This Metasploit module exploits a stack-based buffer overflow in DJ Studio Pro 5.1.6.5.2. When handling a .pls file, DJ Studio will copy the user-supplied data on the stack without any proper bounds checking done beforehand, therefore allowing code execution under the context of the user.
736d166b489b4e31605e79a4de3a5f53718ad11ade2ceb44edb651fb05d2a8dd
This Metasploit module exploits a stack-based buffer overflow in DJ Studio Pro 5.1.6.5.2. An attacker must send the file to victim and the victim must open the file. Alternatively it may be possible to execute code remotely via an embedded PLS file within a browser, when the PLS extension is registered to DJ Studio Pro. This functionality has not been tested in this module.
43cc5ef9fa45f223d8bd4c7bba24952ad1c85fcba7429b138ece7c559127d41f
Open-AudIT suffers from lack of authentication, cross site scripting, local file inclusion and remote SQL injection vulnerabilities.
ada5689bf8a196f63f76812397276af55dd7c49e5e7a79928d91220f8d891627
Kapitalist version 0.4 and Capitalist version 0.3.1 suffer from heap corruption and denial of service vulnerabilities.
42272e8426849e04f0fffbb049a97ef26ed5f3fecaf48fc99f9e00e87fa0982f
This Metasploit module exploits a stack-based buffer overflow in Audiotran 1.4.1. An attacker must send the file to victim and the victim must open the file. Alternatively it may be possible to execute code remotely via an embedded PLS file within a browser, when the PLS extention is registered to Audiotran. This functionality has not been tested in this module.
fe48caf317027e30bd5da8dd119e9fa08b7127b8f16f258298a6f1979a6d973f
This Metasploit module exploits a stack-based buffer overflow in Audiotran 1.4.1. An attacker must send the file to victim and the victim must open the file. Alternatively it may be possible to execute code remotely via an embedded PLS file within a browser, when the PLS extention is registered to Audiotran. This functionality has not been tested in this module.
339082146c5bb1630c37aae3bf1b184da498e5a3a69f394d4eac5e7a0c043bce
Audiotran version 1.4.1 Win XP SP2/SP3 English buffer overflow proof of concept exploit that creates a malicious .pls file.
e00f6fe318293fc4dc5fd1661f035a67e94fb8246584bc4e227ffca66d19c53e
AfterLogic WebMail Pro versions 4.7.10 and below suffer from a cross site scripting vulnerability.
5b1994da53626d4e2a6b91384df1675a20689db24f411e5514abf0bca364f3d3