«
Expand/Collapse
335 items tagged "stack overflow"
Related tags:
zero [+],
traversal [+],
manager. authentication [+],
java [+],
initiative [+],
groupwise [+],
day [+],
adobe [+],
winamp [+],
aoa [+],
remote [+],
poc [+],
player [+],
local [+],
kernel [+],
converter [+],
advisory [+],
adobe flash player [+],
vulnerability [+],
version [+],
usb [+],
target service [+],
solaris [+],
server [+],
record stack [+],
oracle java [+],
oracle [+],
network node manager [+],
linux security [+],
buffer overflow [+],
overflow vulnerability [+],
overflow [+],
windows [+],
opc [+],
media [+],
linux [+],
free [+],
flvplayer [+],
flash [+],
editor [+],
bacnet [+],
world of warcraft [+],
world [+],
winmerge [+],
windows movie maker [+],
webhmi [+],
warcraft [+],
video converter [+],
unrealircd [+],
unrar [+],
tgz [+],
promotic [+],
pdf [+],
novell groupwise internet agent [+],
netware [+],
ms office [+],
movie [+],
maker [+],
libmodplug [+],
k meleon [+],
ipcomp [+],
iconics [+],
hub [+],
excel [+],
dvd [+],
creator [+],
client [+],
based buffer overflow [+],
avid media composer [+],
avid [+],
avi [+],
xrfc [+],
x stack [+],
word [+],
winlog [+],
wincc [+],
web server version [+],
web based management [+],
video [+],
version 6 [+],
system compromise [+],
sunway [+],
stack overflows [+],
solaris versions [+],
sistemi [+],
simatic [+],
siemens simatic [+],
siemens [+],
sielco [+],
shellcode [+],
shell [+],
server username [+],
sap [+],
s codesys [+],
reader [+],
qnx [+],
port [+],
plugin [+],
phrelay [+],
phditto [+],
patch [+],
overwrite [+],
opera [+],
opc client [+],
obj [+],
null pointers [+],
null [+],
novell groupwise [+],
mp4 converter [+],
mod [+],
moaub [+],
microsoft office word [+],
microsoft excel [+],
messenger [+],
message bus [+],
mdvsa [+],
m stack [+],
license server [+],
license [+],
java web server [+],
integer overflow [+],
insufficient checks [+],
imagemagick [+],
image [+],
html [+],
google [+],
gentoo linux security [+],
gentoo [+],
genesis32 [+],
ftp [+],
freefloat [+],
freebsd security [+],
freebsd [+],
foxit [+],
forcecontrol [+],
flexnet [+],
econet [+],
dizzy [+],
digitalbox [+],
denis courmont [+],
denial [+],
decompressor [+],
debian [+],
control [+],
configuration [+],
concept test [+],
command execution [+],
chrome version [+],
chrome [+],
buffer overflow vulnerabilities [+],
buffer [+],
bsd [+],
brute [+],
arbitrary code execution [+],
aoa dvd creator [+],
anvsoft [+],
andy davis [+],
activex [+],
stack [+],
wireshark [+],
whitepaper [+],
vmstat [+],
user [+],
tutorial [+],
thunder [+],
tehtri security [+],
sun [+],
socat [+],
scadapro [+],
realwin [+],
reads [+],
proof [+],
prl [+],
pcbsd [+],
parameter [+],
office [+],
novell netware [+],
novell iprint [+],
novell groupwise webaccess [+],
mtm [+],
msexcel [+],
measuresoft [+],
lotus domino [+],
lotus [+],
library management system [+],
kmeleon [+],
kankan [+],
iphone [+],
ipad [+],
ibm [+],
file [+],
dsa [+],
driver stack [+],
domino icalendar [+],
discovery [+],
datac [+],
daqfactory [+],
csv [+],
cs4 [+],
code [+],
cmm [+],
client v1 [+],
build [+],
bugtraq [+],
automatic [+],
attack [+],
argument [+],
app [+],
amlibweb [+],
amlib [+],
proof of concept [+],
txt [+],
xpl [+],
webaccess [+],
vlc media player [+],
vlc [+],
viewer [+],
uri handling [+],
technical [+],
sunjavawebserver [+],
space restrictions [+],
smb [+],
shockwave [+],
search command [+],
search [+],
realplayer [+],
readmabcurvedata [+],
project [+],
postscript [+],
player 1 [+],
pgp [+],
orbital viewer [+],
orbital [+],
opentype [+],
openssh [+],
nicb [+],
ngs [+],
new [+],
netware v6 [+],
netbsd [+],
music editor [+],
music [+],
msexcelobj [+],
mp3 [+],
microsoft iis [+],
metasploit [+],
mercury [+],
memory corruption [+],
mandriva linux [+],
mailto [+],
lostmon [+],
libapache [+],
ldap service [+],
keyserver [+],
javacmm [+],
iprint [+],
internet [+],
indexer [+],
implementation [+],
imapd [+],
iis [+],
group [+],
fwd [+],
font [+],
domino [+],
cs5 [+],
critical vulnerability [+],
cool music [+],
cool [+],
composer [+],
chm files [+],
adobe shockwave player [+],
adobe photoshop [+],
exploits [+],
microsoft [+],
kernel stack [+],
stack buffer [+],
novell [+],
denial of service [+],
security [+],
exploit [+],
directory traversal [+],
directory [+],
code execution [+],
buffer overflow vulnerability [+],
zip,
yassl,
yahoo,
x. we,
wingate version,
wingate,
whatsnew,
webserver,
vupen,
valid credentials,
uri,
unicode,
time string,
tembria,
target frame,
surething cd labeler,
surething,
studio v1,
studio,
stud,
stream,
stack segment,
service vulnerability,
server monitor,
searcher,
script file,
saved,
safari,
ripper,
research,
request,
quick player,
qbik,
proxy service,
powerpoint,
pls,
playlist,
player v1,
payloads,
pa,
ovwebhelp,
ovalarm,
opie,
operations manager,
operations,
open,
office excel,
nse,
novelliprint,
novell netware version,
nokia multimedia player,
nokia,
nnm,
nmap,
netgear,
mysql,
multiple,
multimedia,
ms10,
module,
mini stream ripper,
mini stream,
mini,
millenium mp3,
millenium,
microsoft windows,
microsoft powerpoint viewer,
malformed,
mac os,
m3u file,
m3u,
m.j.m. quick,
lexmark laser printers,
lexmark,
laser printer,
laser,
labeler,
jetaudio,
jad java decompiler,
jad,
intellitamper,
hp openview network node manager,
heap memory,
groovy,
ghostscript,
ftpd,
ftp server,
evocam,
easyftp,
dino dai zovi,
decompiler class,
decompiler,
datetime,
corelan,
convertor,
class stack,
chemviewx,
cd player,
cd labeler,
castripper,
audio convertor,
audio,
attacker,
atomixmp3,
atomixmp,
asxmp,
asx to mp3 converter,
asx file,
asx,
arp spoofing,
archive,
archiv,
arbitrary code,
apple safari,
aimp
-
-
16:23
»
Packet Storm Security Exploits
FlexNet License Server Manager versions 11.9.1 and below suffer from a stack overflow vulnerability in lmgrd. Proof of concept included.
-
8:23
»
Packet Storm Security Exploits
QNX phrelay/phindows/phditto suffer from bpe_decompress stack overflow and Photon Session buffer overflow vulnerabilities. Proof of concept test code included.
-
8:23
»
Packet Storm Security Recent Files
QNX phrelay/phindows/phditto suffer from bpe_decompress stack overflow and Photon Session buffer overflow vulnerabilities. Proof of concept test code included.
-
8:23
»
Packet Storm Security Misc. Files
QNX phrelay/phindows/phditto suffer from bpe_decompress stack overflow and Photon Session buffer overflow vulnerabilities. Proof of concept test code included.
-
19:37
»
Packet Storm Security Exploits
Novell GroupWise Messenger Client versions 2.1.0 and below suffer from a unicode stack overflow vulnerability. Proof of concept code included.
-
19:37
»
Packet Storm Security Misc. Files
Novell GroupWise Messenger Client versions 2.1.0 and below suffer from a unicode stack overflow vulnerability. Proof of concept code included.
