There exists a vulnerability within the way Microsoft Word handles html linked objects, which leads to attacker controlled memory write and code execution.
388ef977d6d340327415d1bce4d0dccc5e9342fd13c3dfe272913b9f9aa483a9Mediacoder version 0.7.5.4710 universal SEH buffer overflow exploit.
0fbe53f022a99f09728e086d2884e7393d9638ee6e8c1e6904ae0d3d1c8d9667VUPEN Vulnerability Research Team discovered a critical vulnerability affecting Microsoft Internet Explorer. The vulnerability is caused by a use-after-free error when processing table elements, which could be exploited by remote attackers to execute arbitrary code by tricking a user into visiting a specially crafted web page.
d55e5750ead926f26aebc21b8e81c4ea8f395f1f02abe8dbd9acaec98f3b487fVUPEN Vulnerability Research Team discovered a critical vulnerability affecting Microsoft Internet Explorer. The vulnerability is caused by a use-after-free error when processing "CIframeElement" objects, which could be exploited by remote attackers to execute arbitrary code by tricking a user into visiting a specially crafted web page.
bb420815f2375e3d4c53f2fab6099da5640135cd2b54c8b9e8a9ac08665cd90cTechnical Cyber Security Alert 2010-223A - According to Adobe Security Bulletin APSB10-16, there are vulnerabilities in Adobe Flash and AIR. These vulnerabilities affect Flash Player, AIR, and possibly other products that support Flash. A remote attacker could exploit these vulnerabilities to execute arbitrary code.
472c92bc558a04ead5bdc23591dd2e6dd451feb76ee81bd9de8ad2b35e42ecfaZero Day Initiative Advisory 10-150 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must open a malicious document. The specific flaw exists in the parsing of sprmCMajority records in a Word document. Due to the lack of parameter checking when processing sprmCMajority sprm groups it is possible to arbitrarily control the amount of data being written to a stack based buffer resulting in a stack overflow vulnerability which can overwrite critical exception structures. Successful exploitation can lead to remote code execution under the credentials of the currently logged in user.
8412c084cfda719ab9aa776080c4fa253edda24723f79f8dceb68433a547c9ccAbac Karaoke version 2.15 .mp3 / .wma local denial of service proof of concept exploit.
fd4b2568cdf94983aaa7accaff0728bb98a09d3880183c10288eff7d76adce58Mediacoder version 0.7.5.4710 buffer overflow exploit that binds a shell to port 5555.
30f3d3b1c02f9ebb2a95ce15c159bde19e55e4c1f6a4d8346224b299318d9fceEasy FTP Server version 17.0.11 multiple command post authentication buffer overflow exploit.
44b12e528e6e9401fc5b168dcfc7bd0d75fea6bbb1411edbf90879deaa673e0dphpMUR suffers from a remote file disclosure vulnerability.
6bb674df723cf5b750d1b4a805c42084a98ac44b1f9f18b70204753ac26ee54aclearBudget version 0.9.8 suffers from a remote file inclusion vulnerability.
6f48dff785639fcd44067bdd3b0f83fe594029890b077c5060c26cbebb3751abWhen providing a valid email address to Facebook, it appears that there are multiple ways to extract a person's real name and picture.
10afb8696d72cbe51544584ade1e0b09ddb4013dba0b300b96a9dd0c78ef32fdVUPEN Vulnerability Research Team discovered a critical vulnerability affecting Microsoft Internet Explorer. The vulnerability is caused by a use-after-free error when processing the "boundElements" property, which could be exploited by remote attackers to execute arbitrary code by tricking a user into visiting a specially crafted web page.
135d12df125892839a82b396e692a50457d9c096295a78c42ccb7a7595664db2VUPEN Vulnerability Research Team discovered a critical vulnerability affecting Microsoft Internet Explorer. The vulnerability is caused by a use-after-free error within the "OnPropertyChange_Src()" function when handling malformed HTML/JS data, which could be exploited by remote attackers to execute arbitrary code by tricking a user into visiting a specially crafted web page.
3f03180b71a27990aed42d13957cbb6a0333545d3a91cb448871e0c862a9d7a0A vulnerability in the Windows kernel can be triggered via SMB in Microsoft Windows versions ranging from Windows 2000 through to Windows 7. This vulnerability allows an attacker to trigger a kernel pool corruption by sending a specially crafted SMB_COM_TRANSACTION2 request. Successful exploitation of this issue may result in remote code execution with kernel privileges, while failed attempts will result in a denial of service condition.
f005868865614c597a3fad090b52b161a95821d28cae99a3a7a1521cce7eda00
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed