This Metasploit module exploits a stack-based buffer overflow within version 1.9.5.1 of Hyleos ChemView (HyleosChemView.ocx). By calling the 'SaveAsMolFile' or 'ReadMolFile' methods with an overly long first argument, an attacker can overrun a buffer and execute arbitrary code.
ba64d10e2eab24164863d5807b3b8829Microsoft Help Files (.CHM) suffer from a locked file bypass.
f8ae4902131c75802c40a7a3197fc5c0Skype client versions prior to 4.2.0.1.55 suffer from a URI handling input validation vulnerability that allows for remote command execution.
0a20a3178c435cdde8c2ce8645f77c7bChemviewX version 1.9.5 suffers from stack overflow vulnerabilities.
22de27c9aee08f5ae2809f12bef4f87eDuring analysis of the SWF file format used by commercial Flash authoring applications multiple heap overflows were discovered within Adobe Flash CS3 Professional, and Adobe Flash MX 2004.
fcce1ca4b7c42d64566164c020e47a86Cart32 versions 6.3 and below suffer from an arbitrary file download vulnerability.
cce806581647e183818feed3cb1f26f2The .NET framework suffers from multiple null byte injection vulnerabilities.
a1e4e1151ebf71dac732358f284fd5b7During security analysis of the Tippingpoint IPS product a signature evasion vulnerability was discovered. The use of specific Unicode characters on particular web servers allows a remote user to bypass IPS detection. TippingPoint IPS running TOS versions 2.1 and 2.2.0 through 2.2.4 are affected.
b75f7017f9550e4dfe22e1b71c777f55EasyMail Objects version 6.5 suffers from a connect method stack overflow vulnerability.
42312e8a0f02a0562d27b6a7dfe8f2bfThe Avatar MOD gives portal administrators the ability to upload avatar images to be used within the forum. CodeScan located a file upload vulnerability in the avatar_upload.asp which can be exploited by a remote user to upload any arbitrary file. Affected is Avatar MOD versions 1.3 for Snitz Forums version 3.4.
5daf0932a8ea7d902524b62c1129c010During an audit of a client, Security-Assessment.com discovered multiple critical vulnerabilities within the RockLiffe MailSite Express WebMail software. The vulnerabilities include the retrieval of arbitrary files from the web server, and bypassing attachment validation routines allowing for remote code execution. Exploitation details included. All versions of RockLiffe MailSite Express WebMail prior to version 6.1.22 are affected.
3ff38e4d684180018f4aebab2106f220glftpd versions 1.26 to 2.00 suffer from directory traversal and information disclosure vulnerabilities.
e6685a1998d98ad585272396985d6fe6Remote Execute version 2.30 is susceptible to denial of service after receiving seven connections.
7d9d209e155ca1c1b21d3c732ccb9de9MailWorks Pro has a rather trivial session check that is easily bypassed within a cookie. The exploit allows an attacker to have full control over the administration section, without the need to authenticate and allowing the attacker to spoof the admin user functions.
55988d7a3dd349776846061e35aca3f2BlackIce Server Protect versions 3.6cno and below from Internet Security Systems installs a firewall ruleset that can be removed or modified by any trusted or local unprivileged user.
0eef793b3c7c3fea0a7027ca07b5e177
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed