corruption

199 items tagged "corruption"

Related tags: heap [+], glibc [+], gnu [+], fnmatch [+], exploit [+], remote [+], function pointers [+], arbitrary code execution [+], safer use [+], overflow [+], libxml [+], Skype [+], vulnerability [+], wireshark [+], webkit [+], pcap [+], framework [+], zip file [+], zip [+], poc [+], linux kernel [+], heap memory [+], denial of service [+], adobe [+], version [+], sumatrapdf [+], red hat security [+], red [+], realplayer [+], rdesktop [+], python bindings [+], python [+], pypam [+], pointer [+], pam [+], opera [+], novell groupwise [+], net [+], mobile devices [+], local memory [+], libavcodec [+], invalid addresses [+], integer overflow vulnerability [+], integer overflow [+], integer [+], htc [+], hat [+], groupwise [+], fpx [+], format string [+], flash [+], ffmpeg [+], excel [+], eviews [+], dos [+], director dirapi [+], default media player [+], correct memory [+], chm [+], cakephp [+], cache [+], bugtraq [+], apple quicktime player [+], adobe systems inc [+], adobe director [+], address [+], x 509 [+], usa [+], txt [+], taglib [+], sun java runtime environment [+], sun java runtime [+], soffice [+], shockwave user [+], security [+], rsa public keys [+], pct [+], parsing [+], openssl [+], mp3 center [+], mini [+], libreoffice [+], joshua drake tags [+], java runtime environment [+], java [+], infinite loop [+], icoolplayer [+], gateprotectcc [+], free [+], format validation [+], fixed [+], e. quicktime [+], dllmain [+], cve [+], code [+], buffer overflows [+], arbitrary code [+], apple officeimport [+], apple coregraphics [+], abu dhabi [+], x coretext [+], windows [+], web player [+], vulnerabilities [+], unity [+], svg [+], rtd [+], reader [+], quicktime pict [+], quicktime media player [+], preview [+], player versions [+], player [+], parser [+], ncss [+], morris worm [+], microsoft windows [+], memory pool [+], keyboard layout [+], keyboard [+], kernel driver [+], kernel [+], kerio [+], internet exploiter [+], information store [+], html [+], history [+], heap corruption [+], hacker folklore [+], free memory [+], firefox [+], exploiter [+], exploitation techniques [+], exploitation [+], dino dai zovi [+], data execution prevention [+], d web [+], d memory [+], css clip [+], buzz [+], avi file [+], avast [+], aswfw [+], arbitrary [+], apple mac os x [+], apple mac os [+], adobe reader [+], administration [+], memory leak [+], libpng [+], mozilla firefox [+], mozilla [+], memory corruption [+], memory [+], proof of concept [+], exploits [+], multiple [+], idefense security advisory [+], code execution [+], apple quicktime [+]

May 22, 2012
19:45
Windows XP Keyboard Layouts Pool Corruption Proof Of Concept
» ‎ Packet Storm Security Exploits

This proof of concept code demonstrates a Microsoft Windows XP keyboard layouts pool corruption vulnerability, post MS12-034. The vulnerability exists in the function win32k!ReadLayoutFile() that parses keyboard layout file data.
Tags: keyboard corruption windows keyboard-layout proof-of-concept microsoft-windows

May 16, 2012
13:01
Bugtraq: Apple Quicktime Memory Corruption (CVE-2012-0671)
» ‎ SecurityFocus Vulnerabilities

Apple Quicktime Memory Corruption (CVE-2012-0671)
Tags: cve corruption memory apple-quicktime memory-corruption bugtraq

May 15, 2012
15:38
Apple Quicktime .pct Parsing Memory Corruption
» ‎ Packet Storm Security Advisories

Apple Quicktime does not properly parse .pct media files, which causes a corruption in module DllMain by opening a malformed file with an invalid value located in PoC repro01.pct at offset 0x20E. Quicktime Player version 7.7.1 (1680.42) on Windows XP SP 3 - PT_BR is confirmed affected. Other versions may also be affected.
Tags: corruption parsing pct apple-quicktime e.-quicktime memory-corruption dllmain

15:38
Apple Quicktime .pct Parsing Memory Corruption
» ‎ Packet Storm Security Misc. Files

Apple Quicktime does not properly parse .pct media files, which causes a corruption in module DllMain by opening a malformed file with an invalid value located in PoC repro01.pct at offset 0x20E. Quicktime Player version 7.7.1 (1680.42) on Windows XP SP 3 - PT_BR is confirmed affected. Other versions may also be affected.
Tags: corruption parsing pct apple-quicktime e.-quicktime memory-corruption dllmain

April 23, 2012
13:42
.NET Framework EncoderParameter Integer Overflow
» ‎ Packet Storm Security Exploits

An integer overflow vulnerability has been discovered in the EncoderParameter class of the .NET Framework. Exploiting this vulnerability results in an overflown integer that is used to allocate a buffer on the heap. After the incorrect allocation, one or more user-supplied buffers are copied in the new buffer, resulting in a corruption of the heap.
Tags: integer framework net integer-overflow-vulnerability heap corruption

13:42
.NET Framework EncoderParameter Integer Overflow
» ‎ Packet Storm Security Recent Files

An integer overflow vulnerability has been discovered in the EncoderParameter class of the .NET Framework. Exploiting this vulnerability results in an overflown integer that is used to allocate a buffer on the heap. After the incorrect allocation, one or more user-supplied buffers are copied in the new buffer, resulting in a corruption of the heap.
Tags: integer framework net integer-overflow-vulnerability heap corruption

13:42
.NET Framework EncoderParameter Integer Overflow
» ‎ Packet Storm Security Misc. Files

An integer overflow vulnerability has been discovered in the EncoderParameter class of the .NET Framework. Exploiting this vulnerability results in an overflown integer that is used to allocate a buffer on the heap. After the incorrect allocation, one or more user-supplied buffers are copied in the new buffer, resulting in a corruption of the heap.
Tags: integer framework net integer-overflow-vulnerability heap corruption

12:22
SumatraPDF 2.0.1 Memory Corruption
» ‎ Packet Storm Security Exploits

SumatraPDF version 2.0.1 suffers from chm and mobi file memory corruption vulnerabilities. Proof of concept included.
Tags: corruption memory sumatrapdf memory-corruption proof-of-concept chm

12:22
SumatraPDF 2.0.1 Memory Corruption
» ‎ Packet Storm Security Recent Files

SumatraPDF version 2.0.1 suffers from chm and mobi file memory corruption vulnerabilities. Proof of concept included.
Tags: corruption memory sumatrapdf memory-corruption proof-of-concept chm

12:22
SumatraPDF 2.0.1 Memory Corruption
» ‎ Packet Storm Security Misc. Files

SumatraPDF version 2.0.1 suffers from chm and mobi file memory corruption vulnerabilities. Proof of concept included.
Tags: corruption memory sumatrapdf memory-corruption proof-of-concept chm

April 19, 2012
16:22
OpenSSL Memory Corruption
» ‎ Packet Storm Security Recent Files

OpenSSL versions up to and including 1.0.1 are affected by a memory corruption vulnerability. asn1_d2i_read_bio in OpenSSL contains multiple integer errors that can cause memory corruption when parsing encoded ASN.1 data. This error can be exploited on systems that parse untrusted data, such as X.509 certificates or RSA public keys.
Tags: corruption openssl memory rsa-public-keys memory-corruption x-509

16:22
OpenSSL Memory Corruption
» ‎ Packet Storm Security Misc. Files

OpenSSL versions up to and including 1.0.1 are affected by a memory corruption vulnerability. asn1_d2i_read_bio in OpenSSL contains multiple integer errors that can cause memory corruption when parsing encoded ASN.1 data. This error can be exploited on systems that parse untrusted data, such as X.509 certificates or RSA public keys.
Tags: corruption openssl memory rsa-public-keys memory-corruption x-509

April 18, 2012
16:05
LibreOffice 3.5.2.2 Memory Corruption
» ‎ Packet Storm Security Exploits

LibreOffice version 3.5.2.2 suffers from a soffice.exe\soffice.bin memory corruption vulnerability when handling a malformed RTF file. This is a proof of concept exploit.
Tags: corruption libreoffice memory memory-corruption soffice proof-of-concept

16:05
LibreOffice 3.5.2.2 Memory Corruption
» ‎ Packet Storm Security Misc. Files

LibreOffice version 3.5.2.2 suffers from a soffice.exe\soffice.bin memory corruption vulnerability when handling a malformed RTF file. This is a proof of concept exploit.
Tags: corruption libreoffice memory memory-corruption soffice proof-of-concept

14:00
[local exploits] - LibreOffice 3.5.2.2 Memory Corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

[local exploits] - LibreOffice 3.5.2.2 Memory Corruption
Tags: exploit corruption memory memory-corruption exploits

April 12, 2012
0:00
Vuln: GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
Tags: glibc fnmatch gnu vulnerability corruption
April 06, 2012
0:00
Vuln: taglib Memory Corruption and Infinite Loop Denial Of Service Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

taglib Memory Corruption and Infinite Loop Denial Of Service Vulnerabilities
Tags: corruption taglib memory memory-corruption denial-of-service infinite-loop

March 28, 2012
20:49
Skype 5.8x / 5.5x Corruption
» ‎ Packet Storm Security Exploits

Skype versions 5.8x and 5.5x suffer from a pointer corruption vulnerability.
Tags: corruption pointer Skype vulnerability

20:49
Skype 5.8x / 5.5x Corruption
» ‎ Packet Storm Security Recent Files

Skype versions 5.8x and 5.5x suffer from a pointer corruption vulnerability.
Tags: corruption pointer Skype vulnerability

20:49
Skype 5.8x / 5.5x Corruption
» ‎ Packet Storm Security Misc. Files

Skype versions 5.8x and 5.5x suffer from a pointer corruption vulnerability.
Tags: corruption pointer Skype vulnerability

March 27, 2012
0:00
Vuln: taglib Memory Corruption and Infinite Loop Denial Of Service Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

taglib Memory Corruption and Infinite Loop Denial Of Service Vulnerabilities
Tags: corruption taglib memory memory-corruption denial-of-service infinite-loop

March 24, 2012
6:33
RealPlayer 1.1.4 Memory Corruption
» ‎ Packet Storm Security Exploits

RealPlayer SP1 versions 1.1.4 Build 12.0.0.756 and below suffer from a memory corruption vulnerability.
Tags: corruption realplayer memory memory-corruption vulnerability

6:33
RealPlayer 1.1.4 Memory Corruption
» ‎ Packet Storm Security Recent Files

RealPlayer SP1 versions 1.1.4 Build 12.0.0.756 and below suffer from a memory corruption vulnerability.
Tags: corruption realplayer memory memory-corruption vulnerability

6:33
RealPlayer 1.1.4 Memory Corruption
» ‎ Packet Storm Security Misc. Files

RealPlayer SP1 versions 1.1.4 Build 12.0.0.756 and below suffer from a memory corruption vulnerability.
Tags: corruption realplayer memory memory-corruption vulnerability

March 21, 2012
0:00
Vuln: libxml2 'XPATH' Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

libxml2 'XPATH' Memory Corruption Vulnerability
Tags: corruption memory libxml memory-corruption vulnerability

March 19, 2012
15:00
[local exploits] - VLC v. 2.0.1.0 .tta Memory Corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

[local exploits] - VLC v. 2.0.1.0 .tta Memory Corruption
Tags: exploit corruption memory memory-corruption exploits
March 15, 2012
15:00
[local exploits] - VLC v. 2.0.1.0 .it Memory Corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

[local exploits] - VLC v. 2.0.1.0 .it Memory Corruption
Tags: exploit corruption memory memory-corruption exploits
March 14, 2012
15:00
[local exploits] - VLC v. 1.1.11 .3gp Memory Corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

[local exploits] - VLC v. 1.1.11 .3gp Memory Corruption
Tags: exploit corruption memory memory-corruption exploits
15:00
[local exploits] - VLC v. 1.1.11 .m4v Memory Corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

[local exploits] - VLC v. 1.1.11 .m4v Memory Corruption
Tags: exploit corruption memory memory-corruption exploits
March 10, 2012
14:00
[local exploits] - PyPAM Python bindings for PAM Double Free Corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

[local exploits] - PyPAM Python bindings for PAM Double Free Corruption
Tags: free python pypam pam python-bindings exploits corruption
14:00
[dos / poc] - PyPAM Python bindings for PAM Double Free Corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

[dos / poc] - PyPAM Python bindings for PAM Double Free Corruption
Tags: poc python pypam pam python-bindings corruption

March 09, 2012
14:00
Bugtraq: LSE-2012-03-01: PyPAM -- Python bindings for PAM - Double Free Corruption
» ‎ SecurityFocus Vulnerabilities

LSE-2012-03-01: PyPAM -- Python bindings for PAM - Double Free Corruption
Tags: free python pypam pam python-bindings corruption

14:00
[local exploits] - VLC v. 1.1.11 .3g2 Memory Corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

[local exploits] - VLC v. 1.1.11 .3g2 Memory Corruption
Tags: exploit corruption memory memory-corruption exploits

0:00
Vuln: GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
Tags: glibc vulnerability corruption
March 08, 2012
0:00
Vuln: GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
Tags: glibc fnmatch gnu vulnerability corruption

February 22, 2012
20:55
Unity 3D Web Player 3.2.0.61061 Heap Corruption
» ‎ Packet Storm Security Exploits

Unity 3D Web Player versions 3.2.0.61061 and below suffer from a heap corruption vulnerability. Proof of concept code included.
Tags: corruption heap player unity d-web heap-corruption web-player player-versions
20:52
Buzz Build 1458 Overflows / Memory Corruption
» ‎ Packet Storm Security Exploits

Buzz build versions 1458 and below suffer from memory corruption and various overflows. Proof of concept included.
Tags: corruption memory buzz memory-corruption proof-of-concept

February 21, 2012
7:37
Red Hat Security Advisory 2012-0311-03
» ‎ Packet Storm Security Advisories

Red Hat Security Advisory 2012-0311-03 - The ibutils packages provide InfiniBand network and path diagnostics. It was found that the ibmssh executable had an insecure relative RPATH set in the ELF header. A local user able to convince another user to run ibmssh in an attacker-controlled directory could run arbitrary code with the privileges of the victim. Under certain circumstances, the "ibdiagnet -r" command could suffer from memory corruption and terminate with a "double free or corruption" message and a backtrace. With this update, the correct memory management function is used to prevent the corruption.
Tags: hat corruption red memory-corruption red-hat-security correct-memory

7:37
Red Hat Security Advisory 2012-0311-03
» ‎ Packet Storm Security Recent Files

Red Hat Security Advisory 2012-0311-03 - The ibutils packages provide InfiniBand network and path diagnostics. It was found that the ibmssh executable had an insecure relative RPATH set in the ELF header. A local user able to convince another user to run ibmssh in an attacker-controlled directory could run arbitrary code with the privileges of the victim. Under certain circumstances, the "ibdiagnet -r" command could suffer from memory corruption and terminate with a "double free or corruption" message and a backtrace. With this update, the correct memory management function is used to prevent the corruption.
Tags: hat corruption red memory-corruption red-hat-security correct-memory

7:37
Red Hat Security Advisory 2012-0311-03
» ‎ Packet Storm Security Misc. Files

Red Hat Security Advisory 2012-0311-03 - The ibutils packages provide InfiniBand network and path diagnostics. It was found that the ibmssh executable had an insecure relative RPATH set in the ELF header. A local user able to convince another user to run ibmssh in an attacker-controlled directory could run arbitrary code with the privileges of the victim. Under certain circumstances, the "ibdiagnet -r" command could suffer from memory corruption and terminate with a "double free or corruption" message and a backtrace. With this update, the correct memory management function is used to prevent the corruption.
Tags: hat corruption red memory-corruption red-hat-security correct-memory

February 16, 2012
19:25
Skype 5.6.59.x Memory Corruption
» ‎ Packet Storm Security Advisories

Skype version 5.6.59.x suffers from a memory corruption vulnerability.
Tags: corruption Skype memory memory-corruption vulnerability

19:25
Skype 5.6.59.x Memory Corruption
» ‎ Packet Storm Security Recent Files

Skype version 5.6.59.x suffers from a memory corruption vulnerability.
Tags: corruption Skype memory memory-corruption vulnerability

19:25
Skype 5.6.59.x Memory Corruption
» ‎ Packet Storm Security Misc. Files

Skype version 5.6.59.x suffers from a memory corruption vulnerability.
Tags: corruption Skype memory memory-corruption vulnerability

February 13, 2012
0:00
Vuln: GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
Tags: glibc fnmatch gnu vulnerability corruption
February 03, 2012
0:00
Vuln: FreeType Font Document Multiple Memory Corruption Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

FreeType Font Document Multiple Memory Corruption Vulnerabilities
Tags: multiple corruption memory memory-corruption

February 02, 2012
21:37
[Slides] Exploiting Memory Corruption Vulnerabilities in the Java Runtime
» ‎ SecDocs

Authors: Joshua Drake
Tags: memory heap overflow exploiting Java
Event: Black Hat Abu Dhabi 2011
Abstract: The Oracle (previously Sun) Java Runtime Environment (JRE) is widely viewed by security researchers as one of the weakest links in the proverbial chain. That said, the exploitation of memory corruption vulnerabilities within the JRE is not always straight-forward. This talk will focus on a collection of techniques to overcome potential issues that one may face while developing exploits against memory corruption vulnerabilities within the JRE. The talk concludes with a demonstration of the techniques as used on a selection of contrived and real-world vulnerabilities.
Tags: java corruption memory joshua-drake-tags abu-dhabi sun-java-runtime sun-java-runtime-environment java-runtime-environment
21:37
[Paper] Exploiting Memory Corruption Vulnerabilities in the Java Runtime
» ‎ SecDocs

Authors: Joshua Drake
Tags: memory heap overflow exploiting Java
Event: Black Hat Abu Dhabi 2011
Abstract: The Oracle (previously Sun) Java Runtime Environment (JRE) is widely viewed by security researchers as one of the weakest links in the proverbial chain. That said, the exploitation of memory corruption vulnerabilities within the JRE is not always straight-forward. This talk will focus on a collection of techniques to overcome potential issues that one may face while developing exploits against memory corruption vulnerabilities within the JRE. The talk concludes with a demonstration of the techniques as used on a selection of contrived and real-world vulnerabilities.
Tags: java corruption memory joshua-drake-tags abu-dhabi sun-java-runtime sun-java-runtime-environment java-runtime-environment

January 24, 2012
0:00
Vuln: FreeType Font Document Multiple Memory Corruption Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

FreeType Font Document Multiple Memory Corruption Vulnerabilities
Tags: multiple corruption memory memory-corruption

January 14, 2012
14:00
[local exploits] - Adobe Reader U3D Memory Corruption Vulnerability
» ‎ 1337day (was: Inj3ct0r, 1337db)

[local exploits] - Adobe Reader U3D Memory Corruption Vulnerability
Tags: corruption reader adobe d-memory memory-corruption adobe-reader exploits

January 05, 2012
0:00
Vuln: FreeType Font Document Multiple Memory Corruption Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

FreeType Font Document Multiple Memory Corruption Vulnerabilities
Tags: multiple corruption memory memory-corruption
December 19, 2011
0:00
Vuln: libxml2 'XPATH' Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

libxml2 'XPATH' Memory Corruption Vulnerability
Tags: corruption memory libxml memory-corruption vulnerability

December 09, 2011
9:29
HTC Touch2 T3333 Memory Corruption
» ‎ Packet Storm Security Exploits

HTCVideoPlayer is the default media player of HTC Windows Mobile devices. This media player is prone to a memory corruption vulnerability while parsing stbl atom of 3g2 video format.
Tags: htc corruption memory memory-corruption default-media-player mobile-devices

9:29
HTC Touch2 T3333 Memory Corruption
» ‎ Packet Storm Security Recent Files

HTCVideoPlayer is the default media player of HTC Windows Mobile devices. This media player is prone to a memory corruption vulnerability while parsing stbl atom of 3g2 video format.
Tags: htc corruption memory memory-corruption default-media-player mobile-devices

9:29
HTC Touch2 T3333 Memory Corruption
» ‎ Packet Storm Security Misc. Files

HTCVideoPlayer is the default media player of HTC Windows Mobile devices. This media player is prone to a memory corruption vulnerability while parsing stbl atom of 3g2 video format.
Tags: htc corruption memory memory-corruption default-media-player mobile-devices

December 05, 2011
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
December 02, 2011
14:00
Bugtraq: Heap Memory Corruption in HP Device Access Manager for Protect Tools Information Store
» ‎ SecurityFocus Vulnerabilities

Heap Memory Corruption in HP Device Access Manager for Protect Tools Information Store
Tags: corruption heap memory heap-memory memory-corruption information-store
November 28, 2011
0:00
Vuln: GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
Tags: glibc fnmatch gnu vulnerability corruption

November 23, 2011
15:58
FFmpeg Memory Corruption
» ‎ Packet Storm Security Advisories

FFmpeg Libavcodec suffers from a memory corruption vulnerability.
Tags: ffmpeg memory corruption memory-corruption libavcodec vulnerability

15:58
FFmpeg Memory Corruption
» ‎ Packet Storm Security Recent Files

FFmpeg Libavcodec suffers from a memory corruption vulnerability.
Tags: ffmpeg memory corruption memory-corruption libavcodec vulnerability

15:58
FFmpeg Memory Corruption
» ‎ Packet Storm Security Misc. Files

FFmpeg Libavcodec suffers from a memory corruption vulnerability.
Tags: ffmpeg memory corruption memory-corruption libavcodec vulnerability

November 18, 2011
0:00
Vuln: FreeType Font Document Multiple Memory Corruption Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

FreeType Font Document Multiple Memory Corruption Vulnerabilities
Tags: multiple corruption memory memory-corruption

October 29, 2011
7:44
GateProtectCC 3.0.1 Memory Corruption
» ‎ Packet Storm Security Recent Files

GateProtect CC version 3.0.1 suffers from a memory corruption vulnerability.
Tags: corruption memory gateprotectcc memory-corruption vulnerability

7:44
GateProtectCC 3.0.1 Memory Corruption
» ‎ Packet Storm Security Misc. Files

GateProtect CC version 3.0.1 suffers from a memory corruption vulnerability.
Tags: corruption memory gateprotectcc memory-corruption vulnerability

October 26, 2011
0:00
Vuln: FreeType Font Document Multiple Memory Corruption Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

FreeType Font Document Multiple Memory Corruption Vulnerabilities
Tags: multiple corruption memory memory-corruption
0:00
Vuln: libxml2 'XPATH' Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

libxml2 'XPATH' Memory Corruption Vulnerability
Tags: corruption memory libxml memory-corruption vulnerability
October 25, 2011
0:00
Vuln: FreeType Font Document Multiple Memory Corruption Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

FreeType Font Document Multiple Memory Corruption Vulnerabilities
Tags: multiple corruption memory memory-corruption
October 24, 2011
0:00
Vuln: FreeType Font Document Multiple Memory Corruption Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

FreeType Font Document Multiple Memory Corruption Vulnerabilities
Tags: multiple corruption memory memory-corruption
October 13, 2011
0:00
Vuln: GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
Tags: glibc fnmatch gnu vulnerability corruption

October 06, 2011
13:27
Opera 10/11 Memory Corruption
» ‎ Packet Storm Security Exploits

This Metasploit module exploits a vulnerability in the nesting of frameset and iframe tags as implemented within Opera Browser. A memory corruption is triggered and some pointers got corrupted with invalid addresses. Successfully exploiting leads to remote code execution or denial of service condition under Windows XP SP3 (DEP = off).
Tags: corruption opera memory memory-corruption code-execution invalid-addresses

13:27
Opera 10/11 Memory Corruption
» ‎ Packet Storm Security Recent Files

This Metasploit module exploits a vulnerability in the nesting of frameset and iframe tags as implemented within Opera Browser. A memory corruption is triggered and some pointers got corrupted with invalid addresses. Successfully exploiting leads to remote code execution or denial of service condition under Windows XP SP3 (DEP = off).
Tags: corruption opera memory memory-corruption code-execution invalid-addresses

13:27
Opera 10/11 Memory Corruption
» ‎ Packet Storm Security Misc. Files

This Metasploit module exploits a vulnerability in the nesting of frameset and iframe tags as implemented within Opera Browser. A memory corruption is triggered and some pointers got corrupted with invalid addresses. Successfully exploiting leads to remote code execution or denial of service condition under Windows XP SP3 (DEP = off).
Tags: corruption opera memory memory-corruption code-execution invalid-addresses

September 29, 2011
9:00
Bugtraq: Arbitrary memory corruption in NCSS 07.1.21
» ‎ SecurityFocus Vulnerabilities

Arbitrary memory corruption in NCSS 07.1.21
Tags: memory arbitrary corruption memory-corruption ncss

September 28, 2011
15:41
iDefense Security Advisory 09.26.11 - Novell Groupwise Memory Corruption
» ‎ Packet Storm Security Advisories

iDefense Security Advisory 09.26.11 - Remote exploitation of a memory corruption vulnerability in Novell Inc.'s GroupWise could allow an attacker to execute arbitrary code with the privileges of the affected service. This vulnerability is present in the calendar processing code, which resides within the GroupWise Internet Agent (GWIA) process. The vulnerability occurs when parsing a malformed calendar recurrence (RRULE) that recurs weekly. Specifically, by using a negative integer for the BYWEEKNO property, it is possible to trigger a write operation beyond the bounds of an allocated heap buffer. This can lead to the corruption of memory, and the execution of arbitrary code.
Tags: corruption memory groupwise idefense-security-advisory novell-groupwise memory-corruption

15:41
iDefense Security Advisory 09.26.11 - Novell Groupwise Memory Corruption
» ‎ Packet Storm Security Recent Files

iDefense Security Advisory 09.26.11 - Remote exploitation of a memory corruption vulnerability in Novell Inc.'s GroupWise could allow an attacker to execute arbitrary code with the privileges of the affected service. This vulnerability is present in the calendar processing code, which resides within the GroupWise Internet Agent (GWIA) process. The vulnerability occurs when parsing a malformed calendar recurrence (RRULE) that recurs weekly. Specifically, by using a negative integer for the BYWEEKNO property, it is possible to trigger a write operation beyond the bounds of an allocated heap buffer. This can lead to the corruption of memory, and the execution of arbitrary code.
Tags: corruption memory groupwise idefense-security-advisory novell-groupwise memory-corruption

15:41
iDefense Security Advisory 09.26.11 - Novell Groupwise Memory Corruption
» ‎ Packet Storm Security Misc. Files

iDefense Security Advisory 09.26.11 - Remote exploitation of a memory corruption vulnerability in Novell Inc.'s GroupWise could allow an attacker to execute arbitrary code with the privileges of the affected service. This vulnerability is present in the calendar processing code, which resides within the GroupWise Internet Agent (GWIA) process. The vulnerability occurs when parsing a malformed calendar recurrence (RRULE) that recurs weekly. Specifically, by using a negative integer for the BYWEEKNO property, it is possible to trigger a write operation beyond the bounds of an allocated heap buffer. This can lead to the corruption of memory, and the execution of arbitrary code.
Tags: corruption memory groupwise idefense-security-advisory novell-groupwise memory-corruption

September 20, 2011
23:31
EViews 7.0.0.1 Memory Corruption / Heap Overflow
» ‎ Packet Storm Security Exploits

EViews versions 7.0.0.1 and below suffer from memory corruption and heap overflow vulnerabilities.
Tags: corruption eviews memory memory-corruption heap overflow

23:31
EViews 7.0.0.1 Memory Corruption / Heap Overflow
» ‎ Packet Storm Security Recent Files

EViews versions 7.0.0.1 and below suffer from memory corruption and heap overflow vulnerabilities.
Tags: corruption eviews memory memory-corruption heap overflow

23:31
EViews 7.0.0.1 Memory Corruption / Heap Overflow
» ‎ Packet Storm Security Misc. Files

EViews versions 7.0.0.1 and below suffer from memory corruption and heap overflow vulnerabilities.
Tags: corruption eviews memory memory-corruption heap overflow

September 17, 2011
9:23
[Paper] Memory Corruption Attacks: The (almost) Complete History...
» ‎ SecDocs

Authors: Haroon Meer
Tags: memory exploiting
Event: Black Hat USA 2010
Abstract: Buffer Overflows, Stack Smashes and Memory Corruption Attacks have been the info sec headline stealers for the better part of 3 decades. Sadly, poor record keeping (and dismal regard for attribution of prior research) has resulted in huge gaps in our "hacker folklore". It has also resulted in several re-inventions of the wheel. This talk traces the history of memory corruption attacks and defenses, from the Morris Worm of 1988 to the awesome Pointer Inference work published by Blazakis in 2010. We will demonstrate with code samples, live demo's (and pretty pictures) the progression of these attacks, how they work, when they first came to light, and the mitigations that have been developed and deployed to thwart them.
Tags: corruption history memory morris-worm usa hacker-folklore memory-corruption

September 15, 2011
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak

September 14, 2011
14:58
iDefense Security Advisory 09.13.11 - Excel Memory Corruption
» ‎ Packet Storm Security Advisories

iDefense Security Advisory 09.13.11 - Remote exploitation of a memory corruption vulnerability in Microsoft Corp.'s Excel could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability occurs when Excel parses a certain specially crafted record in an Excel file. A specific value in the record can trigger a memory corruption vulnerability and may allow arbitrary code execution.
Tags: memory excel corruption arbitrary-code-execution idefense-security-advisory memory-corruption

14:58
iDefense Security Advisory 09.13.11 - Excel Memory Corruption
» ‎ Packet Storm Security Recent Files

iDefense Security Advisory 09.13.11 - Remote exploitation of a memory corruption vulnerability in Microsoft Corp.'s Excel could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability occurs when Excel parses a certain specially crafted record in an Excel file. A specific value in the record can trigger a memory corruption vulnerability and may allow arbitrary code execution.
Tags: memory excel corruption arbitrary-code-execution idefense-security-advisory memory-corruption

14:58
iDefense Security Advisory 09.13.11 - Excel Memory Corruption
» ‎ Packet Storm Security Misc. Files

iDefense Security Advisory 09.13.11 - Remote exploitation of a memory corruption vulnerability in Microsoft Corp.'s Excel could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability occurs when Excel parses a certain specially crafted record in an Excel file. A specific value in the record can trigger a memory corruption vulnerability and may allow arbitrary code execution.
Tags: memory excel corruption arbitrary-code-execution idefense-security-advisory memory-corruption

0:00
Vuln: Linux Kernel DRM IOCTL Local Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Linux Kernel DRM IOCTL Local Memory Corruption Vulnerability
Tags: corruption memory memory-corruption linux-kernel local-memory

September 08, 2011
10:37
[Slides] Return-Oriented Exploitation
» ‎ SecDocs

Authors: Dino Dai Zovi
Tags: exploiting
Event: Black Hat USA 2010
Abstract: The latest advances in exploitation of memory corruption vulnerabilities revolve around applying return-oriented exploitation techniques to evade non-executable memory protections such as Microsoft's Data Execution Prevention (DEP), CPU-supported non-executable memory (NX/XD), and mandatory code-signing such as on iPhone OS. Although the ideas behind these exploitation techniques can be traced quite far back, they are receiving more attention as non-executable memory protections become more prevalent. This presentation will cover the current state of memory corruption exploitation and exploit mitigation as well as an in-depth discussion of a variety of return-oriented exploitation techniques. Finally, the presentation will discuss what ramifications return-oriented exploitation techniques have for exploit developers, software vendors, malware analysts, and enterprise IT security professionals.
Tags: memory exploitation corruption dino-dai-zovi usa memory-corruption exploitation-techniques data-execution-prevention

September 01, 2011
22:10
Post Memory Corruption Memory Analyzer 1.00
» ‎ Packet Storm Security Recent Files

Pmcma aims at automating exploitation of invalid memory writes (being them the consequences of an overflow in a writable section, of a missing format string, integer overflow, variable misuse, or any other type of memory corruption).
Tags: corruption overflow memory memory-corruption integer-overflow format-string

22:10
Post Memory Corruption Memory Analyzer 1.00
» ‎ Packet Storm Security Tools

Pmcma aims at automating exploitation of invalid memory writes (being them the consequences of an overflow in a writable section, of a missing format string, integer overflow, variable misuse, or any other type of memory corruption).
Tags: corruption overflow memory memory-corruption integer-overflow format-string

22:10
Post Memory Corruption Memory Analyzer 1.00
» ‎ Packet Storm Security Misc. Files

Pmcma aims at automating exploitation of invalid memory writes (being them the consequences of an overflow in a writable section, of a missing format string, integer overflow, variable misuse, or any other type of memory corruption).
Tags: corruption overflow memory memory-corruption integer-overflow format-string

August 27, 2011
21:00
[dos / poc] - Mini FTP Server 1.1 Buffer Corruption Remote Denial Of Service
» ‎ 1337day (was: Inj3ct0r, 1337db)

[dos / poc] - Mini FTP Server 1.1 Buffer Corruption Remote Denial Of Service
Tags: dos mini poc denial-of-service corruption
18:00
[dos / poc] - Mini FTP Server 1.1 Buffer Corruption Remote Denial Of Service
» ‎ 1337day (was: Inj3ct0r, 1337db)

