< Back to JetLib.com

jetlib.sec » Tags » dll

« Expand/Collapse

502 items tagged "dll"

Skip to page: 1 2 3

December 30, 2012
19:17
IBM Lotus QuickR qp2 ActiveX Buffer Overflow
» ‎ Packet Storm Security Exploits

This Metasploit module exploits a buffer overflow vulnerability on the UploadControl ActiveX. The vulnerability exists in the handling of the "Attachment_Times" property, due to the insecure usage of the _swscanf. The affected ActiveX is provided by the qp2.dll installed with the IBM Lotus Quickr product. This Metasploit module has been tested successfully on IE6-IE9 on Windows XP, Vista and 7, using the qp2.dll 8.1.0.1800. In order to bypass ASLR the no aslr compatible module msvcr71.dll is used. This one is installed with the qp2 ActiveX.
Tags: dll activex module activex-buffer-overflow buffer-overflow-vulnerability msvcr71-dll
19:17
IBM Lotus QuickR qp2 ActiveX Buffer Overflow
» ‎ Packet Storm Security Exploits

This Metasploit module exploits a buffer overflow vulnerability on the UploadControl ActiveX. The vulnerability exists in the handling of the "Attachment_Times" property, due to the insecure usage of the _swscanf. The affected ActiveX is provided by the qp2.dll installed with the IBM Lotus Quickr product. This Metasploit module has been tested successfully on IE6-IE9 on Windows XP, Vista and 7, using the qp2.dll 8.1.0.1800. In order to bypass ASLR the no aslr compatible module msvcr71.dll is used. This one is installed with the qp2 ActiveX.
Tags: dll activex module activex-buffer-overflow buffer-overflow-vulnerability msvcr71-dll

19:17
IBM Lotus QuickR qp2 ActiveX Buffer Overflow
» ‎ Packet Storm Security Recent Files

This Metasploit module exploits a buffer overflow vulnerability on the UploadControl ActiveX. The vulnerability exists in the handling of the "Attachment_Times" property, due to the insecure usage of the _swscanf. The affected ActiveX is provided by the qp2.dll installed with the IBM Lotus Quickr product. This Metasploit module has been tested successfully on IE6-IE9 on Windows XP, Vista and 7, using the qp2.dll 8.1.0.1800. In order to bypass ASLR the no aslr compatible module msvcr71.dll is used. This one is installed with the qp2 ActiveX.
Tags: dll activex module activex-buffer-overflow buffer-overflow-vulnerability msvcr71-dll
19:17
IBM Lotus QuickR qp2 ActiveX Buffer Overflow
» ‎ Packet Storm Security Recent Files

This Metasploit module exploits a buffer overflow vulnerability on the UploadControl ActiveX. The vulnerability exists in the handling of the "Attachment_Times" property, due to the insecure usage of the _swscanf. The affected ActiveX is provided by the qp2.dll installed with the IBM Lotus Quickr product. This Metasploit module has been tested successfully on IE6-IE9 on Windows XP, Vista and 7, using the qp2.dll 8.1.0.1800. In order to bypass ASLR the no aslr compatible module msvcr71.dll is used. This one is installed with the qp2 ActiveX.
Tags: dll activex module activex-buffer-overflow buffer-overflow-vulnerability msvcr71-dll

19:17
IBM Lotus QuickR qp2 ActiveX Buffer Overflow
» ‎ Packet Storm Security Misc. Files

This Metasploit module exploits a buffer overflow vulnerability on the UploadControl ActiveX. The vulnerability exists in the handling of the "Attachment_Times" property, due to the insecure usage of the _swscanf. The affected ActiveX is provided by the qp2.dll installed with the IBM Lotus Quickr product. This Metasploit module has been tested successfully on IE6-IE9 on Windows XP, Vista and 7, using the qp2.dll 8.1.0.1800. In order to bypass ASLR the no aslr compatible module msvcr71.dll is used. This one is installed with the qp2 ActiveX.
Tags: dll activex module activex-buffer-overflow buffer-overflow-vulnerability msvcr71-dll
19:17
IBM Lotus QuickR qp2 ActiveX Buffer Overflow
» ‎ Packet Storm Security Misc. Files

This Metasploit module exploits a buffer overflow vulnerability on the UploadControl ActiveX. The vulnerability exists in the handling of the "Attachment_Times" property, due to the insecure usage of the _swscanf. The affected ActiveX is provided by the qp2.dll installed with the IBM Lotus Quickr product. This Metasploit module has been tested successfully on IE6-IE9 on Windows XP, Vista and 7, using the qp2.dll 8.1.0.1800. In order to bypass ASLR the no aslr compatible module msvcr71.dll is used. This one is installed with the qp2 ActiveX.
Tags: dll activex module activex-buffer-overflow buffer-overflow-vulnerability msvcr71-dll

December 20, 2012
15:33
Sony PC Companion 2.1 WebServices.dll Unicode Buffer Overflow
» ‎ Packet Storm Security Exploits

Sony PC Companion version 2.1 suffers from a boundary error in WebServices.dll when handling the value assigned to the 'bstrFile' item in the DownloadURLToFile function and can be exploited to cause a stack-based buffer overflow via an overly long string which may lead to execution of arbitrary code on the affected machine.
Tags: webservices dll sony pc-companion based-buffer-overflow sony-pc

December 06, 2012
21:21
IBM System Director Agent DLL Injection
» ‎ Packet Storm Security Exploits

This Metasploit module abuses the "wmicimsv" service on IBM System Director Agent 5.20.3 to accomplish arbitrary DLL injection and execute arbitrary code with SYSTEM privileges. In order to accomplish remote DLL injection it uses a WebDAV service as disclosed by kingcope on December 2012. Because of this, the target host must have the WebClient service (WebDAV Mini-Redirector) enabled. It is enabled and automatically started by default on Windows XP SP3, but disabled by default on Windows 2003 SP2.
Tags: injection system dll director-agent target-host webclient-service system-privileges

21:21
IBM System Director Agent DLL Injection
» ‎ Packet Storm Security Recent Files

This Metasploit module abuses the "wmicimsv" service on IBM System Director Agent 5.20.3 to accomplish arbitrary DLL injection and execute arbitrary code with SYSTEM privileges. In order to accomplish remote DLL injection it uses a WebDAV service as disclosed by kingcope on December 2012. Because of this, the target host must have the WebClient service (WebDAV Mini-Redirector) enabled. It is enabled and automatically started by default on Windows XP SP3, but disabled by default on Windows 2003 SP2.
Tags: injection system dll director-agent target-host webclient-service system-privileges

21:21
IBM System Director Agent DLL Injection
» ‎ Packet Storm Security Misc. Files

This Metasploit module abuses the "wmicimsv" service on IBM System Director Agent 5.20.3 to accomplish arbitrary DLL injection and execute arbitrary code with SYSTEM privileges. In order to accomplish remote DLL injection it uses a WebDAV service as disclosed by kingcope on December 2012. Because of this, the target host must have the WebClient service (WebDAV Mini-Redirector) enabled. It is enabled and automatically started by default on Windows XP SP3, but disabled by default on Windows 2003 SP2.
Tags: injection system dll director-agent target-host webclient-service system-privileges

October 14, 2012
17:00
Autodesk Design Review Insecure Library Loading Vulnerability
» ‎ SecuriTeam

This allow local users to gain privileges via a Trojan horse (1) dwmapi.dll, (2) whiptk_wt.7.12.601.dll, or (3) xaml_wt.7.6.0.dll file in the current working directory, as demonstrated by a directory that contains a .dwf file.
Tags: dll directory file dwf-file trojan-horse xaml

September 29, 2012
17:00
Microsoft Office Shared Component DLL Loading Arbitrary Code Execution Vulnerability
» ‎ SecuriTeam

This allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .doc, .ppt, or .xls file, aka "Office Component Insecure Library Loading Vulnerability."
Tags: office component dll arbitrary-code-execution office-component trojan-horse

July 16, 2012
17:04
Google Chrome 19 metro_driver.dll Mishandling
» ‎ Packet Storm Security Exploits

Google Chrome developers, while trying to be adaptive and current, added some windows 8 helper functions to aid the development of Metro style behavior, but does not include the library file itself, thus resulting in an unqualified dynamic-link library call to 'metro_driver.dll'. A user with local disk access can carefully construct a DLL that suits the pattern that is being traversed by the client and implement it somewhere along the search path and the client will load it seamlessly.
Tags: google dll metro dynamic-link-library driver-dll

17:04
Google Chrome 19 metro_driver.dll Mishandling
» ‎ Packet Storm Security Recent Files

Google Chrome developers, while trying to be adaptive and current, added some windows 8 helper functions to aid the development of Metro style behavior, but does not include the library file itself, thus resulting in an unqualified dynamic-link library call to 'metro_driver.dll'. A user with local disk access can carefully construct a DLL that suits the pattern that is being traversed by the client and implement it somewhere along the search path and the client will load it seamlessly.
Tags: google dll metro dynamic-link-library driver-dll

17:04
Google Chrome 19 metro_driver.dll Mishandling
» ‎ Packet Storm Security Misc. Files

Google Chrome developers, while trying to be adaptive and current, added some windows 8 helper functions to aid the development of Metro style behavior, but does not include the library file itself, thus resulting in an unqualified dynamic-link library call to 'metro_driver.dll'. A user with local disk access can carefully construct a DLL that suits the pattern that is being traversed by the client and implement it somewhere along the search path and the client will load it seamlessly.
Tags: google dll metro dynamic-link-library driver-dll

June 11, 2012
14:40
Tom Sawyer Software GET Extension Factory Remote Code Execution
» ‎ Packet Storm Security Exploits

This Metasploit module exploits a remote code execution vulnerability in the tsgetx71ex553.dll ActiveX control installed with Tom Sawyer GET Extension Factory due to an incorrect initialization under Internet Explorer. While the Tom Sawyer GET Extension Factory is installed with some versions of VMware Infrastructure Client, this module has been tested only with the versions installed with Embarcadero Technologies ER/Studio XE2 / Embarcadero Studio Portal 1.6. The ActiveX control tested is tsgetx71ex553.dll, version 5.5.3.238. This Metasploit module achieves DEP and ASLR bypass using the well known msvcr71.dll rop chain. The dll is installed by default with the Embarcadero software, and loaded by the targeted ActiveX.
Tags: factory dll extension tom-sawyer embarcadero-software embarcadero-technologies tom-sawyer-software

14:40
Tom Sawyer Software GET Extension Factory Remote Code Execution
» ‎ Packet Storm Security Recent Files

This Metasploit module exploits a remote code execution vulnerability in the tsgetx71ex553.dll ActiveX control installed with Tom Sawyer GET Extension Factory due to an incorrect initialization under Internet Explorer. While the Tom Sawyer GET Extension Factory is installed with some versions of VMware Infrastructure Client, this module has been tested only with the versions installed with Embarcadero Technologies ER/Studio XE2 / Embarcadero Studio Portal 1.6. The ActiveX control tested is tsgetx71ex553.dll, version 5.5.3.238. This Metasploit module achieves DEP and ASLR bypass using the well known msvcr71.dll rop chain. The dll is installed by default with the Embarcadero software, and loaded by the targeted ActiveX.
Tags: factory dll extension tom-sawyer embarcadero-software embarcadero-technologies tom-sawyer-software

14:40
Tom Sawyer Software GET Extension Factory Remote Code Execution
» ‎ Packet Storm Security Misc. Files

This Metasploit module exploits a remote code execution vulnerability in the tsgetx71ex553.dll ActiveX control installed with Tom Sawyer GET Extension Factory due to an incorrect initialization under Internet Explorer. While the Tom Sawyer GET Extension Factory is installed with some versions of VMware Infrastructure Client, this module has been tested only with the versions installed with Embarcadero Technologies ER/Studio XE2 / Embarcadero Studio Portal 1.6. The ActiveX control tested is tsgetx71ex553.dll, version 5.5.3.238. This Metasploit module achieves DEP and ASLR bypass using the well known msvcr71.dll rop chain. The dll is installed by default with the Embarcadero software, and loaded by the targeted ActiveX.
Tags: factory dll extension tom-sawyer embarcadero-software embarcadero-technologies tom-sawyer-software

February 08, 2012
8:18
SciTools Understand 2.6 DLL Loading Code Execution
» ‎ Packet Storm Security Exploits

A vulnerability in SciTools Understand version 2.6 is caused due to the application loading libraries (wintab32.dll) in an insecure manner. This can be exploited to load arbitrary libraries by tricking a user into opening an Understand Project file (.UDB) located on a remote WebDAV or SMB share.
Tags: scitools understand dll application-loading code-execution loading-code

8:18
SciTools Understand 2.6 DLL Loading Code Execution
» ‎ Packet Storm Security Recent Files

A vulnerability in SciTools Understand version 2.6 is caused due to the application loading libraries (wintab32.dll) in an insecure manner. This can be exploited to load arbitrary libraries by tricking a user into opening an Understand Project file (.UDB) located on a remote WebDAV or SMB share.
Tags: scitools understand dll application-loading code-execution loading-code

8:18
SciTools Understand 2.6 DLL Loading Code Execution
» ‎ Packet Storm Security Misc. Files

A vulnerability in SciTools Understand version 2.6 is caused due to the application loading libraries (wintab32.dll) in an insecure manner. This can be exploited to load arbitrary libraries by tricking a user into opening an Understand Project file (.UDB) located on a remote WebDAV or SMB share.
Tags: scitools understand dll application-loading code-execution loading-code

July 21, 2011
16:21
Foxit Reader Insecure Library Loading
» ‎ Packet Storm Security Advisories

Foxit Reader is vulnerable to a insecure library loading vulnerability. The libraries identified as being vulnerable are dwmapi.dll, dwrite.dll and msdrm.dll.
Tags: foxit dll reader vulnerability libraries

16:21
Foxit Reader Insecure Library Loading
» ‎ Packet Storm Security Recent Files

Foxit Reader is vulnerable to a insecure library loading vulnerability. The libraries identified as being vulnerable are dwmapi.dll, dwrite.dll and msdrm.dll.
Tags: foxit dll reader vulnerability libraries

16:21
Foxit Reader Insecure Library Loading
» ‎ Packet Storm Security Misc. Files

Foxit Reader is vulnerable to a insecure library loading vulnerability. The libraries identified as being vulnerable are dwmapi.dll, dwrite.dll and msdrm.dll.
Tags: foxit dll reader vulnerability libraries

14:24
SAP GUI DLL Hijacking
» ‎ Packet Storm Security Advisories

SAP Front End applications (SAPGui.exe) are vulnerable to DLL hijacking attacks allowing for remote code execution.
Tags: dll sap gui sap-gui code-execution hijacking

14:24
SAP GUI DLL Hijacking
» ‎ Packet Storm Security Misc. Files

SAP Front End applications (SAPGui.exe) are vulnerable to DLL hijacking attacks allowing for remote code execution.
Tags: dll sap gui sap-gui code-execution hijacking

February 07, 2011
23:55
Proxocket – DLL Proxy For Winsock
» ‎ Darknet

Proxocket is a dll proxy project for the main Winsock functions which allows to capture any type of packet and data sent/received by a specific software of your choice and optionally modifying its content or the connect, bind and accept functions through a custom dll very easy to create. Proxocket handles the following functions for [...]

Read the full post at darknet.org.uk

Tags: proxocket dll proxy read winsock-functions darknet specific-software hacking Tools

Skip to page: 1 2 3

jetlib.sec » Tags » dll

Feeds

502 items tagged "dll"

Tags: dll activex module activex-buffer-overflow buffer-overflow-vulnerability msvcr71-dll

Tags: dll activex module activex-buffer-overflow buffer-overflow-vulnerability msvcr71-dll

Tags: dll activex module activex-buffer-overflow buffer-overflow-vulnerability msvcr71-dll

Tags: dll activex module activex-buffer-overflow buffer-overflow-vulnerability msvcr71-dll

Tags: dll activex module activex-buffer-overflow buffer-overflow-vulnerability msvcr71-dll

Tags: dll activex module activex-buffer-overflow buffer-overflow-vulnerability msvcr71-dll

Tags: webservices dll sony pc-companion based-buffer-overflow sony-pc

Tags: umplayer code dll arbitrary-code-execution attackers vulnerability

Tags: irfanview dll imxcf code-execution vulnerability

Tags: irfanview dll imxcf code-execution vulnerability

Tags: irfanview dll imxcf code-execution vulnerability

Tags: injection system dll director-agent target-host webclient-service system-privileges

