active-x control security bypass remote code execution vulnerability.

  Tags:  mcafee technician virtual active-x-control virtual-technician code-execution  

• 7:32

  McAfee Virtual Technician 6.3.0.1911 Code Execution

   » ‎ Packet Storm Security Recent Files
  McAfee Virtual Technician version 6.3.0.1911 suffers from a MVT.MVTControl.6300 GetObject() active-x control security bypass remote code execution vulnerability.

  Tags:  mcafee technician virtual active-x-control virtual-technician code-execution  

• 7:32

  McAfee Virtual Technician 6.3.0.1911 Code Execution

   » ‎ Packet Storm Security Misc. Files
  McAfee Virtual Technician version 6.3.0.1911 suffers from a MVT.MVTControl.6300 GetObject() active-x control security bypass remote code execution vulnerability.

  Tags:  mcafee technician virtual active-x-control virtual-technician code-execution  

• 7:28

  WebCalendar 1.2.4 Remote Code Execution

   » ‎ Packet Storm Security Exploits
  WebCalendar versions 1.2.4 and below suffer from a remote code execution vulnerability.

  Tags:  code webcalendar execution code-execution vulnerability  

• 7:28

  WebCalendar 1.2.4 Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  WebCalendar versions 1.2.4 and below suffer from a remote code execution vulnerability.

  Tags:  code webcalendar execution code-execution vulnerability  

• 7:28

  WebCalendar 1.2.4 Remote Code Execution

   » ‎ Packet Storm Security Misc. Files
  WebCalendar versions 1.2.4 and below suffer from a remote code execution vulnerability.

  Tags:  code webcalendar execution code-execution vulnerability  

• 0:00

  Vuln: Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

  Tags:  samba dce rpc code-execution vulnerability  

• April 29, 2012
• 14:00

  [remote exploits] - Mikrotik Winbox Remote Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [remote exploits] - Mikrotik Winbox Remote Code Execution

  Tags:  code-execution exploits  

• April 27, 2012
• 16:56

  MySQLDumper 1.24.4 LFI / XSS / CSRF / Code Execution / Traversal

   » ‎ Packet Storm Security Exploits
  MySQLDumper version 1.24.4 suffers from code execution, cross site request forgery, cross site scripting, local file inclusion, and directory traversal vulnerabilities.

  Tags:  code mysqldumper execution code-execution directory-traversal cross-site-scripting  

• 16:56

  MySQLDumper 1.24.4 LFI / XSS / CSRF / Code Execution / Traversal

   » ‎ Packet Storm Security Recent Files
  MySQLDumper version 1.24.4 suffers from code execution, cross site request forgery, cross site scripting, local file inclusion, and directory traversal vulnerabilities.

  Tags:  code mysqldumper execution code-execution directory-traversal cross-site-scripting  

• 16:56

  MySQLDumper 1.24.4 LFI / XSS / CSRF / Code Execution / Traversal

   » ‎ Packet Storm Security Misc. Files
  MySQLDumper version 1.24.4 suffers from code execution, cross site request forgery, cross site scripting, local file inclusion, and directory traversal vulnerabilities.

  Tags:  code mysqldumper execution code-execution directory-traversal cross-site-scripting  

• 0:00

  Vuln: Microsoft Windows Common Controls ActiveX Control Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Windows Common Controls ActiveX Control Remote Code Execution Vulnerability

  Tags:  microsoft-windows-common-controls windows-common-controls code-execution  

• April 25, 2012
• 13:57

  Drupal Ubercart 6.x / 7.x XSS / PHP Code Execution

   » ‎ Packet Storm Security Advisories
  Drupal Ubercart module versions 6.x and 7.x suffers from code execution and cross site scripting vulnerabilities.

  Tags:  code-execution module-versions  

• 13:57

  Drupal Ubercart 6.x / 7.x XSS / PHP Code Execution

   » ‎ Packet Storm Security Recent Files
  Drupal Ubercart module versions 6.x and 7.x suffers from code execution and cross site scripting vulnerabilities.

  Tags:  code ubercart drupal code-execution module-versions  

• 13:57

  Drupal Ubercart 6.x / 7.x XSS / PHP Code Execution

   » ‎ Packet Storm Security Misc. Files
  Drupal Ubercart module versions 6.x and 7.x suffers from code execution and cross site scripting vulnerabilities.

  Tags:  code ubercart drupal code-execution module-versions  

• April 21, 2012
• 14:00

  [remote exploits] - Owncloud Account Overtake / File Upload Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [remote exploits] - Owncloud Account Overtake / File Upload Code Execution

  Tags:  owncloud account overtake code-execution exploits  

• April 20, 2012
• 12:54

  Owncloud Account Overtake / File Upload Code Execution

   » ‎ Packet Storm Security Exploits
  This Metasploit module exploits several vulnerabilities in Owncloud 3.0.1 and earlier in order to achieve code execution.

  Tags:  owncloud code execution code-execution vulnerabilities  

• 12:54

  Owncloud Account Overtake / File Upload Code Execution

   » ‎ Packet Storm Security Recent Files
  This Metasploit module exploits several vulnerabilities in Owncloud 3.0.1 and earlier in order to achieve code execution.

  Tags:  owncloud code execution code-execution vulnerabilities  

• 12:54

  Owncloud Account Overtake / File Upload Code Execution

   » ‎ Packet Storm Security Misc. Files
  This Metasploit module exploits several vulnerabilities in Owncloud 3.0.1 and earlier in order to achieve code execution.

  Tags:  owncloud code execution code-execution vulnerabilities  

• April 19, 2012
• 22:56

  TFTP Server for Windows 1.4 ST WRQ Buffer Overflow

   » ‎ Packet Storm Security Exploits
  This Metasploit module exploits a vulnerability found in TFTP Server 1.4 ST. The flaw is due to the way TFTP handles the filename parameter extracted from a WRQ request. The server will append the user-supplied filename to TFTP server binary's path without any bounds checking, and then attempt to open this with a fopen(). Since this isn't a valid file path, fopen() returns null, which allows the corrupted data to be used in a strcmp() function, causing an access violation. Since the offset is sensitive to how the TFTP server is launched, you must know in advance if your victim machine launched the TFTP as a 'Service' or 'Standalone' , and then manually select your target accordingly. A successful attempt will lead to remote code execution under the context of SYSTEM if run as a service, or the user if run as a standalone. A failed attempt will result a denial-of-service.

  Tags:  wrq server tftp code-execution buffer-overflow victim-machine  

• 22:56

  TFTP Server for Windows 1.4 ST WRQ Buffer Overflow

   » ‎ Packet Storm Security Recent Files
  This Metasploit module exploits a vulnerability found in TFTP Server 1.4 ST. The flaw is due to the way TFTP handles the filename parameter extracted from a WRQ request. The server will append the user-supplied filename to TFTP server binary's path without any bounds checking, and then attempt to open this with a fopen(). Since this isn't a valid file path, fopen() returns null, which allows the corrupted data to be used in a strcmp() function, causing an access violation. Since the offset is sensitive to how the TFTP server is launched, you must know in advance if your victim machine launched the TFTP as a 'Service' or 'Standalone' , and then manually select your target accordingly. A successful attempt will lead to remote code execution under the context of SYSTEM if run as a service, or the user if run as a standalone. A failed attempt will result a denial-of-service.

  Tags:  wrq server tftp code-execution buffer-overflow victim-machine  

• 22:56

  TFTP Server for Windows 1.4 ST WRQ Buffer Overflow

   » ‎ Packet Storm Security Misc. Files
  This Metasploit module exploits a vulnerability found in TFTP Server 1.4 ST. The flaw is due to the way TFTP handles the filename parameter extracted from a WRQ request. The server will append the user-supplied filename to TFTP server binary's path without any bounds checking, and then attempt to open this with a fopen(). Since this isn't a valid file path, fopen() returns null, which allows the corrupted data to be used in a strcmp() function, causing an access violation. Since the offset is sensitive to how the TFTP server is launched, you must know in advance if your victim machine launched the TFTP as a 'Service' or 'Standalone' , and then manually select your target accordingly. A successful attempt will lead to remote code execution under the context of SYSTEM if run as a service, or the user if run as a standalone. A failed attempt will result a denial-of-service.

  Tags:  wrq server tftp code-execution buffer-overflow victim-machine  

• 11:01

  Bugtraq: VUPEN Security Research - Adobe Flash Player NetStream Remote Code Execution Vulnerability (APSB12-07 / CVE-2012-0773)

   » ‎ SecurityFocus Vulnerabilities
  VUPEN Security Research - Adobe Flash Player NetStream Remote Code Execution Vulnerability (APSB12-07 / CVE-2012-0773)

  Tags:  research vupen security code-execution adobe-flash-player security-research  

• 0:00

  Vuln: Gajim SQL Injection and Code Execution Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Gajim SQL Injection and Code Execution Vulnerabilities

  Tags:  injection gajim sql code-execution  

• 0:00

  Vuln: UniOPC IP*Works! SSL Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  UniOPC IP*Works! SSL Remote Code Execution Vulnerability

  Tags:  works ssl uniopc code-execution vulnerability  

• 0:00

  Vuln: Oracle Java SE Remote Java Runtime Environment Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Java SE Remote Java Runtime Environment Code Execution Vulnerability

  Tags:  oracle runtime remote java-runtime-environment oracle-java code-execution  

• April 18, 2012
• 15:50

  Microsoft Internet Explorer VML Remote Code Execution

   » ‎ Packet Storm Security Advisories
  VUPEN Vulnerability Research Team discovered a critical vulnerability in Microsoft Internet Explorer. The vulnerability is caused by a use-after-free error within the "vgx.dll" component when processing certain VML behaviors, which could be exploited by attackers to compromise a vulnerable system by tricking a user into visiting a specially crafted web page.

  Tags:  internet vulnerability microsoft vulnerability-research critical-vulnerability code-execution  

• 15:50

  Microsoft Internet Explorer VML Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  VUPEN Vulnerability Research Team discovered a critical vulnerability in Microsoft Internet Explorer. The vulnerability is caused by a use-after-free error within the "vgx.dll" component when processing certain VML behaviors, which could be exploited by attackers to compromise a vulnerable system by tricking a user into visiting a specially crafted web page.

  Tags:  internet vulnerability microsoft vulnerability-research critical-vulnerability code-execution  

• 15:50

  Microsoft Internet Explorer VML Remote Code Execution

   » ‎ Packet Storm Security Misc. Files
  VUPEN Vulnerability Research Team discovered a critical vulnerability in Microsoft Internet Explorer. The vulnerability is caused by a use-after-free error within the "vgx.dll" component when processing certain VML behaviors, which could be exploited by attackers to compromise a vulnerable system by tricking a user into visiting a specially crafted web page.

  Tags:  internet vulnerability microsoft vulnerability-research critical-vulnerability code-execution  

• 11:02

  Bugtraq: VUPEN Security Research - Microsoft Internet Explorer VML Remote Code Execution (MS12-023 / CVE-2012-0172)

   » ‎ SecurityFocus Vulnerabilities
  VUPEN Security Research - Microsoft Internet Explorer VML Remote Code Execution (MS12-023 / CVE-2012-0172)

  Tags:  research vupen security code-execution security-research internet-explorer  

• 0:00

  Vuln: Microsoft Internet Explorer CVE-2012-0171 SelectAll Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Internet Explorer CVE-2012-0171 SelectAll Remote Code Execution Vulnerability

  Tags:  internet microsoft explorer code-execution internet-explorer cve  

• 0:00

  Vuln: Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

  Tags:  samba dce rpc code-execution vulnerability  

• 0:00

  Vuln: MySQL Unspecified Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  MySQL Unspecified Remote Code Execution Vulnerability

  Tags:  remote unspecified mysql code-execution vulnerability  

• 0:00

  Vuln: MySQL 5.5.20 Unspecified Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  MySQL 5.5.20 Unspecified Remote Code Execution Vulnerability

  Tags:  code-execution vulnerability  

• April 16, 2012
• 16:57

  Apache OFBiz 10.04 Code Execution

   » ‎ Packet Storm Security Recent Files
  Apache OFBiz versions 10.04 and later allow remote attackers to execute arbitrary code.

  Tags:  ofbiz code apache code-execution arbitrary-code  

• 16:57

  Apache OFBiz 10.04 Code Execution

   » ‎ Packet Storm Security Misc. Files
  Apache OFBiz versions 10.04 and later allow remote attackers to execute arbitrary code.

  Tags:  ofbiz code apache code-execution arbitrary-code  

• 0:00

  Vuln: Gajim SQL Injection and Code Execution Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Gajim SQL Injection and Code Execution Vulnerabilities

  Tags:  injection gajim sql code-execution  

• 0:00

  Vuln: Oracle Java SE CVE-2012-0500 Java Runtime Environment Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Java SE CVE-2012-0500 Java Runtime Environment Remote Code Execution Vulnerability

  Tags:  oracle runtime environment java-runtime-environment oracle-java code-execution  

• April 13, 2012
• 0:00

  Vuln: Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

  Tags:  samba dce rpc code-execution vulnerability  

• 0:00

  Vuln: Quest InTrust 'AnnotateX.dll' Uninitialized Pointer Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Quest InTrust 'AnnotateX.dll' Uninitialized Pointer Code Execution Vulnerability

  Tags:  intrust quest annotatex code-execution vulnerability pointer  

• April 12, 2012
• 16:12

  Debian Security Advisory 2450-1

   » ‎ Packet Storm Security Advisories
  Debian Linux Security Advisory 2450-1 - It was discovered that Samba, the SMB/CIFS file, print, and login server, contained a flaw in the remote procedure call (RPC) code which allowed remote code execution as the super user from an unauthenticated connection.

  Tags:  advisory debian security code-execution linux-security debian-security  

• 16:12

  Debian Security Advisory 2450-1

   » ‎ Packet Storm Security Recent Files
  Debian Linux Security Advisory 2450-1 - It was discovered that Samba, the SMB/CIFS file, print, and login server, contained a flaw in the remote procedure call (RPC) code which allowed remote code execution as the super user from an unauthenticated connection.

  Tags:  advisory debian security code-execution linux-security debian-security  

• 16:12

  Debian Security Advisory 2450-1

   » ‎ Packet Storm Security Misc. Files
  Debian Linux Security Advisory 2450-1 - It was discovered that Samba, the SMB/CIFS file, print, and login server, contained a flaw in the remote procedure call (RPC) code which allowed remote code execution as the super user from an unauthenticated connection.

  Tags:  advisory debian security code-execution linux-security debian-security  

• 0:00

  Vuln: Microsoft Internet Explorer CVE-2012-0170 OnReadyStateChange Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Internet Explorer CVE-2012-0170 OnReadyStateChange Remote Code Execution Vulnerability

  Tags:  code-execution internet-explorer cve  

• 0:00

  Vuln: Microsoft Internet Explorer CVE-2012-0171 SelectAll Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Internet Explorer CVE-2012-0171 SelectAll Remote Code Execution Vulnerability

  Tags:  internet microsoft explorer code-execution internet-explorer cve  

• 0:00

  Vuln: Microsoft Internet Explorer CVE-2012-0169 JScript9 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Internet Explorer CVE-2012-0169 JScript9 Remote Code Execution Vulnerability

  Tags:  internet microsoft explorer code-execution internet-explorer cve  

• 0:00

  Vuln: Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

  Tags:  samba dce rpc code-execution vulnerability  

• April 11, 2012
• 14:00

  [remote exploits] - Mozilla Firefox Bootstrapped Addon Social Engineering Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [remote exploits] - Mozilla Firefox Bootstrapped Addon Social Engineering Code Execution

  Tags:  mozilla bootstrapped firefox code-execution social-engineering exploits  

• 14:00

  [remote exploits] - Mozilla Firefox Bootstrapped Addon Social Engineering Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [remote exploits] - Mozilla Firefox Bootstrapped Addon Social Engineering Code Execution

  Tags:  mozilla bootstrapped firefox code-execution social-engineering exploits  

• 7:50

  Mozilla Firefox Bootstrapped Addon Social Engineering Code Execution

   » ‎ Packet Storm Security Exploits
  This exploit dynamically creates a .xpi addon file. The resulting bootstrapped Firefox addon is presented to the victim via a web page with. The victim's Firefox browser will pop a dialog asking if they trust the addon. Once the user clicks "install", the addon is installed and executes the payload with full user permissions. As of Firefox 4, this will work without a restart as the addon is marked to be "bootstrapped". As the addon will execute the payload after each Firefox restart, an option can be given to automatically uninstall the addon once the payload has been executed.

  Tags:  addon payload firefox firefox-browser code-execution xpi  

• 7:50

  Mozilla Firefox Bootstrapped Addon Social Engineering Code Execution

   » ‎ Packet Storm Security Recent Files
  This exploit dynamically creates a .xpi addon file. The resulting bootstrapped Firefox addon is presented to the victim via a web page with. The victim's Firefox browser will pop a dialog asking if they trust the addon. Once the user clicks "install", the addon is installed and executes the payload with full user permissions. As of Firefox 4, this will work without a restart as the addon is marked to be "bootstrapped". As the addon will execute the payload after each Firefox restart, an option can be given to automatically uninstall the addon once the payload has been executed.

  Tags:  addon payload firefox firefox-browser code-execution xpi  

• 7:50

  Mozilla Firefox Bootstrapped Addon Social Engineering Code Execution

   » ‎ Packet Storm Security Misc. Files
  This exploit dynamically creates a .xpi addon file. The resulting bootstrapped Firefox addon is presented to the victim via a web page with. The victim's Firefox browser will pop a dialog asking if they trust the addon. Once the user clicks "install", the addon is installed and executes the payload with full user permissions. As of Firefox 4, this will work without a restart as the addon is marked to be "bootstrapped". As the addon will execute the payload after each Firefox restart, an option can be given to automatically uninstall the addon once the payload has been executed.

