ACE Stream Media version 2.1 acestream:// format string exploit proof of concept exploit.
cf629280b334eb372c8fc1c941bad2d4c6b6fc05578d1ad8d98a35b5690bbc87The Timed Interactive Multimedia Extensions (aka HTML+TIME) implementation in Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that was not properly initialized or is deleted, aka "Time Element Memory Corruption Vulnerability." This is an exploit for the vulnerability noted in MS11-050.
ce6d03f8afb8da5e9fab7773161352eac8d3bfb7b25bc19d2aa5c97279ad7812PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
04d68118540aa72d1079d73c6cbd5d757435496db0dd4e260130a127a8844be7Shahumyanmedia CMS 2010 suffers from an authentication bypass vulnerability. Proof of concept code included.
6ac8ee86a9dc1a3b5060656cdad5bfd5ebf07f42f98648432dd21f90f0dd5023NetArt Media Pharmacy System version 2.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
571ede9e0f61702e459089e92ef605c1088c80b80d2c48abf07296d09534e227NetArt Media iBoutique version 4.0 suffers from a remote SQL injection vulnerability.
63f73c7bb565caa378994bb034b6965af92076cb74824b72cfb4912c073f4eb0Secunia Security Advisory - A vulnerability has been discovered in the Nmedia Users File Uploader plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
352ac9d5874cd7d9e487f3510547e2fcc0adba46ecca6b6506c21d8313bfb850This Metasploit module exploits a stack buffer overflow in ALLMediaServer 0.8. The vulnerability is caused due to a boundary error within the handling of HTTP request. While the exploit supports DEP bypass via ROP, on Windows 7 the stack pivoting isn't reliable across virtual (VMWare, VirtualBox) and physical environments. Because of this the module isn't using DEP bypass on the Windows 7 SP1 target, where by default DEP is OptIn and AllMediaServer won't run with DEP.
cd224eb091bd83cac2f6867238fdeea0e253250295ed9b0257c0173e71de0311Secunia Security Advisory - A vulnerability has been discovered in ALLMediaServer, which can be exploited by malicious people to compromise a vulnerable system.
2d15928ca02a9e147baeb55fdf36818b8905cedb789ecfdf98da1ca1e2e82734Kool Media Converter version 2.7.0 denial of service exploit that creates a malicious .ogg file.
3e3726b25afd1b47737aa057bcc6c3252389d6821ad5912a063c33c2c76dd3e8Secunia Security Advisory - A vulnerability has been reported in VLC Media Player, which can be exploited by malicious people to compromise a user's system.
826805e88738f80b5814689653860c9ae700a8441eaa01a55954633a371572bbImmediateCrypt can easily encrypt and decrypt plain text messages with the AES-256 algorithm (CBC block chaining, PKCS5 padding).
f4c3acded4c93c151b31bc879d681f7cb7c71ea201d5cd20639a1d305e25987cHi-media suffers from a remote SQL injection vulnerability.
17ee62de993a1e79a03aca02af14eae5006cd8b1e1305748e7941e113e0187e0The WD TV Live Streaming Media Player suffers from two implementation flaws that together allow for remote command execution as root.
30e038aaf42732de5c7c31917ec77feb71e99f5a032ca468e8d514c9181e41c1Secunia Security Advisory - Multiple vulnerabilities have been discovered in Lokomedia CMS, which can be exploited by malicious people to conduct cross-site scripting, cross-site request forgery, and script insertion attacks.
bf0c6825aed03c3ad710fc3cbbb6924505fe0d28836a01016a17c64d63392145CMS Lokomedia version 1.5 suffers from cross site request forgery and cross site scripting vulnerabilities.
a4fb376b53311da0808f524b506bdcf28600bb6b6eef0e9628cc2ae47aab4be8Gentoo Linux Security Advisory 201206-9 - Multiple vulnerabilities have been found in MediaWiki, the worst of which leading to remote execution of arbitrary code. Versions less than 1.18.2 are affected.
2ae3bc72ec6a16c6837ec41edc36fb76dded93cd54de24920dc77b2d2a0cb4d6Secunia Security Advisory - A vulnerability has been discovered in the Nmedia MailChimp plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
8cb0c340c8e60e1e7d4e0bdcc53e301a233cdfc0e6610aae0e2f7edc238af7a1No Media suffers from a remote SQL injection vulnerability.
40b07ce6a05dead8ebb423b9b4c91c665326702639e08211330a2cb310bd440dRed Hat Security Advisory 2012-0811-04 - The php-pecl-apc packages contain APC, the framework for caching and optimization of intermediate PHP code. A cross-site scripting flaw was found in the "apc.php" script, which provides a detailed analysis of the internal workings of APC and is shipped as part of the APC extension documentation. A remote attacker could possibly use this flaw to conduct a cross-site scripting attack. Note: The administrative script is not deployed upon package installation. It must manually be copied to the web root .
4222bc02d2aaabe64f0655728983a92701094b60293d0b0385e1528a46361615Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the Hupsis Media Gallery plugin for e107, which can be exploited by malicious people to compromise a vulnerable system.
0f534606c652b216373d194d699760fa24a172649e214b3231608827d0479546e107 Hupsi Media Gallery plugin version 1.0 suffers from a remote shell upload vulnerability.
cf798872e71c9fa0094aa28aab7cb5fe4bb92f07513ffad6e92a20748e2682d9Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the Maian Media component for Joomla!, which can be exploited by malicious people to compromise a vulnerable system.
d211ebe5da567405b955118d1a24ce2db268993ebbdc69cb46d0a51966936dd0Media K! suffers from a remote SQL injection vulnerability.
207339c70378e0c78d578936f7cd3c9bcb2139b6a881535ab0cbd25e8a765b84WebMultiMedia suffers from a remote SQL injection vulnerability.
d194b4b00577fe3c98cbf0c69053101742c4c01d141251533c63293021174424Joomla Maian Media component version 1.5.8.x suffers from a remote shell upload vulnerability.
31dd62b9e88868483e8336fe106bc44dce5d195056d41a630c0b30f43f47aef9
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed