CastRipper version 2.50.70 universal stack overflow that creates a malicious .m3u file.
0343940fb750f67dfa8d40b54e07d57c64001d9fd2f53f7089b4dc4213519c37CastRipper version 2.50.70 local buffer overflow exploit that creates a malicious .m3u file.
3cf0a98fbd475c17dc42e51c82489f1e129e637a1b3fb7fe483086d1b08ed58cZero Day Initiative Advisory 09-020 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office's PowerPoint. User interaction is required to exploit this vulnerability in that the target must open up a malicious file. The vulnerability exists within the parsing of certain structures inside a Notes container. During population of a C++ object when reading the Notes container, Powerpoint incorrectly reads more data than was allocated for overwriting a function pointer for the object which is later used in a call from mso.dll. Successful exploitation can lead to remote code execution under the credentials of the currently logged in user.
15cb5350a1c6c38432b7c240b54f49a90cd631f7c4ef957f1c08deea7d2aa709Zero Day Initiative Advisory 09-019 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office PowerPoint. Exploitation requires that the attacker coerce the target into opening a malicious .PPT file. The specific flaw exists in the parsing of the OutlineTextRefAtom (3998). By specifying an invalid "index" value during parsing memory corruption occurs. Proper exploitation can lead to remote code execution under the credentials of the currently logged in user.
b7792dc9fd8ff12502bbde82f81b3fb11b5448fe41a350aef8cea0e4a72718edSafari for Windows suffers from a mishandling of command line launching functionality.
3ccd1a3d462388c64ee832ba699fc84fecc637908f790584dff321bb68b8c0fdSecunia Research has discovered two vulnerabilities in Microsoft Office PowerPoint, which can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused by boundary errors when processing certain atoms and can be exploited to cause stack-based buffer overflows via a specially crafted PowerPoint file. Successful exploitation allows execution of arbitrary code. Microsoft PowerPoint 2000 SP3 is affected.
565f67468c3c6a9e5fa87b11ec3c1f0615fbcd97493d26b020d6d08c6e7b34abBigace CMS version 2.5 user options changing SQL injection exploit.
d52c279955a9aa0987bdc1d3837468e29086532c66b1128676ee10810f1dd98bSun IDM versions 7.1 and 8.0 suffer from an arbitrary command execution vulnerability.
77fb0ce48591c464e79f1e0d302e91f0d8e1a8b53ff31342218dab28810a0d44Various banks in Australia appear to suffer from cross site scripting vulnerabilities.
8824d4e0d1221ca7842435ea70a446063506d5854d3cd6d56cf55e526546af74FormMail version 1.92 suffers from cross site scripting, header injection, and HTTP response splitting vulnerabilities.
dda541988029f268bc02136426254f2b6bbc63e0e3c487848827415005cc289eCall For Papers for XCon 2009. This conference will take place from August 18th through the 19th in Beijing, China.
b5ac5f58a11d24a589f17cfd4dd72f66ff41f0d80406fca7540b2a3f4ba622f9Exploiting the IE8 UTF-7 cross site scripting vulnerability using local redirection.
c0cfb29d7a2671965c82ff84f7b2d623306cc3c8597dc3cf76990135988e419aZervit webserver version 0.4 directory traversal and memory corruption proof of concept exploit.
9e10e70eaec0d3a59ef5c25f192693edebf3b377c08b4fb02b2dc28d20ad097aBitweaver versions 2.6 and below /boards/boards_rss.php / saveFeed() remote code execution exploit.
c6e6458bc379630566edb13719dab179c4f4e4f7429501040bdeea0557510f62Klinzmann Application Access Server version 2.0.48 cross site request forgery exploit.
8fbdf9086123ab178a93c6aa387ee37b227bad398eb09b10822fe24d631ab585The Klinzmann Application Access Server suffers from cross site request forgery, command execution, default password, and insecure password storage vulnerabilities.
e216edbf657d61bdb2e559c269b7118db00d7f30c8cb83b7248238c64f6b103dJava SE Runtime Environment resource consumption exploit.
527612944f0e5df5e39b6ff1472ae2184bc2eb6861f81de9ad46c7a2ded3c8e3Secunia Security Advisory - Some vulnerabilities have been discovered in Open Virtual Desktop, which can be exploited by malicious people to conduct cross-site scripting attacks.
1a3f6b14cb982212f6abd4f5b75e61e9426c24441de9a61293358d7bf4fa5c81Secunia Security Advisory - Some vulnerabilities have been reported in Apple Safari, which can be exploited by malicious people to compromise a user's system.
9fabc225dca1e66091bd5f3266749cd49a420971b421415b91db9d41739e2d86Secunia Security Advisory - Ubuntu has issued an update for kvm. This fixes a security issue and some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and bypass certain security restrictions.
a1759215b76ceaddd4b7b94f97f0c5ce54d10c096c6b2b9ee952ad9f09c44b13Secunia Security Advisory - Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.
af712b14b05e90de54a7f0607f22c3c0e85c88bc418c9723e4de85c365540af0Secunia Security Advisory - Fedora has issued an update for squirrelmail. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting, session fixation, and phishing attacks.
c39dafcd57cc9f0beb46f60613e97a1c4b35543ca25c8e33994d16334bb20506Secunia Security Advisory - A vulnerability has been discovered in Mini-stream CastRipper, which can be exploited by malicious people to compromise a user's system.
63b4eb77c6cc3c55bf5bbe7690ad8619aaff73653f43992edc7f1bc4b7bc7ba2Secunia Security Advisory - A vulnerability has been reported in BIGACE, which can be exploited by malicious people to conduct SQL injection attacks.
1b965f502e2cc9fea373a4c496b59e7962df66496bc964d0200eaaf80c60bd1eSecunia Security Advisory - Mike Bailey has discovered a vulnerability in Transmission, which can be exploited by malicious people to conduct cross-site request forgery attacks.
47361a7bebd1a2c2fdc9da187ce7d167f389f0b9fd5155d61d2aa582eac50c3d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed