Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with 'If: <http://' in a PROPFIND request, as exploited in the wild in July or August 2016.
A memory corruption vulnerability was found in the parsing of specially crafted archive files in SAPCAR, which could lead to local code execution scenarios.
The exploit allows an attacker to perform SQL injection by manipulating the 'topicid' parameter in the 'index.php' file. By exploiting this vulnerability, an attacker can retrieve the username and password from the 'md_users' table.
There are multiple paths in mkvparser::Block::Block(...) that result in heap buffer overflows. The overflow conditions can be triggered by parsing certain files, but they may not reliably crash the process. The offsets mentioned in the report correspond to a specific version of the library.
During EBML node parsing, the EBML element_size is used unvalidated to allocate a stack buffer to store the element contents. This can result in memory corruption and potential remote-code-execution in the mediaserver process.
There are multiple vulnerabilities in A-shop <=0.70. One of the vulnerabilities is a file deletion vulnerability where an attacker can delete any file on the server by exploiting the 'filebrowser.asp' script. Another vulnerability is SQL injection which can be exploited in various areas of the application.
The MsMpEng service in Windows is remotely accessible without authentication, allowing attackers to exploit vulnerabilities in the service. This includes accessing mpengine by sending emails, visiting links, and other methods. The vulnerabilities in MsMpEng are severe due to the privilege, accessibility, and ubiquity of the service. The core component responsible for scanning and analysis, called mpengine, is a complex attack surface accessible to remote attackers. The NScript component in mpengine evaluates JavaScript code, making it highly privileged and unsandboxed.
Open MediaCoder then drag & drop the .m3u file in it and then press the START button. or just write click on the .mu3 file .. open with .. MediaCoder
The vulnerability exists in the phpBB Module SupaNav 1.0.0 in the link_main.php file. The issue is caused by the lack of proper input validation in the phpbb_root_path parameter, allowing an attacker to include arbitrary files from a remote server. By exploiting this vulnerability, an attacker can execute malicious code or gain unauthorized access to the target system.
This exploit targets an open port 2000/TCP which is commonly found in Asterisk machines. The exploit allows an attacker to execute arbitrary code on the target machine. It takes advantage of a vulnerability in the chan_skinny module, which is enabled by default. The exploit sends a register message to the target machine, which triggers the vulnerability and allows the attacker to execute code.
Services By CQR