GNU Barcode version 0.99 suffers from a memory leak vulnerability.
9168ddd45efc4cc42aff07ec7a49258b7cb156acba0d7c06c76bf35c9ae2d1bcBarcodes Generator version 1.0 suffers from a persistent cross site scripting vulnerability.
ad8bf5e77fce744e79e98d6d6401df0c9c922345fa6dbfbd73898ab10d8b80b6BarcodeOCR version 19.3.6 suffers from an unquoted service path vulnerability.
85eed3d140dd92db0817be829bab7352465a92089c165b56f25562f4aa768e3dInateck BCST-60 Barcode Scanner suffers from a keystroke injection vulnerability.
c50880f8974ac7beaee4a55dd46fc351b8ac265c434798d48f41fea5ac5aea77Zint Barcode Generator version 2.6 suffers from a denial of service vulnerability.
683be83a533223f6e9368cef34e66436f6a0d6d41a1a71886439ed6863f01116GNU Barcode version 0.99 suffers from a buffer overflow vulnerability.
fbe0caf709c2a729a4f377d31d01707a6ff4588d473c3a49a7b628fb46d5df69BarcodeWiz ActiveX Control versions prior to 6.7 suffers from a buffer overflow vulnerability.
6101e91a84aee00fafb0cebb5718a2df43f7b5c55b823edf4cf69caa14768177VUPEN Vulnerability Research Team discovered a critical vulnerability in Adobe Acrobat and Reader. The vulnerability is caused by a heap overflow error when processing the "width" and "height" fields of a barcode element in a PDF, which could be exploited to execute arbitrary code via a malicious PDF file.
c5545ff4151f3d3fc0cd08c554b26236da99bbd61f13df1841d24f313158e669TEC-IT TBarCode OCX active-x control TBarCode4.ocx version 4.1.0 buffer overflow proof of concept exploit.
9e7504858cd2b2e3b4c2b733618f991d98aa8fa02a48edb3d38372d57d04fb75BarCodeWiz Barcode version 4.0.0.0 suffers from an active-x buffer overflow vulnerability.
b100107c50c5435e8468ce713c08d01fee63a0729c92fd3d29da921ea87d64b1Morovia Barcode Professional version 3.8.0 suffers from an active-x file overwrite vulnerability.
1e1a448e430489bae7191a00ab4a67b6395df19750905d33595b962ce815c5a4PHP-Barcode version 0.3pl1 suffers from a remote code execution vulnerability.
1a0fb1da8f684f5fa63bce7737f4422ada3ed7efc234622bba13720c22f02bf6Secunia Security Advisory - beford has discovered a vulnerability in PHP-Barcode, which can be exploited by malicious people to compromise a vulnerable system.
8d862e6aa950fb4d020e410234e23a6476810f71778b1841f9146f1a82df5b5aThis Metasploit module allows remote attackers to place arbitrary files on a users file system by abusing the "DownloadImageFileURL" method in the Black Ice BIImgFrm.ocx ActiveX Control (BIImgFrm.ocx 12.0.0.0). Code execution can be achieved by first uploading the payload to the remote machine, and then upload another mof file, which enables Windows Management Instrumentation service to execute the binary. Please note that this module currently only works for Windows before Vista. Also, a similar issue is reported in BIDIB.ocx (10.9.3.0) within the Barcode SDK.
c654011b0b3147d7a6b19b80df3e17b7fd597bafa54d127293006bedf2615b9dSecunia Security Advisory - nSense has reported a vulnerability in Barcode Reader Toolkit, which can be exploited by malicious people to compromise an application using the library.
5ebfc889e39eba9bc3b287f580812f9317f9382b66d3f8bdbf24c88925858009Anfibia Reactor version 2.1.1 suffers from a cross site scripting POST injection vulnerability in login.do.
586debeac011f1b5df9fe27f6bebf0c0142a76112f15487253577175eb3505c0TutorialMS version 1.4 suffers from a remote SQL injection vulnerability.
05dc88cc41754a5b425398dbff864e6b5d579f95a6559c9bfbdc906f75486443DoceboLMS version 4.0.4 suffers from multiple cross site scripting vulnerabilities.
f05d2fc8f18a0ffba23d0c365e3e620e537c53fcdd2ae8528167afa9108942cdAntamedia Internet Cafe Software version 7.1 suffers from a DLL hijacking vulnerability.
2cfaa2ba266c95b6c2c1ccc52ea1a90642d2fe2083343a19e2517a9131ab83a4Family Connections CMS version 2.3.2 suffers from stored cross site scripting and XML injection vulnerabilities.
560b3b3d4d08ff3156aae5a09cf91b31f8fe7ef39a5cb6cabff71d7f147a2fbfMicrosoft Source Code Analyzer for SQL Injection is a static code analysis tool for finding SQL Injection vulnerabilities in ASP code. The package suffers from an elevation of privileges vulnerability which can be used by a simple user that can change the executable file with a binary of choice. The vulnerability exists due to the improper permissions, with the "C" flag (Change(write)) for the "Everyone" group, for the binary file msscasi_asp.exe and the package itself, msscasi_asp_pkg.exe.
985f1b8a0c9c7170bfff235022459884dade76cc7504b5ccb7d597a030b5d2e8Pointter PHP CMS version 1.2 suffers from cross site scripting, local file inclusion, and remote SQL injection vulnerabilities.
9576e04112b662072178f9e55b2f30889f73467a6b27a79f96dc6bffd32f2b9bConstructr CMS version 3.03 suffers from cross site scripting and remote SQL injection vulnerabilities.
a4224d4b86b1a571f0f86d7e8a69d82fa301a58aad20b4eff53030bccf77f96deXPert PDF Reader version 4.0 suffers from a NULL pointer dereference and heap corruption denial of service vulnerability.
290623376432a2f10c80421fb38a2d32682190ff9321dac7e355092b1f5512ffNitro PDF Reader version 1.4.0 remote heap memory corruption proof of concept denial of service exploit and advisory.
6f7251db7965fc6a2cb851fe9fe21e4f69d15e09dae81c217b971fb2bc6b0484Elecard MPEG Player version 5.7 local buffer overflow proof of concept exploit.
e924badb6b079b6080a73804ebae6bfddae61d8bb4d1cbcdd18b7b2f41db3392
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed