New User, Welcome!     Login

Next Page >>

stack overflow

EEYE: Multiple Vulnerabilities In .FLAC File Format and Various Media Applications

error handlers of the affected application. Exploitation would be
achieved by overwriting pointers in memory with arbitrary values stored
inside the FLAC file or hard coded addresses in DLL files that directing
code execution toward the attacker's payload.

Vulnerability #3: VORBIS Comment String Size Length Stack Overflow
This is due to predetermined buffer sizes in applications when handling
data in the VORBIS Comment Metadata block. By inserting an overly long
VORBIS Comment data string along with an large VORBIS Comment data
string size value (such as 0x000061A8 followed by 25,050 A's),
applications that do not properly apply boundary checks will result in a

Vulnerabilities in Sunway ForceControl 6.1 sp3 (SCADA)

Application:  Sunway ForceControl
              http://www.sunwayland.com.cn/pro.asp
Versions:     <= 6.1 sp3 with AngelServer and WebServer updated
Platforms:    Windows
Bugs:         various stack overflows
              directory traversals
              third party ActiveX code execution
              various Denials of Service
Exploitation: remote
Date:         22 Sep 2011

jetAudio <= 7.0.5 (.ASX) Remote Stack Overflow

Application: jetAudio 7.0.5 (.ASX) Remote Stack Overflow
Web Site: http://www.cowonamerica.com/download/
Platform: Windows
Bug:Remote Stack Overflow
Extension: ASX
special condition: none

-------------------------------------------------------

1) Introduction

CA Secure Content Manager HTTP Gateway Service FTP Request Vulnerabilities

Vulnerabilities
http://community.ca.com/blogs/casecurityresponseblog/archive/2008/06/04.aspx
Reported By: 
Sebastian Apelt working with ZDI/TippingPoint
Cody Pierce, TippingPoint DVLabs
CA ETrust Secure Content Manager Gateway FTP LIST Stack Overflow 
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-08-036/
CA ETrust Secure Content Manager Gateway FTP PASV Stack Overflow 
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-08-035/

CVE-2012-3819: Stack Overflow in DartWebserver.dll <= 1.9

"Build web applications in any familiar software development
environment. Use WebServer for ActiveX to add web-based access to
traditional compiled applications."

Version 1.9 and prior is vulnerable to a stack overflow exception,
these maybe generated by producing large requests to the application,
e.g. "a" * 5200000 + "\n\n"

Analysis
===============

Format Factory v2.95 - Buffer Overflow Vulnerabilities

FontUnderline=0


#!/usr/bin/python
#
# Exploit Title: AnvSoft Any Video Converter 4.3.6 Stack Overflow
# Author: cikumel (@mhx_x) and y0k (@riy0_wid) from @spentera research
# Website: http://www.spentera.com
# Platform: Windows
# Tested on: Windows XP SP3
# Based on POC by Vulnerability-Lab (http://www.exploit-db.com/exploits/18717/)

Microsoft Jet Engine MDB File Parsing Stack Overflow Vulnerability

Microsoft Jet Engine MDB File Parsing Stack Overflow Vulnerability

by cocoruder(frankruder_at_hotmail.com)
http://ruder.cdut.net


Summary:

    A remote code execute vulnerability exists in Microsoft Jet
Engine. A remote attacker who successfully exploit this vulnerability

{PRL} Lexmark Multiple Laser Printer Remote Stack Overflow

#####################################################################################

Application:   Lexmark Multiple Laser Printer Remote Stack Overflow

Platforms:   Lexmark Multiple Laser printer

Exploitation:   Remote Exploitable

CVE Number:   CVE-2010-0619

Cisco Security Advisory: Cisco Unified IP Phone Overflow and Denial of Service Vulnerabilities

Cisco has also provided a CVSS calculator to help compute the
environmental impact for individual networks at:

http://intellishield.cisco.com/security/alertmanager/cvss

CSCsj74818 - DNS Response Parsing Stack Overflow

CVSS Base Score - 10.0
    Access Vector -            Network
    Access Complexity -        Low
    Authentication -           None

=?ISO-8859-1?Q?Fwd=3A_=7BLostmon=B4s_Group=7D_K=2DMeleon_for_windows_about=3An?= =?ISO-8859-1?Q?eterror_Stack_Overflow_DoS?=

############################################
K-Meleon for windows about:neterror Stack Overflow DoS
Vendor URL:http://kmeleon.sourceforge.net/
Advisore:http://lostmon.blogspot.com/2010/08/k-meleon-for-windows-aboutneterror-dos.html
Vendor notified:Yes exploit available: YES
############################################

K-Meleon is an extremely fast, customizable, lightweight web browser
based on the Gecko layout engine developed by Mozilla which is also
used by Firefox. K-Meleon is free, open source software released under

Vulnerabilities in Cytel Studio 9

              http://www.cytel.com/Software/StatXact.aspx
              http://www.cytel.com/Software/LogXact.aspx
              http://www.cytel.com/Software/Crossover.aspx
Versions:     <= 9.0.0
Platforms:    Windows
Bugs:         A] strings stack overflow
              B] rows integer overflow
              C] CYB USE stack overflow
Exploitation: file
Date:         02 Oct 2011
Author:       Luigi Auriemma

NGS00042 Technical Advisory: Solaris 11 USB hub class descriptor kernel stack overflow (CVE-2011-2295)

=======
Summary
=======
Name: Solaris 11 USB hub class descriptor kernel stack overflow
Release Date:  2 November 2011
Reference: NGS00042
Discoverer: Andy Davis <andy.davis@ngssecure.com>
Vendor: Oracle
Vendor Reference: 
Systems Affected: Solaris 8, 9, 10, and 11 Express

Vulnerabilities in Siemens SIMATIC WinCC flexible 2008 SP2

Application:  Siemens SIMATIC WinCC flexible (Runtime)
              http://www.automation.siemens.com/mcms/human-machine-interface/en/visualization-software/wincc-flexible/wincc-flexible-runtime/Pages/Default.aspx
Versions:     2008 SP2 + security patch 1
Platforms:    Windows
Bugs:         A] HmiLoad strings stack overflow
              B] HmiLoad directory traversal
              C] HmiLoad various Denials of Service
              D] miniweb directory traversal
              E] miniweb arbitrary memory read access
Exploitation: remote

AST-2012-014: Crashes due to large stack allocations when using TCP

               Asterisk Project Security Advisory - AST-2012-014

         Product        Asterisk                                              
         Summary        Crashes due to large stack allocations when using     
                        TCP                                                   
    Nature of Advisory  Stack Overflow                                        
      Susceptibility    Remote Unauthenticated Sessions (SIP)                 
                                                                              
                        Remote Authenticated Sessions (XMPP, HTTP)            
         Severity       Critical                                              
      Exploits Known    No

VUPEN Security Research - Microsoft Office Excel OBJ Stack Overflow Vulnerability (CVE-2010-0822)

VUPEN Security Research - Microsoft Office Excel OBJ Stack Overflow 
Vulnerability (CVE-2010-0822)

http://www.vupen.com/english/research.php


I. BACKGROUND
---------------------

"Microsoft Office Excel is a powerful tool you can use to create and

VUPEN Security Research - Microsoft Office Excel RTD Stack Overflow Vulnerability (CVE-2010-1246)

VUPEN Security Research - Microsoft Office Excel RTD Stack Overflow 
Vulnerability (CVE-2010-1246)

http://www.vupen.com/english/research.php


I. BACKGROUND
---------------------

"Microsoft Office Excel is a powerful tool you can use to create and

TPTI-07-20: Apple Quicktime Movie Stack Overflow Vulnerability

TPTI-07-20: Apple Quicktime Movie Stack Overflow Vulnerability
http://dvlabs.tippingpoint.com/advisory/TPTI-07-20

November 12, 2007

-- CVE ID:
CVE-2007-4674

-- Affected Vendor:
Apple

Re: Nokia N95-8 browser denial of service

Hi,

Also crashes Firefox 3.06 (latest), Stack overflow. (to not be confused
with stack buffer overflow)

Thu Feb  5 18:46:13.828 2009 (GMT+1): (15d8.17ec): Stack overflow - code c00000fd (first chance)
eax=077e4b80 ebx=00000000 ecx=077e4b60 edx=00000000 esi=00000000 edi=077e4b60
eip=604fcc8f esp=00032fa0 ebp=0003304c iopl=0         nv up ei pl nz na pe nc
cs=001b  ss=0023  ds=0023  es=0023  fs=003b  gs=0000             efl=00010206

jetAudio 7.0.5 COWON Media Center MP4 Stack Overflow

another vulnerable application.