-
-
16:06
»
Packet Storm Security Advisories
Zero Day Initiative Advisory 12-03 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within webappmon.exe CGI program. When processing crafted parameters, there exists an insufficient boundary check before supplying a format string with the values, causing a stack overflow. This can lead to memory corruption which can be leveraged to execute arbitrary code under the context of the target service.
-
16:06
»
Packet Storm Security Recent Files
Zero Day Initiative Advisory 12-03 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within webappmon.exe CGI program. When processing crafted parameters, there exists an insufficient boundary check before supplying a format string with the values, causing a stack overflow. This can lead to memory corruption which can be leveraged to execute arbitrary code under the context of the target service.
-
16:06
»
Packet Storm Security Misc. Files
Zero Day Initiative Advisory 12-03 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within webappmon.exe CGI program. When processing crafted parameters, there exists an insufficient boundary check before supplying a format string with the values, causing a stack overflow. This can lead to memory corruption which can be leveraged to execute arbitrary code under the context of the target service.
-
16:05
»
Packet Storm Security Advisories
Zero Day Initiative Advisory 12-02 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within ov.dll. When processing a user supplied file name for the textFile option, there exists an insufficient boundary check before supplying the value to a format string within _OVBuildPath, causing a stack overflow. This can lead to memory corruption which can be leveraged to execute arbitrary code under the context of the target service.
-
16:05
»
Packet Storm Security Recent Files
Zero Day Initiative Advisory 12-02 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within ov.dll. When processing a user supplied file name for the textFile option, there exists an insufficient boundary check before supplying the value to a format string within _OVBuildPath, causing a stack overflow. This can lead to memory corruption which can be leveraged to execute arbitrary code under the context of the target service.
-
16:05
»
Packet Storm Security Misc. Files
Zero Day Initiative Advisory 12-02 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within ov.dll. When processing a user supplied file name for the textFile option, there exists an insufficient boundary check before supplying the value to a format string within _OVBuildPath, causing a stack overflow. This can lead to memory corruption which can be leveraged to execute arbitrary code under the context of the target service.
-
10:34
»
Packet Storm Security Exploits
This Metasploit module exploits a stack buffer overflow in process AvidPhoneticIndexer.exe (port 4659), which comes as part of the Avid Media Composer 5.5 Editing Suite. This daemon sometimes starts on a different port; if you start it standalone it will run on port 4660.
-
10:34
»
Packet Storm Security Recent Files
This Metasploit module exploits a stack buffer overflow in process AvidPhoneticIndexer.exe (port 4659), which comes as part of the Avid Media Composer 5.5 Editing Suite. This daemon sometimes starts on a different port; if you start it standalone it will run on port 4660.
-
10:34
»
Packet Storm Security Misc. Files
This Metasploit module exploits a stack buffer overflow in process AvidPhoneticIndexer.exe (port 4659), which comes as part of the Avid Media Composer 5.5 Editing Suite. This daemon sometimes starts on a different port; if you start it standalone it will run on port 4660.
-
-
16:51
»
Packet Storm Security Exploits
3S CoDeSys versions 3.4 SP4 Patch 2 and below suffer from integer overflow, stack overflow, folder creation and multiple NULL pointer vulnerabilities.
-
16:51
»
Packet Storm Security Recent Files
3S CoDeSys versions 3.4 SP4 Patch 2 and below suffer from integer overflow, stack overflow, folder creation and multiple NULL pointer vulnerabilities.
-
16:51
»
Packet Storm Security Misc. Files
3S CoDeSys versions 3.4 SP4 Patch 2 and below suffer from integer overflow, stack overflow, folder creation and multiple NULL pointer vulnerabilities.
-
-
15:33
»
Packet Storm Security Exploits
Siemens SIMATIC WinCC Flexible suffers from stack overflow, directory traversal, denial of service and arbitrary memory read access vulnerabilities.
-
15:33
»
Packet Storm Security Recent Files
Siemens SIMATIC WinCC Flexible suffers from stack overflow, directory traversal, denial of service and arbitrary memory read access vulnerabilities.
-
15:33
»
Packet Storm Security Misc. Files
Siemens SIMATIC WinCC Flexible suffers from stack overflow, directory traversal, denial of service and arbitrary memory read access vulnerabilities.
-
-
15:46
»
Packet Storm Security Advisories
It was discovered that a local attacker can send a malformed USB hub class descriptor via a malicious USB device and trigger a kernel stack overflow in Solaris versions 8, 9, 10, and 11 Express.
-
15:46
»
Packet Storm Security Recent Files
It was discovered that a local attacker can send a malformed USB hub class descriptor via a malicious USB device and trigger a kernel stack overflow in Solaris versions 8, 9, 10, and 11 Express.
-
15:46
»
Packet Storm Security Misc. Files
It was discovered that a local attacker can send a malformed USB hub class descriptor via a malicious USB device and trigger a kernel stack overflow in Solaris versions 8, 9, 10, and 11 Express.
-
-
10:56
»
Packet Storm Security Advisories
Zero Day Initiative Advisory 11-299 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Adobe 2D.x3d PICT image parsing routines. When Adobe Reader parses an PICT image it uses a static buffer to store certain image header values. Due to insufficient checks for the end of the buffer it is possible to write outside the stack buffer. The resulting stack overflow could result in remote code execution under the context of the current user.
-
10:56
»
Packet Storm Security Recent Files
Zero Day Initiative Advisory 11-299 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Adobe 2D.x3d PICT image parsing routines. When Adobe Reader parses an PICT image it uses a static buffer to store certain image header values. Due to insufficient checks for the end of the buffer it is possible to write outside the stack buffer. The resulting stack overflow could result in remote code execution under the context of the current user.
-
10:56
»
Packet Storm Security Misc. Files
Zero Day Initiative Advisory 11-299 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Adobe 2D.x3d PICT image parsing routines. When Adobe Reader parses an PICT image it uses a static buffer to store certain image header values. Due to insufficient checks for the end of the buffer it is possible to write outside the stack buffer. The resulting stack overflow could result in remote code execution under the context of the current user.
-
-
7:40
»
Packet Storm Security Exploits
PROMOTIC version 8.1.3 suffers from an ActiveX SaveCfg stack overflow, an ActiveX AddTrend heap overflow, and a directory traversal. Details and proof of concept included.
-
7:40
»
Packet Storm Security Exploits
PROMOTIC version 8.1.3 suffers from an ActiveX SaveCfg stack overflow, an ActiveX AddTrend heap overflow, and a directory traversal. Details and proof of concept included.
-
7:40
»
Packet Storm Security Recent Files
PROMOTIC version 8.1.3 suffers from an ActiveX SaveCfg stack overflow, an ActiveX AddTrend heap overflow, and a directory traversal. Details and proof of concept included.
-
7:40
»
Packet Storm Security Misc. Files
PROMOTIC version 8.1.3 suffers from an ActiveX SaveCfg stack overflow, an ActiveX AddTrend heap overflow, and a directory traversal. Details and proof of concept included.
-
-
15:21
»
Packet Storm Security Advisories
FreeBSD Security Advisory - The code used to decompress a file created by compress(1) does not do sufficient boundary checks on compressed code words, allowing reference beyond the decompression table, which may result in a stack overflow or an infinite loop when the decompressor encounters a corrupted file.
-
15:21
»
Packet Storm Security Recent Files
FreeBSD Security Advisory - The code used to decompress a file created by compress(1) does not do sufficient boundary checks on compressed code words, allowing reference beyond the decompression table, which may result in a stack overflow or an infinite loop when the decompressor encounters a corrupted file.
-
15:21
»
Packet Storm Security Misc. Files
FreeBSD Security Advisory - The code used to decompress a file created by compress(1) does not do sufficient boundary checks on compressed code words, allowing reference beyond the decompression table, which may result in a stack overflow or an infinite loop when the decompressor encounters a corrupted file.
-
-
11:22
»
Packet Storm Security Exploits
Sunway ForceControl versions 6.1 SP3 and below suffer from stack overflows, directory traversals, third party ActiveX code execution, and denial of service vulnerabilities.