  Tags:  addon payload firefox firefox-browser code-execution xpi  

• 0:00

  Vuln: Microsoft Windows Common Controls ActiveX Control Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Windows Common Controls ActiveX Control Remote Code Execution Vulnerability

  Tags:  microsoft-windows-common-controls windows-common-controls code-execution  

• 0:00

  Vuln: Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability

  Tags:  code-execution samba vulnerability  

• 0:00

  Vuln: Microsoft Windows Authenticode Signature Verification Function Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Windows Authenticode Signature Verification Function Remote Code Execution Vulnerability

  Tags:  authenticode microsoft windows signature-verification code-execution microsoft-windows  

• April 10, 2012
• 0:00

  Vuln: IBM Tivoli Provisioning Manager Express ActiveX Control Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  IBM Tivoli Provisioning Manager Express ActiveX Control Remote Code Execution Vulnerability

  Tags:  ibm provisioning tivoli tivoli-provisioning-manager-express code-execution activex-control  

• 0:00

  Vuln: Microsoft .NET Framework Parameter Validation Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft .NET Framework Parameter Validation Remote Code Execution Vulnerability

  Tags:  parameter-validation code-execution microsoft-net-framework  

• April 09, 2012
• 21:31

  Zero Day Initiative Advisory 12-059

   » ‎ Packet Storm Security Advisories
  Zero Day Initiative Advisory 12-059 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists in the parsing of Ogg Vorbis media files. By crafting a stream with specific values , it is possible to cause a decoding loop that copies memory to write controlled data beyond the end of a fixed size buffer. An attacker can leverage this behavior to gain remote code execution under the context of the current process.

  Tags:  day zero initiative code-execution zero-day arbitrary-code  

• 21:31

  Zero Day Initiative Advisory 12-059

   » ‎ Packet Storm Security Recent Files
  Zero Day Initiative Advisory 12-059 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists in the parsing of Ogg Vorbis media files. By crafting a stream with specific values , it is possible to cause a decoding loop that copies memory to write controlled data beyond the end of a fixed size buffer. An attacker can leverage this behavior to gain remote code execution under the context of the current process.

  Tags:  day zero initiative code-execution zero-day arbitrary-code  

• 21:31

  Zero Day Initiative Advisory 12-059

   » ‎ Packet Storm Security Misc. Files
  Zero Day Initiative Advisory 12-059 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists in the parsing of Ogg Vorbis media files. By crafting a stream with specific values , it is possible to cause a decoding loop that copies memory to write controlled data beyond the end of a fixed size buffer. An attacker can leverage this behavior to gain remote code execution under the context of the current process.

  Tags:  day zero initiative code-execution zero-day arbitrary-code  

• 21:31

  Zero Day Initiative Advisory 12-058

   » ‎ Packet Storm Security Advisories
  Zero Day Initiative Advisory 12-058 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of AppleQuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw occurs when the application allocates space for decoding a video sample encoded with the .png format. When calculating space for this surface, the application will explicitly trust the bit-depth within the MediaVideo header. During the decoding process, the application will write outside the surface's boundaries. This can be leveraged to allow for one to earn code execution under the context of the application.

  Tags:  day zero application png-format code-execution zero-day  

• 21:31

  Zero Day Initiative Advisory 12-058

   » ‎ Packet Storm Security Recent Files
  Zero Day Initiative Advisory 12-058 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of AppleQuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw occurs when the application allocates space for decoding a video sample encoded with the .png format. When calculating space for this surface, the application will explicitly trust the bit-depth within the MediaVideo header. During the decoding process, the application will write outside the surface's boundaries. This can be leveraged to allow for one to earn code execution under the context of the application.

  Tags:  day zero application png-format code-execution zero-day  

• 21:31

  Zero Day Initiative Advisory 12-058

   » ‎ Packet Storm Security Misc. Files
  Zero Day Initiative Advisory 12-058 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of AppleQuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw occurs when the application allocates space for decoding a video sample encoded with the .png format. When calculating space for this surface, the application will explicitly trust the bit-depth within the MediaVideo header. During the decoding process, the application will write outside the surface's boundaries. This can be leveraged to allow for one to earn code execution under the context of the application.

  Tags:  day zero application png-format code-execution zero-day  

• 21:30

  Zero Day Initiative Advisory 12-057

   » ‎ Packet Storm Security Advisories
  Zero Day Initiative Advisory 12-057 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Flash Player handles the update of a NetStream object via the appendBytes method which can lead to a use-after-free condition when the function returns. This can result in remote code execution under the context of the current process.

  Tags:  day zero initiative adobe-flash-player code-execution zero-day  

• 21:30

  Zero Day Initiative Advisory 12-057

   » ‎ Packet Storm Security Recent Files
  Zero Day Initiative Advisory 12-057 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Flash Player handles the update of a NetStream object via the appendBytes method which can lead to a use-after-free condition when the function returns. This can result in remote code execution under the context of the current process.

  Tags:  day zero initiative adobe-flash-player code-execution zero-day  

• 21:30

  Zero Day Initiative Advisory 12-057

   » ‎ Packet Storm Security Misc. Files
  Zero Day Initiative Advisory 12-057 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Flash Player handles the update of a NetStream object via the appendBytes method which can lead to a use-after-free condition when the function returns. This can result in remote code execution under the context of the current process.

  Tags:  day zero initiative adobe-flash-player code-execution zero-day  

• 21:13

  Zero Day Initiative Advisory 12-056

   » ‎ Packet Storm Security Advisories
  Zero Day Initiative Advisory 12-056 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of nsSVGValue observers. A certain method call can be made to loop excessively causing an out-of-bounds memory access. By abusing this behavior an attacker can ensure this memory is under control and leverage the situation to achieve remote code execution under the context of the user running the browser.

  Tags:  day zero initiative code-execution memory-access zero-day  

• 21:13

  Zero Day Initiative Advisory 12-056

   » ‎ Packet Storm Security Recent Files
  Zero Day Initiative Advisory 12-056 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of nsSVGValue observers. A certain method call can be made to loop excessively causing an out-of-bounds memory access. By abusing this behavior an attacker can ensure this memory is under control and leverage the situation to achieve remote code execution under the context of the user running the browser.

  Tags:  day zero initiative code-execution memory-access zero-day  

• 21:13

  Zero Day Initiative Advisory 12-056

   » ‎ Packet Storm Security Misc. Files
  Zero Day Initiative Advisory 12-056 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of nsSVGValue observers. A certain method call can be made to loop excessively causing an out-of-bounds memory access. By abusing this behavior an attacker can ensure this memory is under control and leverage the situation to achieve remote code execution under the context of the user running the browser.

  Tags:  day zero initiative code-execution memory-access zero-day  

• 0:00

  Vuln: Oracle Java SE CVE-2012-0498 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Java SE CVE-2012-0498 Remote Code Execution Vulnerability

  Tags:  oracle code remote oracle-java code-execution cve  

• 0:00

  Vuln: Symantec pcAnywhere Host Services Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Symantec pcAnywhere Host Services Remote Code Execution Vulnerability

  Tags:  symantec-pcanywhere code-execution host-services  

• April 05, 2012
• 0:00

  Vuln: libTIFF CVE-2012-1173 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  libTIFF CVE-2012-1173 Remote Code Execution Vulnerability

  Tags:  code remote libtiff code-execution vulnerability  

• April 03, 2012
• 0:00

  Vuln: Oracle Java SE CVE-2012-0500 Java Runtime Environment Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Java SE CVE-2012-0500 Java Runtime Environment Remote Code Execution Vulnerability

  Tags:  oracle runtime environment java-runtime-environment oracle-java code-execution  

• March 28, 2012
• 21:00

  Quest InTrust 10.4.x Annotation Objects Code Execution

   » ‎ Packet Storm Security Exploits
  Quest InTrust version 10.4.x with Annotation Objects active-x control ANNOTATEX.DLL suffers from a remote code execution vulnerability. Proof of concept code included.

  Tags:  intrust code quest active-x-control code-execution proof-of-concept  

• 21:00

  Quest InTrust 10.4.x Annotation Objects Code Execution

   » ‎ Packet Storm Security Recent Files
  Quest InTrust version 10.4.x with Annotation Objects active-x control ANNOTATEX.DLL suffers from a remote code execution vulnerability. Proof of concept code included.

  Tags:  intrust code quest active-x-control code-execution proof-of-concept  

• 21:00

  Quest InTrust 10.4.x Annotation Objects Code Execution

   » ‎ Packet Storm Security Misc. Files
  Quest InTrust version 10.4.x with Annotation Objects active-x control ANNOTATEX.DLL suffers from a remote code execution vulnerability. Proof of concept code included.

  Tags:  intrust code quest active-x-control code-execution proof-of-concept  

• 14:00

  [webapps / 0day] - PhpTSMadmin 0.7.0 (functions.php) Remote Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - PhpTSMadmin 0.7.0 (functions.php) Remote Code Execution

  Tags:  day functions webapps code-execution  

• 14:00

  [webapps / 0day] - PHP SQL Server (MSSQL) Query Analyzer Remote Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - PHP SQL Server (MSSQL) Query Analyzer Remote Code Execution

  Tags:  day sql webapps code-execution query-analyzer  

• 14:00

  [webapps / 0day] - Family Connections 2.9 Php Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - Family Connections 2.9 Php Code Execution

  Tags:  day execution webapps code-execution family-connections  

• 13:04

  Bugtraq: Quest InTrust 10.4.x Annotation Objects ActiveX Control AnnotateX.dll Uninitialized Pointer Remote Code Execution

   » ‎ SecurityFocus Vulnerabilities
  Quest InTrust 10.4.x Annotation Objects ActiveX Control AnnotateX.dll Uninitialized Pointer Remote Code Execution

  Tags:  intrust quest annotation uninitialized-pointer code-execution  

• March 26, 2012
• 13:38

  Ricoh DC DL-10 SR10 FTP USER Command Buffer Overflow

   » ‎ Packet Storm Security Exploits
  This Metasploit module exploits a vulnerability found in Ricoh DC's DL-10 SR10 FTP service. By supplying a long string of data to the USER command, it is possible to trigger a stack-based buffer overflow, which allows remote code execution under the context of the user. Please note that in order to trigger the vulnerability, the server must be configured with a log file name (by default, it's disabled).

  Tags:  ricoh user ftp dc-dl- based-buffer-overflow code-execution  

• 13:38

  Ricoh DC DL-10 SR10 FTP USER Command Buffer Overflow

   » ‎ Packet Storm Security Recent Files
  This Metasploit module exploits a vulnerability found in Ricoh DC's DL-10 SR10 FTP service. By supplying a long string of data to the USER command, it is possible to trigger a stack-based buffer overflow, which allows remote code execution under the context of the user. Please note that in order to trigger the vulnerability, the server must be configured with a log file name (by default, it's disabled).

  Tags:  ricoh user ftp dc-dl- based-buffer-overflow code-execution  

• 13:38

  Ricoh DC DL-10 SR10 FTP USER Command Buffer Overflow

   » ‎ Packet Storm Security Misc. Files
  This Metasploit module exploits a vulnerability found in Ricoh DC's DL-10 SR10 FTP service. By supplying a long string of data to the USER command, it is possible to trigger a stack-based buffer overflow, which allows remote code execution under the context of the user. Please note that in order to trigger the vulnerability, the server must be configured with a log file name (by default, it's disabled).

  Tags:  ricoh user ftp dc-dl- based-buffer-overflow code-execution  

• 13:36

  FreePBX 2.10.0 / 2.9.0 callmenum Remote Code Execution

   » ‎ Packet Storm Security Exploits
  This Metasploit module exploits FreePBX version 2.10.0,2.9.0 and possibly older. Due to the way callme_page.php handles the 'callmenum' parameter, it is possible to inject code to the '$channel' variable in function callme_startcall in order to gain remote code execution. Please note in order to use this module properly, you must know the extension number, which can be enumerated or bruteforced, or you may try some of the default extensions such as 0 or 200. Also, the call has to be answered (or go to voice). Tested on both Elastix and FreePBX ISO image installs.

  Tags:  code freepbx callmenum default-extensions code-execution metasploit  

• 13:36

  FreePBX 2.10.0 / 2.9.0 callmenum Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  This Metasploit module exploits FreePBX version 2.10.0,2.9.0 and possibly older. Due to the way callme_page.php handles the 'callmenum' parameter, it is possible to inject code to the '$channel' variable in function callme_startcall in order to gain remote code execution. Please note in order to use this module properly, you must know the extension number, which can be enumerated or bruteforced, or you may try some of the default extensions such as 0 or 200. Also, the call has to be answered (or go to voice). Tested on both Elastix and FreePBX ISO image installs.

  Tags:  code freepbx callmenum default-extensions code-execution metasploit  

• 13:36

  FreePBX 2.10.0 / 2.9.0 callmenum Remote Code Execution

   » ‎ Packet Storm Security Misc. Files
  This Metasploit module exploits FreePBX version 2.10.0,2.9.0 and possibly older. Due to the way callme_page.php handles the 'callmenum' parameter, it is possible to inject code to the '$channel' variable in function callme_startcall in order to gain remote code execution. Please note in order to use this module properly, you must know the extension number, which can be enumerated or bruteforced, or you may try some of the default extensions such as 0 or 200. Also, the call has to be answered (or go to voice). Tested on both Elastix and FreePBX ISO image installs.

  Tags:  code freepbx callmenum default-extensions code-execution metasploit  

• 0:00

  Vuln: Google Chrome Prior to 17.0.963.79 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Google Chrome Prior to 17.0.963.79 Remote Code Execution Vulnerability

  Tags:  chrome google remote code-execution vulnerability  

• March 24, 2012
• 15:00

  [webapps / 0day] - FreePBX 2.10.0 / 2.9.0 callmenum Remote Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - FreePBX 2.10.0 / 2.9.0 callmenum Remote Code Execution

  Tags:  code-execution  

• 6:33

  Drupal FCKEditor/CKEditor PHP Execution

   » ‎ Packet Storm Security Exploits
  Drupal FCKEditor/CKEditor module remote PHP code execution exploit.

  Tags:  ckeditor remote execution code-execution fckeditor php-code  

• 6:33

  Drupal FCKEditor/CKEditor PHP Execution

   » ‎ Packet Storm Security Recent Files
  Drupal FCKEditor/CKEditor module remote PHP code execution exploit.

  Tags:  ckeditor remote execution code-execution fckeditor php-code  

• 6:33

  Drupal FCKEditor/CKEditor PHP Execution

   » ‎ Packet Storm Security Misc. Files
  Drupal FCKEditor/CKEditor module remote PHP code execution exploit.

  Tags:  ckeditor remote execution code-execution fckeditor php-code  

• March 23, 2012
• 16:46

  Apache Struts2 Local Code Execution

   » ‎ Packet Storm Security Exploits
  Apache Struts2 suffers from a xsltResult local code execution vulnerability.

  Tags:  code struts apache code-execution vulnerability  

• 16:46

  Apache Struts2 Local Code Execution

   » ‎ Packet Storm Security Recent Files
  Apache Struts2 suffers from a xsltResult local code execution vulnerability.

  Tags:  code struts apache code-execution vulnerability  

• 16:46

  Apache Struts2 Local Code Execution

   » ‎ Packet Storm Security Misc. Files
  Apache Struts2 suffers from a xsltResult local code execution vulnerability.

  Tags:  code struts apache code-execution vulnerability  

• 16:43

  FreePBX 2.10.0 / Elastic 2.2.0 Remote Code Execution

   » ‎ Packet Storm Security Exploits
  FreePBX version 2.10.0 and Elastic version 2.2.0 remote root code execution exploit.

  Tags:  code elastic freepbx code-execution root-code  

• 16:43

  FreePBX 2.10.0 / Elastic 2.2.0 Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  FreePBX version 2.10.0 and Elastic version 2.2.0 remote root code execution exploit.

  Tags:  code elastic freepbx code-execution root-code  

• 16:43

  FreePBX 2.10.0 / Elastic 2.2.0 Remote Code Execution

   » ‎ Packet Storm Security Misc. Files
  FreePBX version 2.10.0 and Elastic version 2.2.0 remote root code execution exploit.

  Tags:  code elastic freepbx code-execution root-code  

• 10:00

  Bugtraq: struts2 xsltResult Local code execution vulnerability

   » ‎ SecurityFocus Vulnerabilities
  struts2 xsltResult Local code execution vulnerability

  Tags:  execution struts xsltresult code-execution vulnerability  

• March 22, 2012
• 0:00

  Vuln: Microsoft Internet Explorer Cloned DOM Object Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Internet Explorer Cloned DOM Object Remote Code Execution Vulnerability

  Tags:  internet microsoft explorer dom-object code-execution internet-explorer  

• March 21, 2012
• 20:59

  Dell Webcam CrazyTalk ActiveX BackImage Vulnerability

   » ‎ Packet Storm Security Exploits
  This Metasploit module exploits a vulnerability in Dell Webcam's CrazyTalk component. Specifically, when supplying a long string for a file path to the BackImage property, an overflow may occur after checking certain file extension names, resulting in remote code execution under the context of the user.

  Tags:  crazytalk code-execution file-extension  

• 20:59

  Dell Webcam CrazyTalk ActiveX BackImage Vulnerability

   » ‎ Packet Storm Security Recent Files
  This Metasploit module exploits a vulnerability in Dell Webcam's CrazyTalk component. Specifically, when supplying a long string for a file path to the BackImage property, an overflow may occur after checking certain file extension names, resulting in remote code execution under the context of the user.

  Tags:  backimage vulnerability crazytalk dell-webcam code-execution file-extension  

• 20:59

  Dell Webcam CrazyTalk ActiveX BackImage Vulnerability

   » ‎ Packet Storm Security Misc. Files
  This Metasploit module exploits a vulnerability in Dell Webcam's CrazyTalk component. Specifically, when supplying a long string for a file path to the BackImage property, an overflow may occur after checking certain file extension names, resulting in remote code execution under the context of the user.

  Tags:  backimage vulnerability crazytalk dell-webcam code-execution file-extension  

• 15:00

  [remote exploits] - Internet Explorer (ExeC) ActiveX Remote Code Execution or download

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [remote exploits] - Internet Explorer (ExeC) ActiveX Remote Code Execution or download

  Tags:  internet explorer exec code-execution internet-explorer exploits  

• 0:00

  Vuln: Apple Safari 'libxml' (CVE-2011-0216) Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Apple Safari 'libxml' (CVE-2011-0216) Remote Code Execution Vulnerability

  Tags:  safari remote libxml apple-safari code-execution  

• March 20, 2012
• 18:16

  FreePBX 2.10.0 Remote Command Execution / XSS

   » ‎ Packet Storm Security Exploits
  FreePBX versions 2.10.0, 2.9.0, and perhaps earlier versions suffer from cross site scripting and remote code execution vulnerabilities.

  Tags:  freepbx remote execution command-execution code-execution cross-site-scripting  

• 18:16

  FreePBX 2.10.0 Remote Command Execution / XSS

   » ‎ Packet Storm Security Recent Files
  FreePBX versions 2.10.0, 2.9.0, and perhaps earlier versions suffer from cross site scripting and remote code execution vulnerabilities.

  Tags:  freepbx remote execution command-execution code-execution cross-site-scripting  

• 18:16

  FreePBX 2.10.0 Remote Command Execution / XSS

   » ‎ Packet Storm Security Misc. Files
  FreePBX versions 2.10.0, 2.9.0, and perhaps earlier versions suffer from cross site scripting and remote code execution vulnerabilities.

  Tags:  freepbx remote execution command-execution code-execution cross-site-scripting  

• March 19, 2012
• 15:48

  LANDesk Lenovo ThinkManagement Suite 9.0.3 Code Execution

   » ‎ Packet Storm Security Exploits
  LANDesk Lenovo ThinkManagement Suite version 9.0.3 suffers from a core server remote code execution vulnerability.

  Tags:  suite lenovo landesk code-execution core-server  

• 15:48

  LANDesk Lenovo ThinkManagement Suite 9.0.3 Code Execution

   » ‎ Packet Storm Security Recent Files
  LANDesk Lenovo ThinkManagement Suite version 9.0.3 suffers from a core server remote code execution vulnerability.

  Tags:  code-execution core-server lenovo  

• 15:48

  LANDesk Lenovo ThinkManagement Suite 9.0.3 Code Execution

   » ‎ Packet Storm Security Misc. Files
  LANDesk Lenovo ThinkManagement Suite version 9.0.3 suffers from a core server remote code execution vulnerability.

  Tags:  thinkmanagement lenovo landesk code-execution core-server  

• 15:00

  [remote exploits] - LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [remote exploits] - LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server Code Execution

  Tags:  exploit remote thinkmanagement code-execution server-code core-server  

• March 16, 2012
• 0:00

  Vuln: Microsoft Remote Desktop Protocol CVE-2012-0002 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Remote Desktop Protocol CVE-2012-0002 Remote Code Execution Vulnerability

  Tags:  desktop microsoft remote desktop-protocol code-execution vulnerability  

• 0:00

  Vuln: Google Chrome Prior to 17.0.963.79 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Google Chrome Prior to 17.0.963.79 Remote Code Execution Vulnerability

  Tags:  chrome google remote code-execution vulnerability  

• March 15, 2012
• 8:29

  NetDecision 4.5.1 HTTP Server Buffer Overflow

   » ‎ Packet Storm Security Exploits
  This Metasploit module exploits a vulnerability found in NetDecision's HTTP service (located in C:\Program Files\NetDecision\Bin\HttpSvr.exe). By supplying a long string of data to the URL, an overflow may occur if the data gets handled by HTTP Server's active window. In other words, in order to gain remote code execution, the victim is probably looking at HttpSvr's window.

  Tags:  server netdecision http buffer-overflow code-execution c-program  

• 8:29

  NetDecision 4.5.1 HTTP Server Buffer Overflow

   » ‎ Packet Storm Security Recent Files
  This Metasploit module exploits a vulnerability found in NetDecision's HTTP service (located in C:\Program Files\NetDecision\Bin\HttpSvr.exe). By supplying a long string of data to the URL, an overflow may occur if the data gets handled by HTTP Server's active window. In other words, in order to gain remote code execution, the victim is probably looking at HttpSvr's window.

  Tags:  buffer-overflow code-execution c-program  

• 8:29

  NetDecision 4.5.1 HTTP Server Buffer Overflow

   » ‎ Packet Storm Security Misc. Files
  This Metasploit module exploits a vulnerability found in NetDecision's HTTP service (located in C:\Program Files\NetDecision\Bin\HttpSvr.exe). By supplying a long string of data to the URL, an overflow may occur if the data gets handled by HTTP Server's active window. In other words, in order to gain remote code execution, the victim is probably looking at HttpSvr's window.

  Tags:  server netdecision http buffer-overflow code-execution c-program  

• 0:00

  Vuln: Microsoft Remote Desktop Protocol CVE-2012-0002 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Remote Desktop Protocol CVE-2012-0002 Remote Code Execution Vulnerability

  Tags:  desktop microsoft remote desktop-protocol code-execution vulnerability  

• March 14, 2012
• 19:58

  Drupal CKEditor / FCKeditor XSS / XSRF / Code Execution

   » ‎ Packet Storm Security Advisories
  CKEditor and FCKeditor modules in Drupal versions 6.x and 7.x suffer from PHP code execution, cross site request forgery, and cross site scripting vulnerabilities.

  Tags:  fckeditor ckeditor drupal code-execution  

• 19:58

  Drupal CKEditor / FCKeditor XSS / XSRF / Code Execution

   » ‎ Packet Storm Security Recent Files
  CKEditor and FCKeditor modules in Drupal versions 6.x and 7.x suffer from PHP code execution, cross site request forgery, and cross site scripting vulnerabilities.

  Tags:  fckeditor ckeditor drupal code-execution  

• 19:58

  Drupal CKEditor / FCKeditor XSS / XSRF / Code Execution

   » ‎ Packet Storm Security Misc. Files
  CKEditor and FCKeditor modules in Drupal versions 6.x and 7.x suffer from PHP code execution, cross site request forgery, and cross site scripting vulnerabilities.

  Tags:  fckeditor ckeditor drupal code-execution  

• 0:00

  Vuln: Adobe Flash Player CVE-2011-2428 Logic Error Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Adobe Flash Player CVE-2011-2428 Logic Error Remote Code Execution Vulnerability

  Tags:  player adobe flash logic-error adobe-flash-player code-execution  

• 0:00

  Vuln: Cisco Adaptive Security Appliances (ASA) 5500 Clientless VPN Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Cisco Adaptive Security Appliances (ASA) 5500 Clientless VPN Remote Code Execution Vulnerability

  Tags:  remote clientless security cisco-adaptive security-appliances code-execution adaptive-security  

• 0:00

  Vuln: FreeType TrueType Font Handling 'ttinterp.c' Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  FreeType TrueType Font Handling 'ttinterp.c' Remote Code Execution Vulnerability

  Tags:  truetype font freetype code-execution vulnerability  

• March 13, 2012
• 0:00

  Vuln: HP Data Protector Express Multiple Unspecified Remote Code Execution Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  HP Data Protector Express Multiple Unspecified Remote Code Execution Vulnerabilities

  Tags:  multiple express remote code-execution data-protector  

• 0:00

  Vuln: Microsoft Remote Desktop Protocol CVE-2012-0002 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Remote Desktop Protocol CVE-2012-0002 Remote Code Execution Vulnerability

  Tags:  desktop microsoft remote desktop-protocol code-execution vulnerability  

• March 10, 2012
• 0:00

  Vuln: Google Chrome Prior to 17.0.963.79 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Google Chrome Prior to 17.0.963.79 Remote Code Execution Vulnerability

  Tags:  chrome google remote code-execution vulnerability  

• March 09, 2012
• 7:44

  PyPAM 0.4.2 Double-Free Corruption

   » ‎ Packet Storm Security Exploits
  By supplying a NULL-byte to the PyPAM module, a double-free condition is triggered. This condition may allow for remote code execution. Proof of concept included.

  Tags:  pypam condition double null-byte code-execution proof-of-concept  

• 7:44

  PyPAM 0.4.2 Double-Free Corruption

   » ‎ Packet Storm Security Recent Files
  By supplying a NULL-byte to the PyPAM module, a double-free condition is triggered. This condition may allow for remote code execution. Proof of concept included.

  Tags:  pypam condition double null-byte code-execution proof-of-concept  

• 7:44

  PyPAM 0.4.2 Double-Free Corruption

   » ‎ Packet Storm Security Misc. Files
  By supplying a NULL-byte to the PyPAM module, a double-free condition is triggered. This condition may allow for remote code execution. Proof of concept included.

  Tags:  null-byte code-execution proof-of-concept  

• March 08, 2012
• 0:00

  Vuln: Adobe Flash Player CVE-2012-0768 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Adobe Flash Player CVE-2012-0768 Remote Code Execution Vulnerability

  Tags:  player adobe flash code-execution adobe-flash-player vulnerability  

• 0:00

  Vuln: ioQuake3 Engine Multiple Remote Code Execution Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  ioQuake3 Engine Multiple Remote Code Execution Vulnerabilities

  Tags:  engine multiple ioquake code-execution  

• March 07, 2012
• 18:05

  Adobe Flash Player .mp4 'cprt' Overflow

   » ‎ Packet Storm Security Exploits
  This Metasploit module exploits a vulnerability found in Adobe Flash Player. By supplying a corrupt .mp4 file loaded by Flash, it is possible to gain arbitrary remote code execution under the context of the user. This vulnerability has been exploited in the wild as part of the "Iran's Oil and Nuclear Situation.doc" phishing campaign.

  Tags:  player adobe flash iran adobe-flash-player nuclear-situation code-execution  

• 18:05

  Adobe Flash Player .mp4 'cprt' Overflow

   » ‎ Packet Storm Security Recent Files
  This Metasploit module exploits a vulnerability found in Adobe Flash Player. By supplying a corrupt .mp4 file loaded by Flash, it is possible to gain arbitrary remote code execution under the context of the user. This vulnerability has been exploited in the wild as part of the "Iran's Oil and Nuclear Situation.doc" phishing campaign.

  Tags:  player adobe flash iran adobe-flash-player nuclear-situation code-execution  

• 18:05

  Adobe Flash Player .mp4 'cprt' Overflow

   » ‎ Packet Storm Security Misc. Files
  This Metasploit module exploits a vulnerability found in Adobe Flash Player. By supplying a corrupt .mp4 file loaded by Flash, it is possible to gain arbitrary remote code execution under the context of the user. This vulnerability has been exploited in the wild as part of the "Iran's Oil and Nuclear Situation.doc" phishing campaign.

  Tags:  player adobe flash iran adobe-flash-player nuclear-situation code-execution  

• 0:00

  Vuln: Adobe Flash Player CVE-2012-0769 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Adobe Flash Player CVE-2012-0769 Remote Code Execution Vulnerability

  Tags:  player adobe flash code-execution adobe-flash-player vulnerability  

• 0:00

  Vuln: Adobe Flash Player CVE-2012-0768 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Adobe Flash Player CVE-2012-0768 Remote Code Execution Vulnerability

  Tags:  player adobe flash code-execution adobe-flash-player vulnerability  

• March 06, 2012
• 0:00

  Vuln: Adobe Flash Player CVE-2012-0769 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Adobe Flash Player CVE-2012-0769 Remote Code Execution Vulnerability

  Tags:  player adobe flash code-execution adobe-flash-player vulnerability  

• March 05, 2012
• 7:48

  Sysax 5.53 SSH Username Buffer Overflow

   » ‎ Packet Storm Security Exploits
  This Metasploit module exploits a vulnerability found in Sysax's SSH service. By supplying a long username, the SSH server will copy that data on the stack without any proper bounds checking, therefore allowing remote code execution under the context of the user. Please note that previous versions (before 5.53) are also affected by this bug.

  Tags:  username sysax ssh code-execution buffer-overflow proper-bounds  

• 7:48

  Sysax 5.53 SSH Username Buffer Overflow

   » ‎ Packet Storm Security Recent Files
  This Metasploit module exploits a vulnerability found in Sysax's SSH service. By supplying a long username, the SSH server will copy that data on the stack without any proper bounds checking, therefore allowing remote code execution under the context of the user. Please note that previous versions (before 5.53) are also affected by this bug.

  Tags:  username sysax ssh code-execution buffer-overflow proper-bounds  

• 7:48

  Sysax 5.53 SSH Username Buffer Overflow

   » ‎ Packet Storm Security Misc. Files
  This Metasploit module exploits a vulnerability found in Sysax's SSH service. By supplying a long username, the SSH server will copy that data on the stack without any proper bounds checking, therefore allowing remote code execution under the context of the user. Please note that previous versions (before 5.53) are also affected by this bug.

  Tags:  username sysax ssh code-execution buffer-overflow proper-bounds  

• 0:00

  Vuln: Oracle Outside In CVE-2012-0110 Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Outside In CVE-2012-0110 Remote Code Execution Vulnerability

  Tags:  code oracle remote code-execution cve vulnerability  

• March 01, 2012
• 14:00

  [dos / poc] - Novell Groupwise Address Book Remote Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [dos / poc] - Novell Groupwise Address Book Remote Code Execution

  Tags:  novell poc groupwise groupwise-address-book novell-groupwise code-execution  

• 0:00

  Vuln: Adobe Shockwave Player CVE-2011-2113 Multiple Remote Code Execution Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Adobe Shockwave Player CVE-2011-2113 Multiple Remote Code Execution Vulnerabilities

  Tags:  shockwave player adobe adobe-shockwave-player code-execution  

• February 29, 2012
• 19:16

  Novell Groupwise Address Book Code Execution

   » ‎ Packet Storm Security Exploits
  Novell Groupwise Address Book suffers from a remote code execution vulnerability.

  Tags:  novell address groupwise groupwise-address-book novell-groupwise code-execution  

• 19:16

  Novell Groupwise Address Book Code Execution

   » ‎ Packet Storm Security Recent Files
  Novell Groupwise Address Book suffers from a remote code execution vulnerability.

  Tags:  novell address groupwise groupwise-address-book novell-groupwise code-execution  

• 19:16

  Novell Groupwise Address Book Code Execution

   » ‎ Packet Storm Security Misc. Files
  Novell Groupwise Address Book suffers from a remote code execution vulnerability.

  Tags:  novell address groupwise groupwise-address-book novell-groupwise code-execution  

• 8:09

  Microsoft Internet Explorer 8 Code Execution

   » ‎ Packet Storm Security Exploits
  This is a proof of concept exploit that allows an attacker to execute arbitrary code via vectors involving a dereferenced memory address in Microsoft Internet Explorer 8. It leverages the issue discussed in MS11-081. The exploit is slightly crippled by the author.

  Tags:  internet-explorer-8 code-execution memory-address  

• 8:09

  Microsoft Internet Explorer 8 Code Execution

   » ‎ Packet Storm Security Recent Files
  This is a proof of concept exploit that allows an attacker to execute arbitrary code via vectors involving a dereferenced memory address in Microsoft Internet Explorer 8. It leverages the issue discussed in MS11-081. The exploit is slightly crippled by the author.

  Tags:  internet-explorer-8 code-execution memory-address  

• 8:09

  Microsoft Internet Explorer 8 Code Execution

   » ‎ Packet Storm Security Misc. Files
  This is a proof of concept exploit that allows an attacker to execute arbitrary code via vectors involving a dereferenced memory address in Microsoft Internet Explorer 8. It leverages the issue discussed in MS11-081. The exploit is slightly crippled by the author.

  Tags:  internet-explorer-8 code-execution memory-address  

• February 27, 2012
• 13:11

  Sysax 5.53 SSH Username Buffer Overflow Exploit

   » ‎ Packet Storm Security Exploits
  Sysax Multi Server versions 5.53 and below SSH username buffer overflow pre-authentication remote code execution exploit with egghunter shellcode that binds a shell to port 4444.

  Tags:  username sysax ssh port-4444 buffer-overflow code-execution  

• 13:11

  Sysax 5.53 SSH Username Buffer Overflow Exploit

   » ‎ Packet Storm Security Recent Files
  Sysax Multi Server versions 5.53 and below SSH username buffer overflow pre-authentication remote code execution exploit with egghunter shellcode that binds a shell to port 4444.

  Tags:  username sysax ssh port-4444 buffer-overflow code-execution  

• 13:11

  Sysax 5.53 SSH Username Buffer Overflow Exploit

   » ‎ Packet Storm Security Misc. Files
  Sysax Multi Server versions 5.53 and below SSH username buffer overflow pre-authentication remote code execution exploit with egghunter shellcode that binds a shell to port 4444.

