Microsoft Baseline Security Analyzer allows local files to be exfiltrated to a remote attacker controlled server if a user opens a specially crafted ".mbsa" file.
The exploit allows an attacker to execute arbitrary code by exploiting a buffer overflow vulnerability in Photo To Video Converter Professional version 8.07. By sending a specially crafted input, an attacker can overwrite the structured exception handler (SEH) and gain control of the program execution flow. This can lead to remote code execution or denial of service.
A buffer overflow vulnerability in Socusoft 3GP Photo Slideshow 8.05 allows remote attackers to execute arbitrary code via a crafted exploit script.
A buffer overflow vulnerability exists in SocuSoft iPod Photo Slideshow 8.05. By exploiting this vulnerability, an attacker can execute arbitrary code on the target system and potentially gain unauthorized access.
Compile the following code and rename it to either netsh.exe or cmd.exe and place the file in the 'C:ProgramDataOpenDNSERC' directory. Restart the machine! Create malicious MSI file named RoamingClient_WIN_2.0.168.msi and place in 'C:ProgramDataOpenDNSERCUpgrades' and restart the machine.
mooSocial Store Plugin is affected by Blind SQL Injection in the product parameter used with URL Rewrite
This is a remote root exploit for eXtremail version 2.1.1 and below. It exploits a buffer overflow in the LOGIN command of the admin interface. The exploit allows an attacker to execute arbitrary code with root privileges.
Low privilege users are able to increase their permissions due to improper origin checking by the vendor.
This is a proof of concept exploit for a vulnerability in Microsoft Windows Explorer that allows an out-of-bound read, leading to a denial of service. The exploit is achieved by crafting a specially formatted buffer and sending it to the Windows Explorer application. This vulnerability does not have a specific CVE assigned to it.
The exploit allows an attacker to cause a denial of service by providing a specially crafted 'Nickname' value, crashing the VSAXESS application.
Services By CQR