-
11:22
»
Packet Storm Security Recent Files
Sunway ForceControl versions 6.1 SP3 and below suffer from stack overflows, directory traversals, third party ActiveX code execution, and denial of service vulnerabilities.
-
11:22
»
Packet Storm Security Misc. Files
Sunway ForceControl versions 6.1 SP3 and below suffer from stack overflows, directory traversals, third party ActiveX code execution, and denial of service vulnerabilities.
-
-
22:33
»
Packet Storm Security Exploits
Measuresoft ScadaPro versions 4.0.0 and below suffer from directory traversal, denial of service, and stack overflow vulnerabilities.
-
-
6:01
»
Packet Storm Security Exploits
This exploit leverages three vulnerabilities to escalate privileges. The primary vulnerability is a kernel stack overflow, not a stack buffer overflow as the CVE description incorrectly states. This may be the first public exploit for a kernel stack overflow, and it turns out to be a bit tricky due to some particulars of the econet vulnerability. It involves the econet_sendmsg function, ec_dev_ioctl function, and the ipc subsystem. Linux kernel versions prior to 2.6.36.2 are affected.
-
6:01
»
Packet Storm Security Recent Files
This exploit leverages three vulnerabilities to escalate privileges. The primary vulnerability is a kernel stack overflow, not a stack buffer overflow as the CVE description incorrectly states. This may be the first public exploit for a kernel stack overflow, and it turns out to be a bit tricky due to some particulars of the econet vulnerability. It involves the econet_sendmsg function, ec_dev_ioctl function, and the ipc subsystem. Linux kernel versions prior to 2.6.36.2 are affected.
-
6:01
»
Packet Storm Security Misc. Files
This exploit leverages three vulnerabilities to escalate privileges. The primary vulnerability is a kernel stack overflow, not a stack buffer overflow as the CVE description incorrectly states. This may be the first public exploit for a kernel stack overflow, and it turns out to be a bit tricky due to some particulars of the econet vulnerability. It involves the econet_sendmsg function, ec_dev_ioctl function, and the ipc subsystem. Linux kernel versions prior to 2.6.36.2 are affected.
-
-
20:34
»
SecuriTeam
Libmodplug ReadS3M contains a stack based buffer overflow vulnerability due to insufficient validation of user supplied data.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!
-
-
12:18
»
Packet Storm Security Advisories
Andy Davis of NGS Secure has discovered a High risk vulnerability in Oracle Solaris. A local attacker can send a malformed USB configuration descriptor via a malicious USB device and trigger a kernel stack overflow, which could potentially result in arbitrary code execution.
-
12:18
»
Packet Storm Security Recent Files
Andy Davis of NGS Secure has discovered a High risk vulnerability in Oracle Solaris. A local attacker can send a malformed USB configuration descriptor via a malicious USB device and trigger a kernel stack overflow, which could potentially result in arbitrary code execution.
-
12:18
»
Packet Storm Security Misc. Files
Andy Davis of NGS Secure has discovered a High risk vulnerability in Oracle Solaris. A local attacker can send a malformed USB configuration descriptor via a malicious USB device and trigger a kernel stack overflow, which could potentially result in arbitrary code execution.
-
-
8:53
»
Packet Storm Security Exploits
ICONICS Genesis32 is a suite of OPC, SNMP, BACnet and Web-enabled HMI and SCADA applications. A stack overflow was found in an ActiveX control required by the WebHMI interface. This condition can be used to gain command execution. The affected control is 'GenVersion.dll' and has the ClassID of {CEFF5F48-BD2E-4D10-BAE5-AF729975E223}. This control is marked safe for scripting.
-
8:53
»
Packet Storm Security Recent Files
ICONICS Genesis32 is a suite of OPC, SNMP, BACnet and Web-enabled HMI and SCADA applications. A stack overflow was found in an ActiveX control required by the WebHMI interface. This condition can be used to gain command execution. The affected control is 'GenVersion.dll' and has the ClassID of {CEFF5F48-BD2E-4D10-BAE5-AF729975E223}. This control is marked safe for scripting.