#!/bin/perl
#
# jetAudio 7.0.5 COWON Media Center MP4 Stack Overflow
# 
# 0-day discovered and exploited by SYS 49152
# 
# Tested on win XP SP2 ENG
# Shell on port 49152

ZDI-09-052: CA Unicenter Software Delivery dtscore.dll Stack Overflow Vulnerability

ZDI-09-052: CA Unicenter Software Delivery dtscore.dll Stack Overflow
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-09-052
August 7, 2009

-- Affected Vendors:
Computer Associates

-- Affected Products:
Computer Associates Unicenter Software Delivery

Re: Media Player Classic 6.4.9 MP4 Stack Overflow 0-day

On 12/8/2007 at 1:54 AM gforce@operamail.com wrote:

>#!/bin/perl
>#
># Media Player Classic 6.4.9 MP4 Stack Overflow
>#
># 0-day discovered and exploited by SYS 49152
>#
># Tested on win XP SP2 ENG
># Shell on port 49152

IRM Advisory: Cisco IOS LPD Remote Stack Overflow

----------------------------------------------------------------------
IRM Security Advisory 024

Cisco IOS LPD Remote Stack Overflow
 
Vulnerability Type / Importance: Remote Code Execution / High

Problem Discovered: 30 July 2007
Vendor Contacted: 30 July 2007
Advisory Published: 10 October 2007

Critical Vulnerability in SNMPc

=======
Summary
=======
Name: Unauthenticated Stack Overflow in SNMPc
Release Date: 30 April 2008
Reference: NGS00526
Discover: Wade Alcorn <wade@ngssoftware.com> and John Heasman 
<john@ngssoftware.com>
Vendor: Castle Rock Computing
Systems Affected: SNMPc versions 7.1 and earlier

Windows media player 6.4 MP4 Stack Overflow 0-day

#!/bin/perl
#
# Windows media player 6.4 MP4 Stack Overflow
# 
# 0-day discovered and exploited by SYS 49152
# 
# Tested on win XP SP2 ENG
# Shell on port 49152
# 
# usage:

[DCA-2011-0013] - IBM Informix Dynamic Server 11.50 SET COLLATION Stack OverFlow

IBM Informix Dynamic Server 11.50 SET COLLATION Stack OverFlow

[DCA-2011-0013]

[Discussion]
- DcLabs Security Research Group advises about the following vulnerability(ies):

[Software/Hardware]
- IBM Informix

QuickTime <= 7.4.1 QTPlugin.ocx Multiple Remote Stack Overflow

Application: QuickTime <= 7.4.1 QTPlugin.ocx Multiple Remote Stack Overflow

Web Site: http://www.apple.com/fr/quicktime/download/

Platform: Windows

Bug: Multiple Remote Stack Overflow

-------------------------------------------------------

ZDI-08-013: Novell eDirectory for Linux Stack Overflow

ZDI-08-013: Novell eDirectory for Linux Stack Overflow
http://www.zerodayinitiative.com/advisories/ZDI-08-013
March 26, 2008

-- CVE ID:
CVE-2008-0924

-- Affected Vendors:
Novell

CORE-2008-0425 - NASA BigView Stack Buffer Overflow

Release mode: Coordinated release


*Vulnerability Information*

Class: Stack Overflow
Remotely Exploitable: Yes (client side)
Locally Exploitable: No
Bugtraq ID: 29517       
CVE Name: CVE-2008-2542

Re: Media Player Classic 6.4.9 MP4 Stack Overflow 0-day

On 8 Dec 2007 01:54:52 -0000,  <gforce@operamail.com> wrote:
> #!/bin/perl
>
> #
>
> # Media Player Classic 6.4.9 MP4 Stack Overflow

Did this ever get reported to Gulverkli?  Your mailing doesn't appear
to acknowledge that fact or not.

Novell GroupWise Messenger Client (GWIM) Remote Stack Overflow

||


.:: SUMMARY

Novell GroupWise Messenger Client (GWIM) Remote Stack Overflow


Version: 2.0, It is suspected that all previous versions of Groupwise
Messenger Client are vulnerable.
Next Page>>

Copyright © 1995-2013 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!