iOS versions 5.1.1 and below Safari Browser JS match(), search() crash proof of concept exploit.
4c3d65eecf219e11043dc54dccc454f8ResEdit version 1.5.11-win32 suffers from a buffer overflow. Proof of concept denial of service exploits included.
6f23782d3add86957f122b199a5849ecSymantec End Point Protection version 11.x and Symantec Network Access Control version 11.x local code execution proof of concept exploit.
174fc0f373ce2fdf3dc6f1c8d79bb041This proof of concept code demonstrates a Microsoft Windows XP keyboard layouts pool corruption vulnerability, post MS12-034. The vulnerability exists in the function win32k!ReadLayoutFile() that parses keyboard layout file data.
34eea03ff3e3df7878c5cf5571892884Liferay version 6.1 is vulnerable to JSON-related cross site request forgery attacks. Proof of concept code is included.
2b12109503d92e9bf2898884245f4f24Some SVG specifications, like SVG 1.1 and SVG tiny 1.2, allow Java code execution when the file is opened. Proof of concept code included.
14de63077e55a7c29ecb567ff57d0d25Liferay version 6.1 suffers from a vulnerability where it is possible to retrieve the names and email addresses of all users. Proof of concept code included.
1c9db5e006b9833dda17ca6d031cba9bLiferay version 6.1 suffers from a circumvention issue when restricting access to ip blocks. Proof of concept exploit included.
b45af907ccb22997e62ef3d74a4de98fFlexNet License Server Manager versions 11.9.1 and below suffer from a stack overflow vulnerability in lmgrd. Proof of concept included.
01246120803d1298c989f4711c3ca6b5Pro-face Pro-Server EX versions 1.30.000 and PCRuntime versions 3.1.00 suffer from memory related and integer overflow vulnerabilities. Proof of concept included.
17c2b2e4755b2b85a4fed0a5a84f3273QNX phrelay/phindows/phditto suffer from bpe_decompress stack overflow and Photon Session buffer overflow vulnerabilities. Proof of concept test code included.
8bdbe35c922a2d77f278a277d57eda29Adobe Photoshop version CS5.1 U3D.8BI suffers from a library collada asset elements stack based buffer overflow vulnerability. Proof of concept included.
83481dcbc6cdedc521b301d85efa9b95Guitar Pro version 6.1.1 r10791 crash proof of concept exploit that creates a malicious .gpx file.
d22e7329a48ff2468e9f7792fe27d5b1BeyondCHM version 1.1 suffers from a buffer overflow vulnerability when handling a specially crafted chm file. Proof of concept included.
34685c0f1589495d901a6187bb5dac85Mobipocket Reader version 6.2 build 608 suffers from a buffer overflow vulnerability. Proof of concept included.
c965a12afc749d35e50648de2a8b0d3fSumatraPDF version 2.0.1 suffers from chm and mobi file memory corruption vulnerabilities. Proof of concept included.
d1240f9e28eeb1f159902d452dfed57dBy creating a specially crafted webdav request that contains an external entity it is possible to read files from Liferay Portal version 6.0.5 ce. Proof of concept code included.
94d5d9f05f2aca62c5b79765fd0eb61aBy utilizing the json webservices exposed in Liferay Portal version 6.1 you can register a new user with any role in the system, including the built in administrator role. Proof of concept included.
89a5b7ff48854a6931edae773c704aebLiferay Portal suffers from a takeover vulnerability due to a single HTTP request allowing an attacker to reconfigure which memcached to use. Proof of concept code included. Version 6.1 ce is confirmed vulnerable.
842f6b4765772a61cdc4b88e3ce9067fSamsung devices with support for remote controllers suffer from endless restart and possible buffer overflow vulnerabilities. Proof of concept code included.
97710f5ad1ab8c0c45c80302584713ccWireshark suffers from a call_dissector() NULL pointer dereference denial of service vulnerability. Proof of concept pcap included.
817850b427bd1cd44213e9803dba4327LibreOffice version 3.5.2.2 suffers from a soffice.exe\soffice.bin memory corruption vulnerability when handling a malformed RTF file. This is a proof of concept exploit.
7053d8f0483bacdf0019c43ec1e53220This is a proof of concept exploit for the vulnerability documented in MS11-046 for the Microsoft Windows Ancillary Function Driver (AFD).
2431b3c85028ae21eabf187c5609380fMcAfee Web Gateway and Squid Proxy version 3.1.19 suffers from a bypass vulnerability due to putting trust in Host headers. Proof of concept tool included. Squid is only vulnerable to the attacks if the filtered site is using SSL.
2a72aa39ac2270394d6cad78bd6d074aAdobe Flash Player versions prior to 10.3.183.16 and 11.x before 11.1.102.63 suffer from an information disclosure vulnerability. This archive has research related to this issue, proof of concept source code, and a swf that demonstrates the issue.
6be90ad746ffeeba186321995dcd9978
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed