CastRipper version 2.50.70 universal stack overflow that creates a malicious .m3u file.
0343940fb750f67dfa8d40b54e07d57c64001d9fd2f53f7089b4dc4213519c37
CastRipper version 2.50.70 local buffer overflow exploit that creates a malicious .m3u file.
3cf0a98fbd475c17dc42e51c82489f1e129e637a1b3fb7fe483086d1b08ed58c
Zero Day Initiative Advisory 09-020 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office's PowerPoint. User interaction is required to exploit this vulnerability in that the target must open up a malicious file. The vulnerability exists within the parsing of certain structures inside a Notes container. During population of a C++ object when reading the Notes container, Powerpoint incorrectly reads more data than was allocated for overwriting a function pointer for the object which is later used in a call from mso.dll. Successful exploitation can lead to remote code execution under the credentials of the currently logged in user.
15cb5350a1c6c38432b7c240b54f49a90cd631f7c4ef957f1c08deea7d2aa709
Zero Day Initiative Advisory 09-019 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office PowerPoint. Exploitation requires that the attacker coerce the target into opening a malicious .PPT file. The specific flaw exists in the parsing of the OutlineTextRefAtom (3998). By specifying an invalid "index" value during parsing memory corruption occurs. Proper exploitation can lead to remote code execution under the credentials of the currently logged in user.
b7792dc9fd8ff12502bbde82f81b3fb11b5448fe41a350aef8cea0e4a72718ed
Safari for Windows suffers from a mishandling of command line launching functionality.
3ccd1a3d462388c64ee832ba699fc84fecc637908f790584dff321bb68b8c0fd
Secunia Research has discovered two vulnerabilities in Microsoft Office PowerPoint, which can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused by boundary errors when processing certain atoms and can be exploited to cause stack-based buffer overflows via a specially crafted PowerPoint file. Successful exploitation allows execution of arbitrary code. Microsoft PowerPoint 2000 SP3 is affected.
565f67468c3c6a9e5fa87b11ec3c1f0615fbcd97493d26b020d6d08c6e7b34ab
Bigace CMS version 2.5 user options changing SQL injection exploit.
d52c279955a9aa0987bdc1d3837468e29086532c66b1128676ee10810f1dd98b
Sun IDM versions 7.1 and 8.0 suffer from an arbitrary command execution vulnerability.
77fb0ce48591c464e79f1e0d302e91f0d8e1a8b53ff31342218dab28810a0d44
Various banks in Australia appear to suffer from cross site scripting vulnerabilities.
8824d4e0d1221ca7842435ea70a446063506d5854d3cd6d56cf55e526546af74
FormMail version 1.92 suffers from cross site scripting, header injection, and HTTP response splitting vulnerabilities.
dda541988029f268bc02136426254f2b6bbc63e0e3c487848827415005cc289e
Call For Papers for XCon 2009. This conference will take place from August 18th through the 19th in Beijing, China.
b5ac5f58a11d24a589f17cfd4dd72f66ff41f0d80406fca7540b2a3f4ba622f9
Exploiting the IE8 UTF-7 cross site scripting vulnerability using local redirection.
c0cfb29d7a2671965c82ff84f7b2d623306cc3c8597dc3cf76990135988e419a
Zervit webserver version 0.4 directory traversal and memory corruption proof of concept exploit.
9e10e70eaec0d3a59ef5c25f192693edebf3b377c08b4fb02b2dc28d20ad097a
Bitweaver versions 2.6 and below /boards/boards_rss.php / saveFeed() remote code execution exploit.
c6e6458bc379630566edb13719dab179c4f4e4f7429501040bdeea0557510f62
Klinzmann Application Access Server version 2.0.48 cross site request forgery exploit.
8fbdf9086123ab178a93c6aa387ee37b227bad398eb09b10822fe24d631ab585
The Klinzmann Application Access Server suffers from cross site request forgery, command execution, default password, and insecure password storage vulnerabilities.
e216edbf657d61bdb2e559c269b7118db00d7f30c8cb83b7248238c64f6b103d
Java SE Runtime Environment resource consumption exploit.
527612944f0e5df5e39b6ff1472ae2184bc2eb6861f81de9ad46c7a2ded3c8e3
Secunia Security Advisory - Some vulnerabilities have been discovered in Open Virtual Desktop, which can be exploited by malicious people to conduct cross-site scripting attacks.
1a3f6b14cb982212f6abd4f5b75e61e9426c24441de9a61293358d7bf4fa5c81
Secunia Security Advisory - Some vulnerabilities have been reported in Apple Safari, which can be exploited by malicious people to compromise a user's system.
9fabc225dca1e66091bd5f3266749cd49a420971b421415b91db9d41739e2d86
Secunia Security Advisory - Ubuntu has issued an update for kvm. This fixes a security issue and some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and bypass certain security restrictions.
a1759215b76ceaddd4b7b94f97f0c5ce54d10c096c6b2b9ee952ad9f09c44b13
Secunia Security Advisory - Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.
af712b14b05e90de54a7f0607f22c3c0e85c88bc418c9723e4de85c365540af0
Secunia Security Advisory - Fedora has issued an update for squirrelmail. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting, session fixation, and phishing attacks.
c39dafcd57cc9f0beb46f60613e97a1c4b35543ca25c8e33994d16334bb20506
Secunia Security Advisory - A vulnerability has been discovered in Mini-stream CastRipper, which can be exploited by malicious people to compromise a user's system.
63b4eb77c6cc3c55bf5bbe7690ad8619aaff73653f43992edc7f1bc4b7bc7ba2
Secunia Security Advisory - A vulnerability has been reported in BIGACE, which can be exploited by malicious people to conduct SQL injection attacks.
1b965f502e2cc9fea373a4c496b59e7962df66496bc964d0200eaaf80c60bd1e
Secunia Security Advisory - Mike Bailey has discovered a vulnerability in Transmission, which can be exploited by malicious people to conduct cross-site request forgery attacks.
47361a7bebd1a2c2fdc9da187ce7d167f389f0b9fd5155d61d2aa582eac50c3d