This Metasploit module exploits a vulnerability in AVM2 action script virtual machine used in Adobe Flash Player versions 9.0 through 10. The AVM fails to properly verify bytecode streams prior to executing it. This can cause uninitialized memory to be executed. Utilizing heap spraying techniques to control the uninitialized memory region it is possible to execute arbitrary code. Typically Flash Player is not used as a standalone application. Often, SWF files are embedded in other file formats or specifically loaded via a web browser. Malcode was discovered in the wild which embedded a malformed SWF file within an Excel spreadsheet. This exploit is based off the byte stream found within that malcode sample.
42f45f3260ab9c5b8cc16ebc8f87909c47dfc836d8362769726a745db24e2709This Metasploit module exploits a buffer overflow in HP NNM's webappmon.exe. The vulnerability occurs when function "execvp_nc" fails to do any bounds-checking before strcat is used to append user-supplied input to a buffer.
bf5a083c853de0a9689a85f8964a561ceaf21211433507a6060dcd2fcafba338This Metasploit module exploits a vulnerability in HP NNM's nnmRptConfig.exe. A remote user can send a long string data to the nameParams parameter via a POST request, which causes an overflow on the stack when function ov.sprintf_new() is used, and gain arbitrary code execution.
8399adbc5106cbe36645f0c2d9c78118462b9640526de98fe7e579d71bc51419This Metasploit module exploits a stack-based overflow in HP NNM's webappmon.exe. The vulnerability occurs when a long string of data is sent as OvJavaLocale's cookie value, OvWww.dll fails to properly do any bounds checking before this input is parsed in function OvWwwDebug(), which causes an overflow when sprintf_new() is called.
ec5c964f51636ce7ba31b28775d66861ded19652e6b8966cbb73d25ac422b9daClamSAP consists of two C shared libraries that link between ClamAV and the Virus Scan Interface (VSI) of SAP (official name: NW-VSI). A SAP application can use the ClamAV engine to scan for malicious uploads in HTTP uploads, for example.
79f8fbe155a786d4d2f0925c98ddf63776ec0b2fa26df80b3911060b92cba64dcreepy is an application that allows you to gather geolocation related information about users from social networking platforms and image hosting services. The information is presented in a map inside the application where all the retrieved data is shown, accompanied with relevant information (i.e. what was posted from that specific location) to provide context to the presentation.
0e5adce9f91374b6688e81f0e3e198ec204c04022086d5ac3e977f73a29283e8Oracle web server installations with fcgi-bin/echo suffer from a cross site scripting vulnerability.
876ccd422be21e22190e6a2ef52166aa0a13d89638cc8bd6d07d521630c33e6dLibc's sigqueue() function has not been updated to mitigate spoofing of the TGKILL si_code. Because of this, userland is unable to trust the pid and uid information of a TKILL signal.
da60bcd9f8399fae09da3a1f99b2b0a7f2508fe1068f4bbb527f9eba681e9a05Debian Linux Security Advisory 2198-1 - Mathias Svensson discovered that tex-common, a package shipping a number of scripts and configuration files necessary for TeX, contains insecure settings for the "shell_escape_commands" directive. Depending on the scenario, this may result in arbitrary code execution when a victim is tricked into processing a malicious tex-file or this is done in an automated fashion.
564f9351c85c330d2c5bf614132230874365c687d2f1b6c2f240daa055e5eb34Secunia Security Advisory - Secunia Research has discovered multiple vulnerabilities in Achievo, which can be exploited by malicious users to disclose sensitive information, bypass certain security restrictions, and conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.
9f460aeefab97d7930b38d59c5debfb8bac65a09ff68de7e30839f4f02ac52f3Secunia Security Advisory - Red Hat has issued an update for dbus. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
3b71c3c383509daf4ead11dc7b53156be9a4f4ffb598f471d769ebe3c361e3b9Secunia Security Advisory - SUSE has issued an update for clamav. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
75d7fd230f6a97e4b48ddc8c21066b36fa73e6e8b7a1045621b28a7b414512c5Secunia Security Advisory - Debian has issued an update for tex-common. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
5d3b409ff79e4104a5faf352dd5efac51a2441d174b81e20671425bdd6c0dd79Secunia Security Advisory - NGS Secure Research has reported a vulnerability in Immunity Debugger, which can be exploited by malicious people to potentially compromise a user's system.
9f1650b52db9e5e6dba5b42ef13c82b515c05d2e378f11e565cfd00ac10da882Secunia Security Advisory - Red Hat has issued an update for flash-plugin. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
25e74e88287a459b23f752e72865e531c29a201095bad02df8c13321d661f7acSecunia Security Advisory - Multiple vulnerabilities with an unknown impact have been reported in Pligg CMS.
64ae1d77e34c0bb502b9d15be3d0bedf8c80150632c4e63e95b861394bc91267
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed