seeing is believing
Showing 1 - 25 of 86 RSS Feed

Files from Francis Provencher

First Active2009-08-25
Last Active2017-01-12
Adobe Flash 24.0.0.186 Code Execution
Posted Jan 12, 2017
Authored by Francis Provencher

This documented vulnerability allows a remote attacker to execute malicious code or access to a part of the dynamically allocated memory using a user interaction visiting a Web page or open a specially crafted SWF file, an attacker is able to create an "out of bound" memory corruption. A file with an "ActionRecord" structure that contains an invalid value in "ActionGetURL2" could lead to remote code execution in the context of the current user. Proof of concept code included.

tags | exploit, remote, web, code execution, proof of concept
advisories | CVE-2017-2930
MD5 | 29eff5852d8270398abf4007b49b527b
Cisco Webex Player T29.10 Use-After-Free Memory Corruption
Posted Oct 13, 2016
Authored by Francis Provencher

Cisco Webex Player version T29.10 suffers from a .wrf use-after-free memory corruption vulnerability.

tags | exploit
systems | cisco
advisories | CVE-2016-1464
MD5 | ec1cc7257ee75bf5544fca951cfac52b
Cisco Webex Player T29.10 Out-Of-Bounds Memory Corruption
Posted Oct 13, 2016
Authored by Francis Provencher

Cisco Webex Player version T29.10 suffers from a .arf out-of-bounds memory corruption vulnerability.

tags | exploit
systems | cisco
advisories | CVE-2016-1415
MD5 | 0ea248b2edbdd5bf05d03cdecdb11716
Adobe Flash Player 23.0.0.162 ConstantPool Memory Corruption
Posted Oct 13, 2016
Authored by Francis Provencher

Adobe Flash Player version 23.0.0.162 suffers from a .swf ConstantPool critical memory corruption vulnerability.

tags | exploit
advisories | CVE-2016-4273
MD5 | ad609e840b93fa49fe50e195e975e895
Microsoft Office Word 2013 / 2016 Denial Of Service
Posted Aug 16, 2016
Authored by Francis Provencher

Microsoft Office Word 2013 and 2016 suffer from a sprmSdyaTop denial of service vulnerability as described in MS16-099.

tags | exploit, denial of service
advisories | CVE-2016-3316
MD5 | 406c296f27879b52ae7d26001358f591
Apple Quicktime FPX / PSD File Parsing Memory Corruption
Posted Mar 30, 2016
Authored by Francis Provencher

Apple Quicktime versions prior to 7.7.79.80.95 suffer from .fpx and .psd file parsing memory corruption vulnerabilities. Multiple proof of concepts included.

tags | exploit, vulnerability, proof of concept
systems | linux, apple
advisories | CVE-2016-1767, CVE-2016-1768, CVE-2016-1769
MD5 | 3c5a29ece12ebdfba29f33d2077a59cd
Adobe Photoshop CC 16.1.1 / Bridge CC 6.1.1 Memory Corruption
Posted Feb 12, 2016
Authored by Francis Provencher

Adobe Photoshop CC versions 16.1.1 (2015.1.1) and below and Bridge CC versions 6.1.1 and below suffer from multiple memory corruption vulnerabilities. Proof of concept files included.

tags | exploit, vulnerability, proof of concept
systems | linux
advisories | CVE-2016-0951, CVE-2016-0952, CVE-2016-0953
MD5 | b3e490463576d3b4ad4537389f6f3139
WPS Office .xls Heap Memory Corruption
Posted Feb 2, 2016
Authored by Francis Provencher

WPS Office versions prior to 2016 suffer from a .xls heap memory corruption vulnerability.

tags | exploit
systems | linux
MD5 | 0aeda3a320fc277e775afd3ecdb47239
WPS Office .ppt drawingContainer Memory Corruption
Posted Feb 2, 2016
Authored by Francis Provencher

WPS Office versions prior to 2016 suffer from a .ppt drawingContainer length header handling issue that leads to memory corruption.

tags | exploit
systems | linux
MD5 | b66910e1fcc78977441de4e9b4f93a90
WPS Office .doc OneTableDocumentStream Memory Corruption
Posted Feb 2, 2016
Authored by Francis Provencher

WPS Office versions prior to 2016 suffer from a .doc handling heap memory corruption issue when dealing with an invalid value in the OneTableDocumentStream data section.

tags | exploit
systems | linux
MD5 | 0d54d493aba882885c6b5ee8e7d6474d
WPS Office .ppt Heap Memory Corruption
Posted Feb 2, 2016
Authored by Francis Provencher

WPS Office versions prior to 2016 suffer from a .ppt handling heap memory corruption vulnerability.

tags | exploit
systems | linux
MD5 | 708126eb9ac07ceaf00f630ab23a4aa3
VLC Media Player 2.2.1 Heap Memory Corruption
Posted Jan 28, 2016
Authored by Francis Provencher

VLC Media Player version 2.2.1 suffers from a heap memory corruption vulnerability when handling malformed mp4 files.

tags | exploit
systems | linux
MD5 | 63dec7c2dd8130f42f6057b03812cc54
Foxit Reader 7.1.3.320 Memory Corruption
Posted Apr 29, 2015
Authored by Francis Provencher

Foxit Reader versions 7.1.3.320 and below suffer from a pdf parsing memory corruption vulnerability.

tags | exploit
systems | linux
MD5 | 1af48838dac7fbc9bebf3ace9a05d41e
Foxit Products GIF Conversion LZWMinimumCodeSize Memory Corruption
Posted Mar 12, 2015
Authored by Francis Provencher

An error when handling LZWMinimumCodeSize can be exploited to cause memory corruption via a specially crafted GIF file in Foxit products.

tags | exploit
systems | linux
MD5 | 4bf0fe1e650d9ec0b01b871c3edaf442
Foxit Products GIF Conversion DataSubBlock Memory Corruption
Posted Mar 12, 2015
Authored by Francis Provencher

An error when handling the Size member of a GIF DataSubBlock data structure can be exploited to cause memory corruption via a specially crafted GIF file in Foxit products.

tags | exploit
systems | linux
MD5 | 5227ed5179cb1acfb47fa9b723a70092
Microsoft Windows MS15-020 Memory Corruption
Posted Mar 12, 2015
Authored by Francis Provencher

Microsoft Windows suffers from a text services related memory corruption vulnerability as outlined in MS-15-020.

tags | exploit
systems | linux, windows
MD5 | 9d4cd33af629f95396d24d2db8cad4ef
Oracle Outside-In DOCX File Parsing Memory Corruption
Posted Apr 18, 2014
Authored by Francis Provencher

Oracle Outside-In suffers from a memory corruption vulnerability when parsing docx files.

tags | exploit
systems | linux
MD5 | 7caba5e1834dbbc11f95977e1ed0848b
Cool PDF Image Stream Buffer Overflow
Posted Mar 20, 2013
Authored by Francis Provencher, Chris Gabriel, juan vazquez | Site metasploit.com

This Metasploit module exploits a stack buffer overflow in Cool PDF Reader prior to version 3.0.2.256. The vulnerability is triggered when opening a malformed PDF file that contains a specially crafted image stream. This Metasploit module has been tested successfully on Cool PDF 3.0.2.256 over Windows XP SP3 and Windows 7 SP1.

tags | exploit, overflow
systems | windows, xp, 7
advisories | CVE-2012-4914, OSVDB-89349
MD5 | 888828d955c36487881a1513f9d37948
Novell Groupwise Internet Agent Overflow
Posted Nov 14, 2012
Authored by Francis Provencher

An overflow error occurs in GroupWise Internet Agent (gwia.exe) when the LDAP service process receives an overly long BIND Request. Successful exploitation may allow execution of arbitrary code. Versions 8.0.2 HP3 and 2012 are affected. Proof of concept code included.

tags | exploit, overflow, arbitrary, proof of concept
MD5 | 02c8d73536b740e4d34f4bff6b462f34
IrfanView 4.33 RLE Image Decompression Buffer Overflow
Posted Nov 13, 2012
Authored by Francis Provencher

IrfanView version 4.33 suffers from a RLE image decompression buffer overflow vulnerability. Proof of concept included.

tags | exploit, overflow, proof of concept
systems | linux
MD5 | ad72c33008a418ffec7419d64d0dddc6
IrfanView 4.33 TIF Image Decompression Buffer Overflow
Posted Nov 13, 2012
Authored by Francis Provencher

IrfanView version 4.33 suffers from a TIF image decompression buffer overflow vulnerability. Proof of concept included.

tags | exploit, overflow, proof of concept
systems | linux
MD5 | b624052af347b4f0a5752b4677362139
Cyme ChartFX Client Server Array Indexing
Posted Oct 4, 2012
Authored by Francis Provencher

Cyme ChartFX client server suffers from a vulnerability that is caused due to an indexing error in the "ShowPropertiesDialog()" method (ChartFX.ClientServer.Core.dll) of the ChartFX ActiveX Control. This can be exploited to write a single byte value to an arbitrary memory location via the "pageNumber" parameter. Successful exploitation may allow execution of arbitrary code.

tags | exploit, arbitrary, activex
MD5 | 7be0aa597f9b41970f0552f4257aa127
Novell Groupwise 8.0.2 HP3 / 2012 Integer Overflow
Posted Sep 17, 2012
Authored by Francis Provencher

Novell Groupwise versions 8.0.2 HP3 and 2012 suffers from an integer overflow vulnerability.

tags | exploit, overflow
MD5 | ad26af23d31e8ed5621d25afcf513d4d
Adobe Photoshop CS6 PNG Parsing Heap Overflow
Posted Sep 1, 2012
Authored by Francis Provencher

Adobe Photoshop CS6 version 13.x suffers from a PNG parsing heap overflow vulnerability. Proof of concept PNG file include.

tags | exploit, overflow, proof of concept
systems | linux
MD5 | 2ba4886bb027edc62dba032e55e35979
Oracle Outside-In FPX File Parsing Heap Overflow
Posted Jul 20, 2012
Authored by Francis Provencher

Oracle Outside-In FPX file parsing suffers from a heap overflow vulnerability. Proof of concept included.

tags | exploit, overflow, proof of concept
systems | linux
MD5 | 14b7cc6d4281c3674c6a470b686aeb41
Page 1 of 4
Back1234Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    16 Files
  • 18
    Oct 18th
    15 Files
  • 19
    Oct 19th
    10 Files
  • 20
    Oct 20th
    7 Files
  • 21
    Oct 21st
    4 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close