ZSNES v1.51 and prior is prone to a stack-based buffer overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied input. An attacker could exploit this issue to execute arbitrary code in the context of the application. Failed exploit attempts will result in a denial-of-service condition.
An access violation was observed in Microsoft Office 2007 (Word document). The crash occurs due to an invalid read dereference of a bad object pointer. If the word value read is controlled and set to a value other than 0xFFFF, then a controlled value is used as an indirect call target (at 328A1DD4 in MSO.dll).
An attacker can bypass authentication of Keeper IP Camera by accessing the umanage.asp page. This page allows the attacker to view or change passwords.
This module gains remote code execution on Firefox 35-36 by abusing a privilege escalation bug in resource:// URIs. PDF.js is used to exploit the bug. This exploit requires the user to click anywhere on the page to trigger the vulnerability.
GOM Audio 2.0.8 is vulnerable to a crash due to a buffer overflow. By opening the application, going to Preference -> Manage -> Skins, and clicking on ADD, then browsing the CRASH.gas file, the software will crash.
A vulnerability exists in the GeoPlaces3 Wordpress theme which allows an attacker to upload arbitrary files to the server. This is due to the lack of proper validation of the uploaded file type in the upload.php and upload_3feb.php scripts. An attacker can exploit this vulnerability by sending a malicious file to the upload.php or upload_3feb.php script via a POST request.
Pligg CMS is a CMS written in PHP language and licensed under GPL v 2.0. In Pligg CMS panel in adding users section Pligg CMS allow to attacker add admin by CSRF vulnerability. The vulnerability in add users sections and another thing is added admin by CSRF vulnerability can't be deleted by admin and admin should delete it from database.
The Mock SMTP Server 1.0 is vulnerable to a remote crash when an attacker sends a malicious input to the server. The malicious input consists of two NOPs followed by a carriage return and line feed. This causes the server to crash and the Exception occured on EBX Register (E0434F4D). The Registers during the crash are EAX 03BAF618, ECX 00000000, EDX 00000028, EBX E0434F4D, ESP 03BAF614, EBP 03BAF668, ESI 03BAF6A4, EDI 001DFF28, EIP 7C812FD3 KERNEL32.7C812FD3, C 0 ES 0023 32bit 0(FFFFFFFF), P 0 CS 001B 32bit 0(FFFFFFFF), A 0 SS 0023 32bit 0(FFFFFFFF), Z 0 DS 0023 32bit 0(FFFFFFFF), S 0 FS 003B 32bit 7FFD6000(FFF), T 0 GS 0000 NULL, D 0, O 0 LastErr WSAECONNRESET (00002746), EFL 00000202 (NO,NB,NE,A,NS,PO,GE,G), ST0 empty, ST1 empty, ST2 empty, ST3 empty, ST4 empty, ST5 empty, ST6 empty, ST7 empty.
A buffer overflow vulnerability exists in Easy Address Book Web Server 1.6 when handling a specially crafted UserID parameter. An attacker can exploit this vulnerability to execute arbitrary code in the context of the application.
The Client Filter Admin portal in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote attackers to bypass authentication and subsequently create arbitrary profiles via a showdeny action to the default URL.
Services By CQR