Tags: injection system dll director-agent target-host webclient-service system-privileges

Tags: injection system dll director-agent target-host webclient-service system-privileges

Tags: umplayer dll hijacking vulnerability

Tags: umplayer dll hijacking vulnerability

Tags: umplayer dll hijacking vulnerability

Tags: arora dll windows hijack hijacking vulnerability

Tags: arora dll windows hijack hijacking vulnerability

Tags: arora dll windows hijack hijacking vulnerability

Tags: dll directory file dwf-file trojan-horse xaml

Tags: bugtraq cve stack stack-overflow dll

Tags: office component dll arbitrary-code-execution office-component trojan-horse

Tags: foxit dll reader arbitrary-code-execution dll-loading foxit-reader

Tags: multiple powerproducer cyberlink arbitrary-code-execution cyberlink-powerproducer dll

Tags: reflection dll attachmate arbitrary-code-execution vulnerability

Tags: dll manual Software arbitrary-code-execution ec-software vulnerability

Tags: snagit hijack dll hijacking vulnerability

Tags: snagit hijack dll hijacking vulnerability

Tags: snagit hijack dll hijacking vulnerability

Tags: foxit dll reader hijacking foxit-reader vulnerability

Tags: foxit dll reader hijacking foxit-reader vulnerability

Tags: foxit dll reader hijacking foxit-reader vulnerability

Tags: pixel dll adobe dll-loading code-execution loading-code

Tags: foxit dll reader arbitrary-code-execution dll-loading foxit-reader

Tags: techsmith snagit dll arbitrary-code-execution techsmith-snagit vulnerability

Tags: virusscan dll mcafee arbitrary-code-execution dll-loading virusscan-enterprise

Tags: code dll xaurora arbitrary-code-execution attackers vulnerability

Tags: poc dll barcodewiz remote-buffer-overflow

Tags: google dll metro dynamic-link-library driver-dll

Tags: google dll metro dynamic-link-library driver-dll

Tags: google dll metro dynamic-link-library driver-dll

Tags: dll launchhelp adminstudio arbitrary-code-execution exploits

Tags: exploit remote dll arbitrary-code-execution exploits

Tags: visual microsoft dll arbitrary-code-execution microsoft-visual-basic visual-basic-for-applications

Tags: checkpoint advisory security security-advisory bugtraq dll

Tags: factory dll extension tom-sawyer embarcadero-software embarcadero-technologies tom-sawyer-software

Tags: factory dll extension tom-sawyer embarcadero-software embarcadero-technologies tom-sawyer-software

Tags: factory dll extension tom-sawyer embarcadero-software embarcadero-technologies tom-sawyer-software

Tags: ettercap hijack dll hijacking vulnerability

Tags: ettercap hijack dll hijacking vulnerability

Tags: ettercap hijack dll hijacking vulnerability

Tags: native dll crazytalk dell-webcam buffer-overflow-vulnerability active-x-control remote-buffer-overflow-vulnerability

Tags: native dll crazytalk dell-webcam buffer-overflow-vulnerability active-x-control remote-buffer-overflow-vulnerability

Tags: native dll crazytalk dell-webcam buffer-overflow-vulnerability active-x-control remote-buffer-overflow-vulnerability

Tags: rat xtreme dll exploit

Tags: rat xtreme dll exploit

Tags: rat xtreme dll exploit

Tags: sso temp windir dll

Tags: dll arbitrary loading t-termis arbitrary-code-execution vulnerability

Tags: microsoft dll windows arbitrary-code-execution microsoft-windows vulnerability

Tags: scitools understand dll application-loading code-execution loading-code

Tags: scitools understand dll application-loading code-execution loading-code

Tags: scitools understand dll application-loading code-execution loading-code

Tags: poc libtaglib vlc dll

Tags: openview nnm dll code-execution hp-openview zdi

Tags: dll player atas cisco-webex code-execution zdi bugtraq

Tags: dll hijacking balabolka exploits

Tags: multiple microsoft dll arbitrary-code-execution microsoft-products vulnerability

Tags: multiple dll gtk arbitrary-code-execution

Tags: dll hijacking whatsize exploits

Tags: dll quserex pthreads-win arbitrary-code-execution pthreads vulnerability

Tags: dll myfiles recover hijacking exploits