-
8:53
»
Packet Storm Security Misc. Files
ICONICS Genesis32 is a suite of OPC, SNMP, BACnet and Web-enabled HMI and SCADA applications. A stack overflow was found in an ActiveX control required by the WebHMI interface. This condition can be used to gain command execution. The affected control is 'GenVersion.dll' and has the ClassID of {CEFF5F48-BD2E-4D10-BAE5-AF729975E223}. This control is marked safe for scripting.
-
-
15:49
»
Packet Storm Security Exploits
Microsoft HTML Help versions 6.1 and below suffer from a stack overflow vulnerability in itss.dll. Proof of concept code is included.
-
-
8:05
»
Packet Storm Security Advisories
Libmodplug library is prone to a stack based buffer overflow vulnerability due to insufficient validation of user supplied data. An attacker is able to execute arbitrary code in the context of the user when opening malicious S3M media files. Version 0.8.8.1 is affected.
-
8:05
»
Packet Storm Security Recent Files
Libmodplug library is prone to a stack based buffer overflow vulnerability due to insufficient validation of user supplied data. An attacker is able to execute arbitrary code in the context of the user when opening malicious S3M media files. Version 0.8.8.1 is affected.
-
8:05
»
Packet Storm Security Misc. Files
Libmodplug library is prone to a stack based buffer overflow vulnerability due to insufficient validation of user supplied data. An attacker is able to execute arbitrary code in the context of the user when opening malicious S3M media files. Version 0.8.8.1 is affected.
-
-
12:36
»
Packet Storm Security Exploits
Imagemagick version 6.6.8-5 with Libtiff version 6.9.4 appears to suffer from a buffer overflow vulnerability. Proof of concept .tif enclosed.
-
12:36
»
Packet Storm Security Misc. Files
Imagemagick version 6.6.8-5 with Libtiff version 6.9.4 appears to suffer from a buffer overflow vulnerability. Proof of concept .tif enclosed.
-
-
18:25
»
Packet Storm Security Advisories
Debian Linux Security Advisory 2149-1 - Remi Denis-Courmont discovered that dbus, a message bus application, is not properly limiting the nesting level when examining messages with extensive nested variants. This allows an attacker to crash the dbus system daemon due to a call stack overflow via crafted messages.
-
18:25
»
Packet Storm Security Recent Files
Debian Linux Security Advisory 2149-1 - Remi Denis-Courmont discovered that dbus, a message bus application, is not properly limiting the nesting level when examining messages with extensive nested variants. This allows an attacker to crash the dbus system daemon due to a call stack overflow via crafted messages.
-
18:25
»
Packet Storm Security Misc. Files
Debian Linux Security Advisory 2149-1 - Remi Denis-Courmont discovered that dbus, a message bus application, is not properly limiting the nesting level when examining messages with extensive nested variants. This allows an attacker to crash the dbus system daemon due to a call stack overflow via crafted messages.
-
-
19:48
»
Packet Storm Security Advisories
Gentoo Linux Security Advisory 201101-1 - gif2png contains a stack overflow vulnerability when parsing command line arguments. gif2png contains a command line parsing vulnerability that may result in a stack overflow due to an unexpectedly long input filename. Versions less than 2.5.1-r1 are affected.
-
19:48
»
Packet Storm Security Recent Files
Gentoo Linux Security Advisory 201101-1 - gif2png contains a stack overflow vulnerability when parsing command line arguments. gif2png contains a command line parsing vulnerability that may result in a stack overflow due to an unexpectedly long input filename. Versions less than 2.5.1-r1 are affected.
-
19:48
»
Packet Storm Security Misc. Files
Gentoo Linux Security Advisory 201101-1 - gif2png contains a stack overflow vulnerability when parsing command line arguments. gif2png contains a command line parsing vulnerability that may result in a stack overflow due to an unexpectedly long input filename. Versions less than 2.5.1-r1 are affected.
-
-
15:46
»
Packet Storm Security Advisories
Zero Day Initiative Advisory 10-292 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Power Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists in the handling of URL parameters when posting to the login form of the web based management web server. Proper bounds checking is not applied when parsing the Login variable which can result in an exploitable stack overflow. Successful exploitation can lead to complete system compromise under the SYSTEM credentials.
