Multimedia Builder 4.9.8 is vulnerable to a denial of service attack when opening a malicious .mef file. The exploit involves triggering the vulnerability by going to file->MEF Import ->load MEF.
FlexNet License Server Manager is affected by a stack buffer overflow vulnerability in the function that copies data received after the header into a buffer smaller than the required bytes. This vulnerability can be exploited remotely against the server.
This exploit triggers a buffer overflow in AnvSoft Any Video Converter 4.3.6. By generating a .reg file, executing it, and then opening the application, the exploit is triggered. The exploit uses a unicode buffer overflow to execute arbitrary code.
The username input on the registration page is not sanitized, allowing for a persistent XSS vulnerability. An attacker can inject malicious JavaScript code as the username, which is then stored in the database and displayed in the admin panel and user pages. This vulnerability can be exploited remotely. The exploit can also retrieve the admin cookie session.
The exploit is a Unicode Conversion Stack Based Buffer Overflow that occurs when processing overlong asset elements in Adobe Photoshop CS5.1 U3D.8bi Library Collada. By exploiting this vulnerability, an attacker could be able to return inside an ASCII memory region with an ultra large nop through assigning eip to ex. Photoshop.00630041. The shellcode should be alphabetic.
This exploit takes advantage of a bug with Variant type parsing in PHP 5.4.3. It allows an attacker to execute arbitrary code on a vulnerable system. The exploit is in the form of an HTML page and a PHP script. The HTML page repeatedly sends requests to the PHP script with different offsets to attempt to exploit the vulnerability. The PHP script performs some operations with the offset value and then executes the payload.
The Router's web interface on default 192.168.2.1 reveals the administrator password in MD5 hash, allowing bypass of the login.
The vulnerability is caused due to the "Images" property in the SharpGrid ActiveX control insecurely using the assigned value as an image list pointer and can be exploited to call a virtual function within an arbitrary memory location.
This exploit is based on a POC by Vulnerability-Lab. It causes a stack overflow in AnvSoft Any Video Converter 4.3.6.
This exploit allows an attacker to execute arbitrary SQL queries on Solarwinds Storage Manager version 5.1.0, leading to unauthorized access and potential data leakage.
Services By CQR