A denial of service vulnerability exists in Apple Safari 4.x when a malicious HTML file is accessed by the user. The HTML file contains a script tag which references an empty JavaScript file. The script tag also contains a try-catch block which calls a crashSafari() function and a setTimeout() function. When the HTML file is accessed, the browser will crash due to the crashSafari() function. On Windows, the crash occurs in the webkit.dll module, while on Mac OS X, the crash occurs in the Safari application.
AudioPLUS 2.00.215 is vulnerable to a local buffer overflow vulnerability when processing a specially crafted .pls file. An attacker can exploit this vulnerability by crafting a malicious .pls file and convincing the user to open it. This will cause a buffer overflow and overwrite the SEH handler, allowing the attacker to execute arbitrary code.
The CMS Chainuk version 1.2 is vulnerable to LFI, XSS and Shell injection. The vulnerability exists in the index.php, admin_edit.php, admin_delete.php and admin_menu.php files. An attacker can exploit the vulnerability by sending a malicious payload in the form of a GET request to the vulnerable files. For example, an attacker can send a malicious payload in the form of a GET request to the index.php file with the parameter 'id' set to '../../../../etc/passwd%00' to exploit the LFI vulnerability. Similarly, an attacker can send a malicious payload in the form of a GET request to the admin_delete.php file with the parameter 'id' set to '../FILE.PHP%00' to exploit the Shell injection vulnerability. Lastly, an attacker can send a malicious payload in the form of a POST request to the admin_menu.php file with the parameter 'menu' set to '../../../../etc/passwd%00' to exploit the XSS vulnerability.
This exploit sends a large number of '//.' characters to the ARD-9808 DVR Card Security Camera, causing it to crash.
A vulnerability in ARD-9808 DVR Card Security Camera allows an attacker to view the passwords of the camera by accessing the dvr.ini file. The dvr.ini file can be accessed by using the exploit http://[sitename-ipadress]/dvr.ini. This vulnerability was discovered by Septemb0x and was published on July 1, 2009.
Green Dam listen on udp port 1234 and wait for the 4 bytes time value. We can send some bytes to change the time of the dest system.
Bypassing authentication with the given javascript code and then accessing the backup.php page to download the database.
This exploit allows an attacker to delete arbitrary messages from the Messages Library 2.0 application. The exploit requires the attacker to know the ContactID of the message they wish to delete. The exploit is achieved by sending a POST request to the sms.php file with the Action parameter set to Delete and the ID parameter set to the ContactID of the message to be deleted.
A stack overflow vulnerability exists in PEamp 1.02b when a specially crafted .M3U file is loaded. An attacker can exploit this vulnerability to execute arbitrary code in the context of the application. The application fails to properly validate the length of user-supplied data prior to copying it to a fixed-length buffer on the stack.
A buffer overflow vulnerability exists in Mp3-Nator 2.0 (plf) due to improper bounds checking of user-supplied data. An attacker can exploit this vulnerability to execute arbitrary code in the context of the application. This exploit uses a PexAlphaNum encoder to generate a payload and a SEH based exploit to execute it.
Services By CQR