-
15:46
»
Packet Storm Security Recent Files
Zero Day Initiative Advisory 10-292 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Power Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists in the handling of URL parameters when posting to the login form of the web based management web server. Proper bounds checking is not applied when parsing the Login variable which can result in an exploitable stack overflow. Successful exploitation can lead to complete system compromise under the SYSTEM credentials.
-
15:46
»
Packet Storm Security Misc. Files
Zero Day Initiative Advisory 10-292 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Power Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists in the handling of URL parameters when posting to the login form of the web based management web server. Proper bounds checking is not applied when parsing the Login variable which can result in an exploitable stack overflow. Successful exploitation can lead to complete system compromise under the SYSTEM credentials.
-
-
10:37
»
SecuriTeam
Microsoft Office Word contains a critical vulnerability.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!
-
-
9:02
»
Packet Storm Security Recent Files
This Metasploit module exploits a stack overflow in SCADA Engine BACnet OPC Client v1.0.24. When the BACnet OPC Client parses a specially crafted csv file, arbitrary code may be executed.
-
9:02
»
Packet Storm Security Exploits
This Metasploit module exploits a stack overflow in SCADA Engine BACnet OPC Client v1.0.24. When the BACnet OPC Client parses a specially crafted csv file, arbitrary code may be executed.
-
8:54
»
Packet Storm Security Exploits
This Metasploit module exploits a stack overflow in SCADA Engine BACnet OPC Client v1.0.24. When the BACnet OPC Client parses a specially crafted csv file, arbitrary code may be executed.
-
8:54
»
Packet Storm Security Recent Files
This Metasploit module exploits a stack overflow in SCADA Engine BACnet OPC Client v1.0.24. When the BACnet OPC Client parses a specially crafted csv file, arbitrary code may be executed.
-
8:54
»
Packet Storm Security Misc. Files
This Metasploit module exploits a stack overflow in SCADA Engine BACnet OPC Client v1.0.24. When the BACnet OPC Client parses a specially crafted csv file, arbitrary code may be executed.
-
-
22:17
»
Packet Storm Security Exploits
This Metasploit module exploits a stack overflow in the LDAP service that is part of the NAI PGP Enterprise product suite. This Metasploit module was tested against PGP KeyServer v7.0. Due to space restrictions, egghunter is used to find our payload - therefore you may wish to adjust WfsDelay.
-
17:33
»
SecuriTeam
This vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of IBM Lotus Domino.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!
-
-
21:01
»
Packet Storm Security Recent Files
Mandriva Linux Security Advisory 2010-200 - It was discovered that the ASN.1 BER dissector in wireshark was susceptible to a stack overflow. For 2010.0 and 2010.1 wireshark was upgraded to v1.2.12 which is not vulnerable to this issue and was patched for CS4 and MES5 to resolve the vulnerability.
-
21:00
»
Packet Storm Security Advisories
Mandriva Linux Security Advisory 2010-200 - It was discovered that the ASN.1 BER dissector in wireshark was susceptible to a stack overflow. For 2010.0 and 2010.1 wireshark was upgraded to v1.2.12 which is not vulnerable to this issue and was patched for CS4 and MES5 to resolve the vulnerability.
-
-
20:00
»
Packet Storm Security Advisories
Mandriva Linux Security Advisory 2010-149 - Multiple stack overflow flaws have been reported in the way FreeType font rendering engine processed certain CFF opcodes. An attacker could use these flaws to create a specially-crafted font file that, when opened, would cause an application linked against libfreetype to crash, or, possibly execute arbitrary code.
-
18:00
»
Packet Storm Security Recent Files
Zero Day Initiative Advisory 10-150 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must open a malicious document. The specific flaw exists in the parsing of sprmCMajority records in a Word document. Due to the lack of parameter checking when processing sprmCMajority sprm groups it is possible to arbitrarily control the amount of data being written to a stack based buffer resulting in a stack overflow vulnerability which can overwrite critical exception structures. Successful exploitation can lead to remote code execution under the credentials of the currently logged in user.
