Mozilla Thunderbird is susceptible to multiple remote information-disclosure vulnerabilities. These issues allow remote attackers to gain access to potentially sensitive information and know whether and when users read email messages.
The WinGraphviz.dll ActiveX control in StarUML allows remote attackers to execute arbitrary code via a long argument to the ToDot method, which triggers a buffer overflow.
This exploit targets a buffer overflow vulnerability in Squirremail's chpasswd utility. It allows an attacker to gain root privileges on a system. The exploit takes advantage of a buffer overflow in the chpasswd program, allowing the execution of arbitrary code.
The Windows kernel does not properly isolate broadcast messages from low integrity applications from medium or high integrity applications. This allows commands to be broadcasted to an open medium or high integrity command prompts allowing escalation of privileges. We can spawn a medium integrity command prompt, after spawning a low integrity command prompt, by using the Win+Shift+# combination to specify the position of the command prompt on the taskbar. We can then broadcast our command and hope that the user is away and doesn't corrupt it by interacting with the UI. Broadcast issue affects versions Windows Vista, 7, 8, Server 2008, Server 2008 R2, Server 2012, RT. But Spawning a command prompt with the shortcut key does not work in Vista so you will have to check if the user is already running a command prompt and set SPAWN_PROMPT false. The WEB technique will execute a powershell encoded payload from a Web location. The FILE technique will drop an executable to the file system, set it to medium integrity and execute it. The TYPE technique will attempt to execute a powershell encoded payload directly from the command line but it may take s
This module exploits a command injection vulnerability on PineApp Mail-SeCure 3.70. The vulnerability exists on the ldapsyncnow.php component, due to the insecure usage of the shell_exec() php function. This module has been tested successfully on PineApp Mail-SeCure 3.70.
The Wimpy MP3 application is vulnerable to an arbitrary file overwrite weakness. An attacker can exploit this vulnerability by providing malicious data through the 'trackFile' parameter in the 'wimpy_trackplays.php' script. This can lead to the overwrite of a text file with attacker-supplied content. Successful exploitation of this vulnerability can assist an attacker in further attacks.
GnuPG fails to notify scripts when an invalid detached signature is presented, allowing attackers to bypass the signature-verification process.
This is a proof-of-concept exploit for the WinZip32 MIME Parsing Overflow bug. The exploit takes advantage of a buffer overflow vulnerability in WinZip 8.1 on Windows XP SP1 and Windows 2000 SP1. The exploit allows an attacker to control the EBX register and execute arbitrary code.
This exploit allows an attacker to perform command injection and execute arbitrary commands on the TRENDnet TEW-812DRU router. The vulnerability was discovered by Jacob Holcomb and Kedy Liu, security analysts at Independent Security Evaluators. The CSRF vulnerability is identified as CVE-2013-3098 and the multiple command injection vulnerability is identified as CVE-2013-3365. The exploit involves enabling port forwarding to the router's internal IP on port 23 and enabling telnet.
The dynasite3.2.2 application is vulnerable to remote file inclusion. An attacker can exploit this vulnerability by including a malicious file from a remote server, leading to arbitrary code execution.
Services By CQR