  Tags:  username sysax ssh port-4444 buffer-overflow code-execution  

• 9:00

  Bugtraq: NGS00237 Patch Notification: Samba Andx request Remote Code Execution

   » ‎ SecurityFocus Vulnerabilities
  NGS00237 Patch Notification: Samba Andx request Remote Code Execution

  Tags:  samba notification ngs andx code-execution  

• 6:22

  Samba Remote Code Execution

   » ‎ Packet Storm Security Advisories
  Samba versions up to 3.4.0 suffer from a code execution vulnerability.

  Tags:  code samba execution code-execution vulnerability  

• 6:22

  Samba Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  Samba versions up to 3.4.0 suffer from a code execution vulnerability.

  Tags:  code samba execution code-execution vulnerability  

• 6:22

  Samba Remote Code Execution

   » ‎ Packet Storm Security Misc. Files
  Samba versions up to 3.4.0 suffer from a code execution vulnerability.

  Tags:  code samba execution code-execution vulnerability  

• 0:00

  Vuln: HP OpenView Storage Data Protector Multiple Remote Code Execution Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  HP OpenView Storage Data Protector Multiple Remote Code Execution Vulnerabilities

  Tags:  openview data storage code-execution data-protector storage-data  

• 0:00

  Vuln: Mozilla Firefox/Thunderbird/SeaMonkey 'Array.reduceRight()' Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Mozilla Firefox/Thunderbird/SeaMonkey 'Array.reduceRight()' Remote Code Execution Vulnerability

  Tags:  mozilla firefox thunderbird mozilla-firefox code-execution seamonkey  

• February 25, 2012
• 14:00

  [remote exploits] - HP Data Protector 6.1 EXEC_CMD Remote Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [remote exploits] - HP Data Protector 6.1 EXEC_CMD Remote Code Execution

  Tags:  exploit remote exec code-execution exec-cmd data-protector  

• February 24, 2012
• 15:07

  HP Data Protector 6.1 EXEC_CMD Remote Code Execution

   » ‎ Packet Storm Security Exploits
  This exploit abuses a vulnerability in the HP Data Protector service. This flaw allows an unauthenticated attacker to take advantage of the EXEC_CMD command and traverse back to /bin/sh, this allows arbitrary remote code execution under the context of root.

  Tags:  protector exec data code-execution exec-cmd data-protector  

• 15:07

  HP Data Protector 6.1 EXEC_CMD Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  This exploit abuses a vulnerability in the HP Data Protector service. This flaw allows an unauthenticated attacker to take advantage of the EXEC_CMD command and traverse back to /bin/sh, this allows arbitrary remote code execution under the context of root.

  Tags:  protector exec data code-execution exec-cmd data-protector  

• 15:07

  HP Data Protector 6.1 EXEC_CMD Remote Code Execution

   » ‎ Packet Storm Security Misc. Files
  This exploit abuses a vulnerability in the HP Data Protector service. This flaw allows an unauthenticated attacker to take advantage of the EXEC_CMD command and traverse back to /bin/sh, this allows arbitrary remote code execution under the context of root.

  Tags:  protector exec data code-execution exec-cmd data-protector  

• 15:05

  BlackBerry PlayBook Samba Remote Code Execution

   » ‎ Packet Storm Security Advisories
  BlackBerry PlayBook suffers from a samba related code execution vulnerability. Tablet versions prior to 2.0.0.7971 are affected.

  Tags:  playbook samba blackberry code-execution  

• 15:05

  BlackBerry PlayBook Samba Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  BlackBerry PlayBook suffers from a samba related code execution vulnerability. Tablet versions prior to 2.0.0.7971 are affected.

  Tags:  playbook samba blackberry code-execution  

• 15:05

  BlackBerry PlayBook Samba Remote Code Execution

   » ‎ Packet Storm Security Misc. Files
  BlackBerry PlayBook suffers from a samba related code execution vulnerability. Tablet versions prior to 2.0.0.7971 are affected.

  Tags:  playbook samba blackberry code-execution  

• 14:00

  [webapps / 0day] - The Uploader 2.0.4 (Eng/Ita) Remote File Upload Remote Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - The Uploader 2.0.4 (Eng/Ita) Remote File Upload Remote Code Execution

  Tags:  uploader day remote code-execution file-upload ita  

• 11:00

  Bugtraq: NGS00120 Patch Notification: BlackBerry PlayBook Samba Remote Code Execution

   » ‎ SecurityFocus Vulnerabilities
  NGS00120 Patch Notification: BlackBerry PlayBook Samba Remote Code Execution

  Tags:  notification ngs blackberry code-execution playbook samba  

• 10:00

  Bugtraq: ZDI-12-037 : Oracle Java Web Start JNLP Double Quote Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  ZDI-12-037 : Oracle Java Web Start JNLP Double Quote Remote Code Execution Vulnerability

  Tags:  oracle remote start java-web-start oracle-java code-execution  

• 10:00

  Bugtraq: ZDI-12-038 : Oracle Java JavaFX Arbitrary Argument Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  ZDI-12-038 : Oracle Java JavaFX Arbitrary Argument Remote Code Execution Vulnerability

  Tags:  oracle code remote oracle-java code-execution zdi  

• 10:00

  Bugtraq: ZDI-12-039 : Oracle Java Web Start java-vm-args Command Argument Injection Remote Code Execution

   » ‎ SecurityFocus Vulnerabilities
  ZDI-12-039 : Oracle Java Web Start java-vm-args Command Argument Injection Remote Code Execution

  Tags:  oracle start java-vm-args java-web-start oracle-java code-execution  

• 9:00

  Bugtraq: ZDI-12-033 : ABB WebWare RobNetScanHost.exe Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  ZDI-12-033 : ABB WebWare RobNetScanHost.exe Remote Code Execution Vulnerability

  Tags:  robnetscanhost abb webware code-execution zdi  

• 9:00

  Bugtraq: TPTI-12-01 : Oracle Java True Type Font IDEF Opcode Parsing Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  TPTI-12-01 : Oracle Java True Type Font IDEF Opcode Parsing Remote Code Execution Vulnerability

  Tags:  java true oracle oracle-java tpti code-execution  

• 0:00

  Vuln: Trend Micro Control Manager 'CmdProcessor.exe' Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Trend Micro Control Manager 'CmdProcessor.exe' Remote Code Execution Vulnerability

  Tags:  control trend micro code-execution micro-control trend-micro  

• 0:00

  Vuln: Oracle Java SE CVE-2012-0500 Java Runtime Environment Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Java SE CVE-2012-0500 Java Runtime Environment Remote Code Execution Vulnerability

  Tags:  oracle runtime environment java-runtime-environment oracle-java code-execution  

• February 22, 2012
• 21:30

  Oracle Java True Type Font IDEF Opcode Parsing Remote Code Execution

   » ‎ Packet Storm Security Advisories
  A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Java handles True Type Font files. When reading a font file, Java will use the MaxInstructionSize from the maxp table to create a heap memory location to store all the Instruction Definition found in the Font Program 'fpgm' table. However, when Java encounters an IDEF opcode (0x89) in the opcode stream it never checks the size of the MaxInstructionSize which can result in a heap buffer overflow. This can lead to remote code execution under the context of the current process.

  Tags:  java opcode font heap-memory oracle-java code-execution  

• 21:30

  Oracle Java True Type Font IDEF Opcode Parsing Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Java handles True Type Font files. When reading a font file, Java will use the MaxInstructionSize from the maxp table to create a heap memory location to store all the Instruction Definition found in the Font Program 'fpgm' table. However, when Java encounters an IDEF opcode (0x89) in the opcode stream it never checks the size of the MaxInstructionSize which can result in a heap buffer overflow. This can lead to remote code execution under the context of the current process.

  Tags:  java opcode font heap-memory oracle-java code-execution  

• 21:30

  Oracle Java True Type Font IDEF Opcode Parsing Remote Code Execution

   » ‎ Packet Storm Security Misc. Files
  A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Java handles True Type Font files. When reading a font file, Java will use the MaxInstructionSize from the maxp table to create a heap memory location to store all the Instruction Definition found in the Font Program 'fpgm' table. However, when Java encounters an IDEF opcode (0x89) in the opcode stream it never checks the size of the MaxInstructionSize which can result in a heap buffer overflow. This can lead to remote code execution under the context of the current process.

  Tags:  java opcode font heap-memory oracle-java code-execution  

• 21:22

  Zero Day Initiative Advisory 12-038

   » ‎ Packet Storm Security Advisories
  Zero Day Initiative Advisory 12-038 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within JavaFX, a downloadable Java extension. The JavaFX Jar file is signed by Oracle and can be installed without user interaction. Once installed it is possible to invoke the main method of any trusted class with arbitrary arguments and with a trusted call stack. This can be leveraged to remote code execution under the context of the user.

