This is a proof-of-concept for a buffer overflow vulnerability in BrightStor ARCserve Backup. The vulnerability allows an attacker to send a specially crafted buffer to the target application, causing it to crash or potentially execute arbitrary code.
The ImeraIEPlugin.dll control fails to validate the content it downloads and installs, allowing an attacker to execute arbitrary code.
This is a proof-of-concept exploit for crashing media player programs that handle M3U, M3l, TXT, and LRC files. By importing a specially crafted file, the program crashes.
This exploit targets a vulnerability in Exim's SPA authentication code. The vulnerability allows for a buffer overflow in the spa_base64_to_bits() function, due to a lack of boundary checks in the auth_spa_server() function. The exploit takes advantage of this overflow to execute arbitrary code.
This is a buffer overflow vulnerability in Orbit <=2.8.4 that allows an attacker to execute arbitrary code by sending a long hostname. The vulnerability was discovered by Secunia and the exploit and POC were provided by JavaGuru.
The Coppermine Photo Gallery 1.4.12 allows remote attackers to inject arbitrary web script or HTML via the id parameter in a delete action to delete.php.
This exploit demonstrates how DelphiTurk e-Posta v1.0 discloses passwords to local users. It reads the passwords from the 'Profiles.adt' file located in the 'Delphi TurkDelphi Türk e-Posta 1.0Settings' directory.
A problem has been identified in the RSVP Server for Microsoft Windows 2000 that may allow an attacker to hijack management of the network. This could allow an attacker control of network Quality of Service.
The vulnerability allows an attacker to execute arbitrary SQL queries by injecting malicious code into the login.php script. By entering the username as 'Administrator'/*, the attacker can bypass authentication and gain unauthorized access to the system.
The vulnerability allows remote attackers to execute arbitrary code via a URL in the phpbb_root_path parameter to includes/functions_lastrss_autopost.php.
Services By CQR