[dos / poc] - Mini FTP Server 1.1 Buffer Corruption Remote Denial Of Service
Tags: dos mini poc denial-of-service corruption
August 24, 2011
21:00
[local exploits] - Zortam Mp3 Center 3.50 memory corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

[local exploits] - Zortam Mp3 Center 3.50 memory corruption
Tags: memory exploit corruption memory-corruption mp3-center exploits
21:00
[local exploits] - icoolplayer v1.0.1.0 memory corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

[local exploits] - icoolplayer v1.0.1.0 memory corruption
Tags: memory corruption icoolplayer memory-corruption exploits
18:00
[local exploits] - Zortam Mp3 Center 3.50 memory corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

[local exploits] - Zortam Mp3 Center 3.50 memory corruption
Tags: memory exploit corruption memory-corruption mp3-center exploits
18:00
[local exploits] - icoolplayer v1.0.1.0 memory corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

[local exploits] - icoolplayer v1.0.1.0 memory corruption
Tags: memory corruption icoolplayer memory-corruption exploits

0:00
Vuln: Lumension Security Lumension Device Control Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Lumension Security Lumension Device Control Memory Corruption Vulnerability
Tags: corruption memory security memory-corruption vulnerability
August 23, 2011
0:00
Vuln: WebKit SVG styles Use-after-free Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

WebKit SVG styles Use-after-free Memory Corruption Vulnerability
Tags: corruption memory svg memory-corruption free-memory
August 11, 2011
0:00
Vuln: WebKit CVE-2011-0222 Memory Corruption Remote Code Execution Vulnerability
» ‎ SecurityFocus Vulnerabilities

WebKit CVE-2011-0222 Memory Corruption Remote Code Execution Vulnerability
Tags: corruption remote memory memory-corruption code-execution webkit

August 10, 2011
20:59
iDefense Security Advisory 08.09.11 - Flash Memory Corruption
» ‎ Packet Storm Security Advisories

iDefense Security Advisory 08.09.11 - Remote exploitation of a memory corruption vulnerability in Adobe Systems Inc.'s Flash Player could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability occurs when parsing a maliciously formatted sequence of ActionScript code inside an Adobe Flash file. The problem exists in a certain ActionScript function method of the built-in "flash.display" class. When malformed parameters are supplied to this function, a memory corruption will occur, leading to an exploitable condition.
Tags: corruption flash memory idefense-security-advisory memory-corruption adobe-systems-inc

20:59
iDefense Security Advisory 08.09.11 - Flash Memory Corruption
» ‎ Packet Storm Security Recent Files

iDefense Security Advisory 08.09.11 - Remote exploitation of a memory corruption vulnerability in Adobe Systems Inc.'s Flash Player could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability occurs when parsing a maliciously formatted sequence of ActionScript code inside an Adobe Flash file. The problem exists in a certain ActionScript function method of the built-in "flash.display" class. When malformed parameters are supplied to this function, a memory corruption will occur, leading to an exploitable condition.
Tags: corruption flash memory idefense-security-advisory memory-corruption adobe-systems-inc

20:59
iDefense Security Advisory 08.09.11 - Flash Memory Corruption
» ‎ Packet Storm Security Misc. Files

iDefense Security Advisory 08.09.11 - Remote exploitation of a memory corruption vulnerability in Adobe Systems Inc.'s Flash Player could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability occurs when parsing a maliciously formatted sequence of ActionScript code inside an Adobe Flash file. The problem exists in a certain ActionScript function method of the built-in "flash.display" class. When malformed parameters are supplied to this function, a memory corruption will occur, leading to an exploitable condition.
Tags: corruption flash memory idefense-security-advisory memory-corruption adobe-systems-inc

August 08, 2011
0:00
Vuln: WebKit CVE-2011-1453 Memory Corruption Remote Code Execution Vulnerability
» ‎ SecurityFocus Vulnerabilities

WebKit CVE-2011-1453 Memory Corruption Remote Code Execution Vulnerability
Tags: corruption remote memory memory-corruption code-execution webkit
July 29, 2011
0:00
Vuln: GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
Tags: glibc fnmatch gnu vulnerability corruption
July 27, 2011
0:00
Vuln: WebKit CVE-2011-0232 Memory Corruption Remote Code Execution Vulnerability
» ‎ SecurityFocus Vulnerabilities

WebKit CVE-2011-0232 Memory Corruption Remote Code Execution Vulnerability
Tags: corruption remote memory memory-corruption code-execution webkit
0:00
Vuln: WebKit CVE-2011-0255 Memory Corruption Remote Code Execution Vulnerability
» ‎ SecurityFocus Vulnerabilities

WebKit CVE-2011-0255 Memory Corruption Remote Code Execution Vulnerability
Tags: corruption remote memory memory-corruption code-execution webkit
July 25, 2011
0:00
Vuln: WebKit CVE-2011-0222 Memory Corruption Remote Code Execution Vulnerability
» ‎ SecurityFocus Vulnerabilities

WebKit CVE-2011-0222 Memory Corruption Remote Code Execution Vulnerability
Tags: corruption remote memory memory-corruption code-execution webkit

July 08, 2011
6:34
ZipWiz 2005 5.0 ZIP File Buffer Corruption
» ‎ Packet Storm Security Exploits

ZipWiz 2005 version 5.0 .zip file buffer corruption exploit.
Tags: version corruption zip zip-file

6:34
ZipWiz 2005 5.0 ZIP File Buffer Corruption
» ‎ Packet Storm Security Recent Files

ZipWiz 2005 version 5.0 .zip file buffer corruption exploit.
Tags: version corruption zip zip-file

6:34
ZipWiz 2005 5.0 ZIP File Buffer Corruption
» ‎ Packet Storm Security Misc. Files

ZipWiz 2005 version 5.0 .zip file buffer corruption exploit.
Tags: version corruption zip zip-file

July 07, 2011
21:00
[dos / poc] - ZipWiz 2005 v5.0 .ZIP File Buffer Corruption Exploit
» ‎ 1337day (was: Inj3ct0r, 1337db)

[dos / poc] - ZipWiz 2005 v5.0 .ZIP File Buffer Corruption Exploit
Tags: dos poc zip zip-file corruption

June 28, 2011
0:00
Vuln: Linux Kernel ALSA 'hpioctl.c' Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Linux Kernel ALSA 'hpioctl.c' Memory Corruption Vulnerability
Tags: corruption memory memory-corruption linux-kernel vulnerability
0:00
Vuln: Linux Kernel DRM IOCTL Local Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Linux Kernel DRM IOCTL Local Memory Corruption Vulnerability
Tags: corruption memory memory-corruption linux-kernel local-memory
June 24, 2011
0:00
Vuln: GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
Tags: glibc fnmatch gnu vulnerability corruption
June 21, 2011
0:00
Vuln: Linux Kernel DRM IOCTL Local Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Linux Kernel DRM IOCTL Local Memory Corruption Vulnerability
Tags: corruption memory memory-corruption linux-kernel local-memory

June 14, 2011
20:59
Apple CoreGraphics Library Heap Memory Corruption Vulnerability
» ‎ SecuriTeam

Remote exploitation of a heap memory corruption vulnerability in Apple Inc.'s CoreGraphics.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!

Tags: corruption heap memory apple-coregraphics heap-memory memory-corruption safer-use

June 02, 2011
0:00
Vuln: Lumension Security Lumension Device Control Unspecified Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Lumension Security Lumension Device Control Unspecified Memory Corruption Vulnerability
Tags: corruption memory security memory-corruption vulnerability

May 17, 2011
15:59
Apple OfficeImport Framework Excel Memory Corruption Vulnerability
» ‎ SecuriTeam

Remote exploitation of a memory corruption vulnerability in Apple Inc.'s OfficeImport framework could allow an attacker to execute arbitrary code with the privileges of the current user.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!

Tags: corruption framework memory apple-officeimport memory-corruption safer-use arbitrary-code
15:54
Apple OfficeImport Framework Excel Memory Corruption Vulnerability
» ‎ SecuriTeam

Remote exploitation of a memory corruption vulnerability in Apple Inc.'s OfficeImport framework could allow an attacker to execute arbitrary code with the privileges of the current user.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!

Tags: corruption framework memory apple-officeimport memory-corruption safer-use arbitrary-code

May 10, 2011
0:00
Vuln: WebGL Library Multiple Memory Corruption Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

WebGL Library Multiple Memory Corruption Vulnerabilities
Tags: multiple corruption memory memory-corruption
April 04, 2011
0:00
Vuln: GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
Tags: glibc fnmatch gnu vulnerability corruption
March 24, 2011
0:00
Vuln: Wireshark '.pcap' File Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Wireshark '.pcap' File Memory Corruption Vulnerability
Tags: corruption memory pcap memory-corruption wireshark vulnerability
March 21, 2011
0:00
Vuln: Wireshark '.pcap' File Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Wireshark '.pcap' File Memory Corruption Vulnerability
Tags: corruption memory pcap memory-corruption wireshark vulnerability
March 18, 2011
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
March 09, 2011
0:00
Vuln: Wireshark '.pcap' File Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Wireshark '.pcap' File Memory Corruption Vulnerability
Tags: corruption memory pcap memory-corruption wireshark vulnerability
March 08, 2011
0:00
Vuln: Wireshark '.pcap' File Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Wireshark '.pcap' File Memory Corruption Vulnerability
Tags: corruption memory pcap memory-corruption wireshark vulnerability
March 02, 2011
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
0:00
Vuln: libxml2 'XPATH' Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

libxml2 'XPATH' Memory Corruption Vulnerability
Tags: corruption memory libxml memory-corruption vulnerability
0:00
Vuln: WebKit Multiple Memory Corruption Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

WebKit Multiple Memory Corruption Vulnerabilities
Tags: multiple corruption memory memory-corruption
March 01, 2011
0:00
Vuln: Wireshark '.pcap' File Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Wireshark '.pcap' File Memory Corruption Vulnerability
Tags: corruption memory pcap memory-corruption wireshark vulnerability

February 09, 2011
9:31
rdesktop 1.6.0 Memory Corruption
» ‎ Packet Storm Security Exploits

rdesktop version 1.6.0 memory corruption proof of concept exploit.
Tags: corruption rdesktop memory memory-corruption proof-of-concept

9:31
rdesktop 1.6.0 Memory Corruption
» ‎ Packet Storm Security Recent Files

rdesktop version 1.6.0 memory corruption proof of concept exploit.
Tags: corruption rdesktop memory memory-corruption proof-of-concept

9:31
rdesktop 1.6.0 Memory Corruption
» ‎ Packet Storm Security Misc. Files

rdesktop version 1.6.0 memory corruption proof of concept exploit.
Tags: corruption rdesktop memory memory-corruption proof-of-concept

January 05, 2011
0:00
Vuln: Mozilla Firefox CVE-2010-3778 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-3778 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability

December 28, 2010
15:45
Apple QuickTime PICT Memory Corruption Vulnerability
» ‎ SecuriTeam

Remote exploitation of a memory corruption vulnerability in Apple QuickTime media player could allow attackers to execute arbitrary code in the context of the targeted user.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!

Tags: vulnerability corruption memory apple-quicktime quicktime-media-player quicktime-pict memory-corruption

December 22, 2010
0:00
Vuln: Mozilla Firefox CVE-2010-3778 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-3778 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
December 20, 2010
0:00
Vuln: Mozilla Firefox CVE-2010-3778 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-3778 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability

December 17, 2010
13:23
Apple Quicktime Memory Corruption
» ‎ Packet Storm Security Advisories

The Apple QuickTime player does not properly parse .fpx media files, which causes a memory corruption by opening a malformed file with an invalid value located in PoC repro.fpx at offset 0x49. Tested vulnerable are versions 7.6.8 (1675) and 7.6.6 (1671).
Tags: corruption memory fpx apple-quicktime apple-quicktime-player memory-corruption

13:23
Apple Quicktime Memory Corruption
» ‎ Packet Storm Security Recent Files

The Apple QuickTime player does not properly parse .fpx media files, which causes a memory corruption by opening a malformed file with an invalid value located in PoC repro.fpx at offset 0x49. Tested vulnerable are versions 7.6.8 (1675) and 7.6.6 (1671).
Tags: corruption memory fpx apple-quicktime apple-quicktime-player memory-corruption

13:23
Apple Quicktime Memory Corruption
» ‎ Packet Storm Security Misc. Files

The Apple QuickTime player does not properly parse .fpx media files, which causes a memory corruption by opening a malformed file with an invalid value located in PoC repro.fpx at offset 0x49. Tested vulnerable are versions 7.6.8 (1675) and 7.6.6 (1671).
Tags: corruption memory fpx apple-quicktime apple-quicktime-player memory-corruption

12:00
Bugtraq: Apple Quicktime Memory Corruption - CVE-2010-3801
» ‎ SecurityFocus Vulnerabilities

Apple Quicktime Memory Corruption - CVE-2010-3801
Tags: cve corruption memory apple-quicktime memory-corruption bugtraq

December 14, 2010
9:11
Internet Explorer CSS SetUserClip Memory Corruption
» ‎ Packet Storm Security Exploits

This Metasploit module exploits a memory corruption vulnerability within Microsoft's HTML engine (mshtml). When parsing an HTML page containing a specially crafted CSS tag, memory corruption occurs that can lead arbitrary code execution. It seems like Microsoft code inadvertently increments a vtable pointer to point to an unaligned address within the vtable's function pointers. This leads to the program counter being set to the address determined by the address "[vtable+0x30+1]". The particular address depends on the exact version of the mshtml library in use. Since the address depends on the version of mshtml, some versions may not be exploitable. Specifically, those ending up with a program counter value within another module, in kernel space, or just not able to be reached with various memory spraying techniques. Also, since the address is not controllable, it is unlikely to be possible to use ROP to bypass non-executable memory protections.
Tags: corruption address memory arbitrary-code-execution memory-corruption function-pointers

9:11
Internet Explorer CSS SetUserClip Memory Corruption
» ‎ Packet Storm Security Recent Files

This Metasploit module exploits a memory corruption vulnerability within Microsoft's HTML engine (mshtml). When parsing an HTML page containing a specially crafted CSS tag, memory corruption occurs that can lead arbitrary code execution. It seems like Microsoft code inadvertently increments a vtable pointer to point to an unaligned address within the vtable's function pointers. This leads to the program counter being set to the address determined by the address "[vtable+0x30+1]". The particular address depends on the exact version of the mshtml library in use. Since the address depends on the version of mshtml, some versions may not be exploitable. Specifically, those ending up with a program counter value within another module, in kernel space, or just not able to be reached with various memory spraying techniques. Also, since the address is not controllable, it is unlikely to be possible to use ROP to bypass non-executable memory protections.
Tags: corruption address memory arbitrary-code-execution memory-corruption function-pointers

9:11
Internet Explorer CSS SetUserClip Memory Corruption
» ‎ Packet Storm Security Misc. Files

This Metasploit module exploits a memory corruption vulnerability within Microsoft's HTML engine (mshtml). When parsing an HTML page containing a specially crafted CSS tag, memory corruption occurs that can lead arbitrary code execution. It seems like Microsoft code inadvertently increments a vtable pointer to point to an unaligned address within the vtable's function pointers. This leads to the program counter being set to the address determined by the address "[vtable+0x30+1]". The particular address depends on the exact version of the mshtml library in use. Since the address depends on the version of mshtml, some versions may not be exploitable. Specifically, those ending up with a program counter value within another module, in kernel space, or just not able to be reached with various memory spraying techniques. Also, since the address is not controllable, it is unlikely to be possible to use ROP to bypass non-executable memory protections.
Tags: corruption address memory arbitrary-code-execution memory-corruption function-pointers

December 10, 2010
0:00
Vuln: Mozilla Firefox CVE-2010-3778 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-3778 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
December 08, 2010
0:00
Vuln: Apple QuickTime (CVE-2010-3802) QTVR File Memory Corruption Remote Code Execution Vulnerability
» ‎ SecurityFocus Vulnerabilities

Apple QuickTime (CVE-2010-3802) QTVR File Memory Corruption Remote Code Execution Vulnerability
Tags: corruption remote memory memory-corruption code-execution apple-quicktime
December 07, 2010
0:00
Vuln: Apple QuickTime PICT File 'PackBits()' Memory Corruption Remote Code Execution Vulnerability
» ‎ SecurityFocus Vulnerabilities

Apple QuickTime PICT File 'PackBits()' Memory Corruption Remote Code Execution Vulnerability
Tags: corruption remote memory memory-corruption code-execution vulnerability
December 01, 2010
0:00
Vuln: libxml2 'XPATH' Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

libxml2 'XPATH' Memory Corruption Vulnerability
Tags: corruption memory libxml memory-corruption vulnerability
November 29, 2010
0:00
Vuln: libxml2 'XPATH' Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

libxml2 'XPATH' Memory Corruption Vulnerability
Tags: corruption memory libxml memory-corruption vulnerability
November 22, 2010
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
November 17, 2010
0:00
Vuln: Apple QuickTime AVI File Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Apple QuickTime AVI File Memory Corruption Vulnerability
Tags: vulnerability corruption memory apple-quicktime avi-file memory-corruption

November 15, 2010
16:50
CakePHP 1.3.5 / 1.2.8 Cache Corruption
» ‎ Packet Storm Security Exploits

CakePHP versions 1.3.5 and below and 1.2.8 and below unserialize() cache corruption exploit.
Tags: corruption cache cakephp

16:50
CakePHP 1.3.5 / 1.2.8 Cache Corruption
» ‎ Packet Storm Security Recent Files

CakePHP versions 1.3.5 and below and 1.2.8 and below unserialize() cache corruption exploit.
Tags: corruption cache cakephp

16:50
CakePHP 1.3.5 / 1.2.8 Cache Corruption
» ‎ Packet Storm Security Misc. Files

CakePHP versions 1.3.5 and below and 1.2.8 and below unserialize() cache corruption exploit.
Tags: corruption cache cakephp

November 12, 2010
16:01
11.11.10-1.txt
» ‎ Packet Storm Security Recent Files

iDefense Security Advisory 11.11.10 - Remote exploitation of a memory corruption vulnerability in Apple Inc.'s OfficeImport framework could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability occurs when parsing an Excel file with a maliciously constructed Excel record. Specific values within this record can trigger a memory corruption vulnerability, and result in values from the file being used as function pointers. This allows an attacker to execute arbitrary code.
Tags: memory vulnerability corruption memory-corruption idefense-security-advisory function-pointers

16:00
11.11.10-1.txt
» ‎ Packet Storm Security Advisories

iDefense Security Advisory 11.11.10 - Remote exploitation of a memory corruption vulnerability in Apple Inc.'s OfficeImport framework could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability occurs when parsing an Excel file with a maliciously constructed Excel record. Specific values within this record can trigger a memory corruption vulnerability, and result in values from the file being used as function pointers. This allows an attacker to execute arbitrary code.
Tags: memory vulnerability corruption memory-corruption idefense-security-advisory function-pointers

0:00
Vuln: Apple Mac OS X CoreText (CVE-2010-1837) Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Apple Mac OS X CoreText (CVE-2010-1837) Memory Corruption Vulnerability
Tags: vulnerability corruption memory x-coretext apple-mac-os memory-corruption apple-mac-os-x

November 04, 2010
22:17
ms10_xxx_ie_css_clip.rb.txt
» ‎ Packet Storm Security Exploits

This Metasploit module exploits a memory corruption vulnerability within Microsoft's HTML engine (mshtml). When parsing an HTML page containing a specially crafted CSS tag, memory corruption occurs that can lead arbitrary code execution.
Tags: memory html corruption arbitrary-code-execution memory-corruption css-clip

October 29, 2010
10:01
firefox-memcorrupt.txt
» ‎ Packet Storm Security Recent Files

This is a simplified memory corruption proof of concept exploit for Firefox.
Tags: memory txt corruption memory-corruption proof-of-concept

10:01
firefox-memcorrupt.txt
» ‎ Packet Storm Security Exploits

This is a simplified memory corruption proof of concept exploit for Firefox.
Tags: memory txt corruption memory-corruption proof-of-concept

October 06, 2010
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
September 24, 2010
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak

September 10, 2010
13:46
Excel RTD Memory Corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

Excel RTD Memory Corruption
Tags: rtd corruption memory memory-corruption

August 26, 2010
8:00
Bugtraq: Apple CoreGraphics (Preview) Memory Corruption Vulnerability - CVE-2010-1801
» ‎ SecurityFocus Vulnerabilities

Apple CoreGraphics (Preview) Memory Corruption Vulnerability - CVE-2010-1801
Tags: corruption preview memory apple-coregraphics memory-corruption bugtraq vulnerability
August 18, 2010
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak

August 03, 2010
1:00
Avast! 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption
» ‎ 1337day (was: Inj3ct0r, 1337db)

Avast! 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption
Tags: avast kernel aswfw memory-pool kernel-driver corruption

August 02, 2010
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak

July 27, 2010
19:01
MDVSA-2010-140.txt
» ‎ Packet Storm Security Recent Files

Mandriva Linux Security Advisory 2010-140 - This is a maintenance and security update that upgrades php to 5.3.3 for 2010.0/2010.1. Rewrote var_export() to use smart_str rather than output buffering, prevents data disclosure if a fatal error occurs. Fixed a possible resource destruction issues in shm_put_var(). Fixed a possible information leak because of interruption of XOR operator. Fixed a possible memory corruption because of unexpected call-time pass by reference and following memory clobbering through callbacks. Fixed a possible memory corruption in ArrayObject::uasort(). Fixed a possible memory corruption in parse_str(). Fixed a possible memory corruption in pack(). Fixed a possible memory corruption in substr_replace(). Fixed a possible memory corruption in addcslashes(). Fixed a possible stack exhaustion inside fnmatch(). Fixed a possible dechunking filter buffer overflow. Fixed a possible arbitrary memory access inside sqlite extension. Fixed string format validation inside phar extension. Fixed handling of session variable serialization on certain prefix characters. Fixed a NULL pointer dereference when processing invalid XML-RPC requests. Fixed SplObjectStorage unserialization problems. Fixed possible buffer overflows in mysqlnd_list_fields, mysqlnd_change_user. Fixed possible buffer overflows when handling error packets in mysqlnd. Additionally some of the third party extensions and required dependencies has been upgraded and/or rebuilt for the new php version.
Tags: memory fixed corruption memory-corruption format-validation buffer-overflows

19:00
MDVSA-2010-140.txt
» ‎ Packet Storm Security Advisories

Mandriva Linux Security Advisory 2010-140 - This is a maintenance and security update that upgrades php to 5.3.3 for 2010.0/2010.1. Rewrote var_export() to use smart_str rather than output buffering, prevents data disclosure if a fatal error occurs. Fixed a possible resource destruction issues in shm_put_var(). Fixed a possible information leak because of interruption of XOR operator. Fixed a possible memory corruption because of unexpected call-time pass by reference and following memory clobbering through callbacks. Fixed a possible memory corruption in ArrayObject::uasort(). Fixed a possible memory corruption in parse_str(). Fixed a possible memory corruption in pack(). Fixed a possible memory corruption in substr_replace(). Fixed a possible memory corruption in addcslashes(). Fixed a possible stack exhaustion inside fnmatch(). Fixed a possible dechunking filter buffer overflow. Fixed a possible arbitrary memory access inside sqlite extension. Fixed string format validation inside phar extension. Fixed handling of session variable serialization on certain prefix characters. Fixed a NULL pointer dereference when processing invalid XML-RPC requests. Fixed SplObjectStorage unserialization problems. Fixed possible buffer overflows in mysqlnd_list_fields, mysqlnd_change_user. Fixed possible buffer overflows when handling error packets in mysqlnd. Additionally some of the third party extensions and required dependencies has been upgraded and/or rebuilt for the new php version.
Tags: memory fixed corruption memory-corruption format-validation buffer-overflows

0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
July 21, 2010
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
0:00
Vuln: Mozilla Firefox CVE-2010-1200 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1200 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
July 20, 2010
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
July 19, 2010
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
July 16, 2010
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
July 15, 2010
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
July 08, 2010
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
July 02, 2010
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak

July 01, 2010
16:59
Adobe Director DIRAPI.DLL Memory Corruption Vulnerability
» ‎ SecuriTeam

Adobe Director is prone to a memory corruption vulnerability.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!

Tags: corruption adobe memory director-dirapi adobe-director memory-corruption safer-use
13:57
Adobe Director DIRAPI.DLL Memory Corruption Vulnerability
» ‎ SecuriTeam

Adobe Director is prone to a memory corruption vulnerability.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!

Tags: corruption adobe memory director-dirapi adobe-director memory-corruption safer-use

0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak

June 30, 2010
17:17
Adobe Director DIRAPI.DLL Memory Corruption Vulnerability
» ‎ SecuriTeam

Adobe Director is prone to a memory corruption vulnerability.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!