  Tags:  day zero user oracle-java code-execution java-extension  

• 21:22

  Zero Day Initiative Advisory 12-038

   » ‎ Packet Storm Security Recent Files
  Zero Day Initiative Advisory 12-038 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within JavaFX, a downloadable Java extension. The JavaFX Jar file is signed by Oracle and can be installed without user interaction. Once installed it is possible to invoke the main method of any trusted class with arbitrary arguments and with a trusted call stack. This can be leveraged to remote code execution under the context of the user.

  Tags:  day zero user oracle-java code-execution java-extension  

• 21:22

  Zero Day Initiative Advisory 12-038

   » ‎ Packet Storm Security Misc. Files
  Zero Day Initiative Advisory 12-038 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within JavaFX, a downloadable Java extension. The JavaFX Jar file is signed by Oracle and can be installed without user interaction. Once installed it is possible to invoke the main method of any trusted class with arbitrary arguments and with a trusted call stack. This can be leveraged to remote code execution under the context of the user.

  Tags:  day zero user oracle-java code-execution java-extension  

• 20:47

  Zero Day Initiative Advisory 12-032

   » ‎ Packet Storm Security Advisories
  Zero Day Initiative Advisory 12-032 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle's Java Runtime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the application parses structures for a specific tag descriptor with a specific ICC color profile. When handling a field from this structure, the application will incorrectly check for signedness and then perform an operation on it. This will then get passed to an allocation. Immediately following this, the application will use a different size to initialize the allocation. This can lead to a controllable memory corruption which can be leveraged to achieve code execution under the context of the application.

  Tags:  day zero application memory-corruption code-execution zero-day  

• 0:00

  Vuln: Microsoft Internet Explorer Use-After-Free Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Internet Explorer Use-After-Free Remote Code Execution Vulnerability

  Tags:  code-execution internet-explorer vulnerability  

• 0:00

  Vuln: Microsoft Internet Explorer CVE-2012-0155 VML Handling Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Internet Explorer CVE-2012-0155 VML Handling Remote Code Execution Vulnerability

  Tags:  code-execution internet-explorer vulnerability  

• February 20, 2012
• 4:55

  VOXTRONIC Voxlog Professional 3.7.2.729 SQL Injection / Disclosure

   » ‎ Packet Storm Security Exploits
  VOXTRONIC Voxlog Professional versions 3.7.2.729 and below suffer from file disclosure, remote code execution, and remote SQL injection vulnerabilities.

  Tags:  voxtronic voxlog professional code-execution professional-versions disclosure  

• 4:55

  VOXTRONIC Voxlog Professional 3.7.2.729 SQL Injection / Disclosure

   » ‎ Packet Storm Security Recent Files
  VOXTRONIC Voxlog Professional versions 3.7.2.729 and below suffer from file disclosure, remote code execution, and remote SQL injection vulnerabilities.

  Tags:  voxtronic voxlog professional code-execution professional-versions disclosure  

• 4:55

  VOXTRONIC Voxlog Professional 3.7.2.729 SQL Injection / Disclosure

   » ‎ Packet Storm Security Misc. Files
  VOXTRONIC Voxlog Professional versions 3.7.2.729 and below suffer from file disclosure, remote code execution, and remote SQL injection vulnerabilities.

  Tags:  voxtronic voxlog professional code-execution professional-versions disclosure  

• February 17, 2012
• 19:21

  PHP 5.2.17 Information Disclosure / Code Execution

   » ‎ Packet Storm Security Advisories
  PHP versions 5.2.0 through 5.2.17 suffers from an information disclosure and possible code execution vulnerability due to the filter_globals struct not being clean up during the shutdown stage.

  Tags:  disclosure php information code-execution information-disclosure globals  

• 19:21

  PHP 5.2.17 Information Disclosure / Code Execution

   » ‎ Packet Storm Security Recent Files
  PHP versions 5.2.0 through 5.2.17 suffers from an information disclosure and possible code execution vulnerability due to the filter_globals struct not being clean up during the shutdown stage.

  Tags:  disclosure php information code-execution information-disclosure globals  

• 19:21

  PHP 5.2.17 Information Disclosure / Code Execution

   » ‎ Packet Storm Security Misc. Files
  PHP versions 5.2.0 through 5.2.17 suffers from an information disclosure and possible code execution vulnerability due to the filter_globals struct not being clean up during the shutdown stage.

  Tags:  disclosure php information code-execution information-disclosure globals  

• 14:00

  [remote exploits] - Horde 3.3.12 Backdoor Arbitrary PHP Code Execution

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [remote exploits] - Horde 3.3.12 Backdoor Arbitrary PHP Code Execution

  Tags:  code-execution php-code horde  

• 10:00

  Bugtraq: PHP 5.2.x Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  PHP 5.2.x Remote Code Execution Vulnerability

  Tags:  code remote execution code-execution php-5 bugtraq  

• 0:00

  Vuln: Oracle Java SE and Java for Business 'MixerSequencer' Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Java SE and Java for Business 'MixerSequencer' Remote Code Execution Vulnerability

  Tags:  java oracle business oracle-java code-execution vulnerability  

• 0:00

  Vuln: t1lib Type 1 Font Parsing Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  t1lib Type 1 Font Parsing Remote Code Execution Vulnerability

  Tags:  font type lib code-execution vulnerability  

• 0:00

  Vuln: Evince Multiple Remote Code Execution Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Evince Multiple Remote Code Execution Vulnerabilities

  Tags:  multiple evince remote code-execution  

• 0:00

  Vuln: RETIRED: HP Printers and HP Digital Sender Firmware Update Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  RETIRED: HP Printers and HP Digital Sender Firmware Update Remote Code Execution Vulnerability

  Tags:  hp-digital-sender hp-printers code-execution  

• February 16, 2012
• 19:27

  Horde 3.3.12 Backdoor Arbitrary PHP Code Execution

   » ‎ Packet Storm Security Exploits
  This Metasploit module exploits an arbitrary PHP code execution vulnerability introduced as a backdoor into Horde 3.3.12 and Horde Groupware 1.2.10.

  Tags:  backdoor php horde code-execution php-code  

• 19:27

  Horde 3.3.12 Backdoor Arbitrary PHP Code Execution

   » ‎ Packet Storm Security Recent Files
  This Metasploit module exploits an arbitrary PHP code execution vulnerability introduced as a backdoor into Horde 3.3.12 and Horde Groupware 1.2.10.

  Tags:  backdoor php horde code-execution php-code  

• 19:27

  Horde 3.3.12 Backdoor Arbitrary PHP Code Execution

   » ‎ Packet Storm Security Misc. Files
  This Metasploit module exploits an arbitrary PHP code execution vulnerability introduced as a backdoor into Horde 3.3.12 and Horde Groupware 1.2.10.

  Tags:  backdoor php horde code-execution php-code  

• 0:00

  Vuln: t1lib Type 1 Font Parsing Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  t1lib Type 1 Font Parsing Remote Code Execution Vulnerability

  Tags:  font type lib code-execution vulnerability  

• February 15, 2012
• 19:33

  Oracle Java Web Start Remote Code Execution

   » ‎ Packet Storm Security Advisories
  A Java Web Start vulnerability exists in Oracle Java. The vulnerability can be exploited by remote unauthenticated attackers to execute arbitrary code on a vulnerable system.

  Tags:  java oracle web java-web-start oracle-java code-execution  

• 19:33

  Oracle Java Web Start Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  A Java Web Start vulnerability exists in Oracle Java. The vulnerability can be exploited by remote unauthenticated attackers to execute arbitrary code on a vulnerable system.

  Tags:  java oracle web java-web-start oracle-java code-execution  

• 19:33

  Oracle Java Web Start Remote Code Execution

   » ‎ Packet Storm Security Misc. Files
  A Java Web Start vulnerability exists in Oracle Java. The vulnerability can be exploited by remote unauthenticated attackers to execute arbitrary code on a vulnerable system.

  Tags:  java oracle web java-web-start oracle-java code-execution  

• 9:00

  Bugtraq: TELUS Security Labs VR - Oracle Java Web Start Command Argument Injection Remote Code Execution

   » ‎ SecurityFocus Vulnerabilities
  TELUS Security Labs VR - Oracle Java Web Start Command Argument Injection Remote Code Execution

  Tags:  oracle security telus java-web-start oracle-java code-execution  

• 0:00

  Vuln: Microsoft Silverlight & .NET Framework Heap Corruption Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Silverlight & .NET Framework Heap Corruption Remote Code Execution Vulnerability

  Tags:  microsoft silverlight net heap-corruption code-execution microsoft-silverlight  

• February 13, 2012
• 14:13

  EditWRX CMS Remote Code Execution

   » ‎ Packet Storm Security Exploits
  EditWRX CMS suffers from a remote code execution vulnerability due to a mishandling of data passed to open().

  Tags:  code editwrx cms code-execution vulnerability  

• 14:13

  EditWRX CMS Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  EditWRX CMS suffers from a remote code execution vulnerability due to a mishandling of data passed to open().

  Tags:  code editwrx cms code-execution vulnerability