A directory traversal vulnerability has been found in the PJL file system access interface of various HP LaserJet MFP devices. File system access through PJL is usually restricted to a specific part of the file system. Using a pathname such as 0:...... it is possible to get access to the complete file system of the device.
This exploit creates a file with the .cda extension that triggers a denial of service vulnerability in Power Audio Editor. The file contains a payload of 3400 A characters, causing the software to crash or become unresponsive when the file is opened.
The HookCentre.sys kernel driver in G Data TotalCare 2011 is vulnerable to a race condition in the handling of arguments of the NtOpenKey function. This vulnerability can be exploited by an attacker with local access to crash the system or gain escalated privileges.
User can execute arbitrary JavaScript code within the vulnerable application. The vulnerability exists due to failure in the "/admin/settings_menu.php" script to properly sanitize user-supplied input in "about" variable. Successful exploitation of this vulnerability could result in a compromise of the application, theft of cookie-based authentication credentials, disclosure or modification of sensitive data.
Several XSRF existed in this CMS, attacker can use them for: changing admin password, change user type, or deface the website.
The software doesn't handle correctly M3U's header and extra info when is being imported on a open sound group. Trigger: launch app, open an existing sound group then import the crash.m3u and....KaaaaBooom!!
This exploit allows remote attackers to execute arbitrary code via a long string in the fileName parameter in a .avi file, which triggers a heap-based buffer overflow in the l3codeca.acm codec, aka "Windows Media Player MP3 Codec Vulnerability."
The video codec crashes all applications that use it, for rendering MP4 files. It also crashes Windows Explorer (explorer.exe) if automatic thumbnail generation of MP4 files is turned on or if you try to view the thumbnails.
This is a proof of concept code for exploiting a buffer overflow vulnerability in the xmame application's "-lang" option. The vulnerability is based on the advisory mentioned in the comment section of the code. The code sets the effective user ID and real user ID to execute /bin//sh. It has been tested on Linux debian24 with specific versions of the kernel, gcc, and xmame. The shellcode used is 49 bytes long.
Exploit script for Netvolution CMS version >= 2.xx.xx.xx. The script is used to exploit the vulnerability in the software.
Services By CQR