-
18:00
»
Packet Storm Security Advisories
Zero Day Initiative Advisory 10-150 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must open a malicious document. The specific flaw exists in the parsing of sprmCMajority records in a Word document. Due to the lack of parameter checking when processing sprmCMajority sprm groups it is possible to arbitrarily control the amount of data being written to a stack based buffer resulting in a stack overflow vulnerability which can overwrite critical exception structures. Successful exploitation can lead to remote code execution under the credentials of the currently logged in user.
-
-
10:01
»
Packet Storm Security Recent Files
Debian Linux Security Advisory 2090-1 - A stack overflow vulnerability was found in socat that allows an attacker to execute arbitrary code with the privileges of the socat process.
-
10:00
»
Packet Storm Security Advisories
Debian Linux Security Advisory 2090-1 - A stack overflow vulnerability was found in socat that allows an attacker to execute arbitrary code with the privileges of the socat process.
-
-
16:01
»
Packet Storm Security Recent Files
This Metasploit module exploits a stack overflow in Amlib's Amlibweb Library Management System (NetOpacs). The webquery.dll API is available through IIS requests. By specifying an overly long string to the 'app' parameter, SeH can be reliably overwritten allowing for arbitrary remote code execution. In addition, it is possible to overwrite EIP by specifying an arbitrary parameter name with an '=' terminator.
-
16:01
»
Packet Storm Security Exploits
This Metasploit module exploits a stack overflow in Amlib's Amlibweb Library Management System (NetOpacs). The webquery.dll API is available through IIS requests. By specifying an overly long string to the 'app' parameter, SeH can be reliably overwritten allowing for arbitrary remote code execution. In addition, it is possible to overwrite EIP by specifying an arbitrary parameter name with an '=' terminator.
-
-
15:01
»
Packet Storm Security Recent Files
Two working proof of concept exploits for a stack overflow in Ghostscript. One works against PCBSD exploiting the vulnerability through CUPS. The other creates a .ps file that will trigger the vulnerability.
-
15:01
»
Packet Storm Security Exploits
Two working proof of concept exploits for a stack overflow in Ghostscript. One works against PCBSD exploiting the vulnerability through CUPS. The other creates a .ps file that will trigger the vulnerability.
-
19:02
»
Packet Storm Security Exploits
Microsoft Excel 0x5D record stack overflow exploit.
-
-
11:02
»
Packet Storm Security Exploits
Sun Java Web Server version 7.0 update 7 remote stack overflow exploit that is capable of bypassing DEP. In order to do this it uses ROP to invoke SetProcessDEPPolicy(). This is the second version of this exploit.
-
-
2:58
»
SecuriTeam
A critical vulnerability was discovered affecting Microsoft Office Excel.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!
-
-
13:02
»
Packet Storm Security Recent Files
TEHTRI-Security has released advisories discussing a stack overflow inside the iPhone iOS4 CFNetwork API, a client-side attack for BlackBerry devices, a client-side attack for HTC Windows Mobile cellphones, a client-side attack for the iPad and security issues related to trains.
-
13:02
»
Packet Storm Security Recent Files
Sun Java Web Server version 7.0 update 7 remote stack overflow exploit.
-
13:01
»
Packet Storm Security Advisories
TEHTRI-Security has released advisories discussing a stack overflow inside the iPhone iOS4 CFNetwork API, a client-side attack for BlackBerry devices, a client-side attack for HTC Windows Mobile cellphones, a client-side attack for the iPad and security issues related to trains.
-
-
22:01
»
Packet Storm Security Exploits
A vulnerability exists in the Netware CIFS.NLM driver which allows an attacker to trigger a kernel stack overflow by sending a specific 'Sessions Setup AndX' query. Successful exploitation of this issue will result in remote code execution with kernel privileges. Failed attempts may result in a remote denial of service. Netware SMB version 1.0 is vulnerable.
1337day (was: Inj3ct0r, 1337db)
OSVDB Vulnerabilities
Exploit-DB
SecurityFocus Vulnerabilities
Bugtraq
XSSed
Sophos security news
Penetration Testing
BackTrack Linux Forums
Threatpost
SecDocs
carnal0wnage.attackresearch.com
Carnal0wnage
Darknet
The Exploitant
Hack a Day
Wirevolution