Tags: corruption adobe memory director-dirapi adobe-director memory-corruption safer-use

0:00
Vuln: Mozilla Firefox CVE-2010-1200 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1200 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
0:00
Vuln: Mozilla Firefox CVE-2010-1202 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1202 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
0:00
Vuln: Mozilla Firefox CVE-2010-1201 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1201 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
0:00
Vuln: libpng Memory Corruption and Memory Leak Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

libpng Memory Corruption and Memory Leak Vulnerabilities
Tags: corruption libpng memory memory-corruption memory-leak
June 29, 2010
0:00
Vuln: Mozilla Firefox CVE-2010-1200 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1200 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
0:00
Vuln: Mozilla Firefox CVE-2010-1202 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1202 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
June 28, 2010
0:00
Vuln: Mozilla Firefox CVE-2010-1200 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1200 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
0:00
Vuln: Mozilla Firefox CVE-2010-1202 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1202 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
June 25, 2010
0:00
Vuln: Mozilla Firefox CVE-2010-1201 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1201 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
0:00
Vuln: Mozilla Firefox CVE-2010-1202 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1202 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
June 24, 2010
0:00
Vuln: Mozilla Firefox CVE-2010-1200 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1200 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
0:00
Vuln: Mozilla Firefox CVE-2010-1202 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1202 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
0:00
Vuln: Mozilla Firefox CVE-2010-1201 Memory Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Mozilla Firefox CVE-2010-1201 Memory Corruption Vulnerability
Tags: mozilla corruption memory memory-corruption mozilla-firefox vulnerability
June 02, 2010
0:00
Vuln: Multiple Kerio Products Administration Console File Disclosure and Corruption Vulnerability
» ‎ SecurityFocus Vulnerabilities

Multiple Kerio Products Administration Console File Disclosure and Corruption Vulnerability
Tags: multiple administration kerio vulnerability corruption
May 12, 2010
8:00
Bugtraq: Multiple memory corruption vulnerabilities in Ghostscript
» ‎ SecurityFocus Vulnerabilities

Multiple memory corruption vulnerabilities in Ghostscript
Tags: memory multiple corruption memory-corruption vulnerabilities

May 11, 2010
20:34
ZDI-10-088.txt
» ‎ Packet Storm Security Recent Files

Zero Day Initiative Advisory 10-088 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Shockwave. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the code responsible for parsing 3D objects defined inside Director files. An undocumented 4-byte field within record type 0xFFFFFF49 can be modified to cause corruption of heap memory. This corruption can be used to modify function pointers and achieve code execution.
Tags: code vulnerability corruption shockwave-user heap-memory function-pointers

20:34
ZDI-10-088.txt
» ‎ Packet Storm Security Advisories

Zero Day Initiative Advisory 10-088 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Shockwave. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the code responsible for parsing 3D objects defined inside Director files. An undocumented 4-byte field within record type 0xFFFFFF49 can be modified to cause corruption of heap memory. This corruption can be used to modify function pointers and achieve code execution.
Tags: code vulnerability corruption shockwave-user heap-memory function-pointers

March 01, 2010
15:00
Internet Exploiter II v3.0 - MS05-20 DHTML memory corruption PoC Exploit
» ‎ 1337day (was: Inj3ct0r, 1337db)

Internet Exploiter II v3.0 - MS05-20 DHTML memory corruption PoC Exploit
Tags: memory exploiter corruption internet-exploiter memory-corruption
January 24, 2010
12:00
Firefox 3.6 (XML parser) Memory Corruption PoC/DoS
» ‎ 1337day (was: Inj3ct0r, 1337db)

Firefox 3.6 (XML parser) Memory Corruption PoC/DoS
Tags: parser corruption memory memory-corruption firefox

jetlib.sec » Tags » corruption

Feeds

199 items tagged "corruption"

Tags: keyboard corruption windows keyboard-layout proof-of-concept microsoft-windows

Tags: cve corruption memory apple-quicktime memory-corruption bugtraq

Tags: corruption parsing pct apple-quicktime e.-quicktime memory-corruption dllmain

Tags: corruption parsing pct apple-quicktime e.-quicktime memory-corruption dllmain

Tags: integer framework net integer-overflow-vulnerability heap corruption

Tags: integer framework net integer-overflow-vulnerability heap corruption

Tags: integer framework net integer-overflow-vulnerability heap corruption

Tags: corruption memory sumatrapdf memory-corruption proof-of-concept chm

Tags: corruption memory sumatrapdf memory-corruption proof-of-concept chm

Tags: corruption memory sumatrapdf memory-corruption proof-of-concept chm

Tags: corruption openssl memory rsa-public-keys memory-corruption x-509

Tags: corruption openssl memory rsa-public-keys memory-corruption x-509

Tags: corruption libreoffice memory memory-corruption soffice proof-of-concept

Tags: corruption libreoffice memory memory-corruption soffice proof-of-concept

Tags: exploit corruption memory memory-corruption exploits

Tags: glibc fnmatch gnu vulnerability corruption

Tags: corruption taglib memory memory-corruption denial-of-service infinite-loop

Tags: corruption pointer Skype vulnerability

Tags: corruption pointer Skype vulnerability

Tags: corruption pointer Skype vulnerability

Tags: corruption taglib memory memory-corruption denial-of-service infinite-loop

Tags: corruption realplayer memory memory-corruption vulnerability

Tags: corruption realplayer memory memory-corruption vulnerability

Tags: corruption realplayer memory memory-corruption vulnerability

Tags: corruption memory libxml memory-corruption vulnerability

Tags: exploit corruption memory memory-corruption exploits

Tags: exploit corruption memory memory-corruption exploits

Tags: exploit corruption memory memory-corruption exploits

Tags: exploit corruption memory memory-corruption exploits

Tags: free python pypam pam python-bindings exploits corruption

Tags: poc python pypam pam python-bindings corruption

Tags: free python pypam pam python-bindings corruption

Tags: exploit corruption memory memory-corruption exploits

Tags: glibc vulnerability corruption

Tags: glibc fnmatch gnu vulnerability corruption

Tags: corruption heap player unity d-web heap-corruption web-player player-versions

Tags: corruption memory buzz memory-corruption proof-of-concept

Tags: hat corruption red memory-corruption red-hat-security correct-memory

Tags: hat corruption red memory-corruption red-hat-security correct-memory

Tags: hat corruption red memory-corruption red-hat-security correct-memory

Tags: corruption Skype memory memory-corruption vulnerability

Tags: corruption Skype memory memory-corruption vulnerability

Tags: corruption Skype memory memory-corruption vulnerability

Tags: glibc fnmatch gnu vulnerability corruption

Tags: multiple corruption memory memory-corruption

Tags: java corruption memory joshua-drake-tags abu-dhabi sun-java-runtime sun-java-runtime-environment java-runtime-environment

Tags: java corruption memory joshua-drake-tags abu-dhabi sun-java-runtime sun-java-runtime-environment java-runtime-environment

Tags: multiple corruption memory memory-corruption

Tags: corruption reader adobe d-memory memory-corruption adobe-reader exploits

Tags: multiple corruption memory memory-corruption

Tags: corruption memory libxml memory-corruption vulnerability

Tags: htc corruption memory memory-corruption default-media-player mobile-devices

Tags: htc corruption memory memory-corruption default-media-player mobile-devices

Tags: htc corruption memory memory-corruption default-media-player mobile-devices

Tags: corruption libpng memory memory-corruption memory-leak

Tags: corruption heap memory heap-memory memory-corruption information-store

Tags: glibc fnmatch gnu vulnerability corruption

Tags: ffmpeg memory corruption memory-corruption libavcodec vulnerability

Tags: ffmpeg memory corruption memory-corruption libavcodec vulnerability

Tags: ffmpeg memory corruption memory-corruption libavcodec vulnerability

Tags: multiple corruption memory memory-corruption

Tags: corruption memory gateprotectcc memory-corruption vulnerability

Tags: corruption memory gateprotectcc memory-corruption vulnerability

Tags: multiple corruption memory memory-corruption

Tags: corruption memory libxml memory-corruption vulnerability

Tags: multiple corruption memory memory-corruption

Tags: multiple corruption memory memory-corruption

Tags: glibc fnmatch gnu vulnerability corruption

Tags: corruption opera memory memory-corruption code-execution invalid-addresses

Tags: corruption opera memory memory-corruption code-execution invalid-addresses

Tags: corruption opera memory memory-corruption code-execution invalid-addresses

Tags: memory arbitrary corruption memory-corruption ncss

Tags: corruption memory groupwise idefense-security-advisory novell-groupwise memory-corruption