| Real Name | Rodrigo Rubira Branco BSDaemon |
|---|---|
| Email address | rodrigo at kernelhacking.com |
| Website | www.kernelhacking.com/rodrigo |
| First Active | 2004-12-12 |
| Last Active | 2012-05-15 |
Apple Quicktime does not properly parse .pct media files, which causes a corruption in module DllMain by opening a malformed file with an invalid value located in PoC repro01.pct at offset 0x20E. Quicktime Player version 7.7.1 (1680.42) on Windows XP SP 3 - PT_BR is confirmed affected. Other versions may also be affected.
177743c04df027711accb6be0442f662c763f68ae3e958ab54e44b32c5cdd929Adobe Shockwave Player suffers from multiple memory corruption vulnerabilities when parsing .dir media files. This file has three advisories pertaining to these issues. Versions affected include Shockwave Player version 11.6.3r633, Module IMLLib.framework on MacOS X 10.7.2 (11C74).
68a2f9480c2bfe6e206c7c6cb220e52d87c7a6f1a454f30d7a1596ce26707535The Recaptcha WordPress plugin suffers from a cross site scripting vulnerability.
3380fb0810e15ce592d4dc8554dd0382521efd3b51f666fb7fa37f371bd0984bThe Related Posts WordPress plugin suffers from a cross site scripting vulnerability.
d488164a8603b819908f4998ecd1a942907c98bd27482847a44773121f115473rpc.cmsd / Calendar Manager RPC service remote proof of concept buffer overflow exploit for Solaris, AIX, and HP-UX.
5b93d417eda40ad6a76cd6bd81c57c1a00b7622bb6aa9d80ff8bb2625d7e3c02LiveZilla versions prior to 3.2.0.2 suffer from a cross site scripting vulnerability.
f6edeefe91536b6d753f952535513ed99b5fedfaf49618dcb53bf3a41941f022Radius Manager version 3.8.0 suffers from a cross site scripting vulnerability.
849ce4124b8868d4964c836f3f0fe5032b8b695ec1975c135f686eb55ae4a79cEmbedded Video WordPress Plugin suffers from a cross site scripting vulnerability.
e878442fc4101ed9c5163d489e152cacbae8369a6daf6621de5c5f33a5a44380The Apple QuickTime player does not properly parse .fpx media files, which causes a memory corruption by opening a malformed file with an invalid value located in PoC repro.fpx at offset 0x49. Tested vulnerable are versions 7.6.8 (1675) and 7.6.6 (1671).
facb84d8419ffcf0bba2fe7f89e1f2ae1bc160d4a44a1f04b6c7f18419579e90Thanks to the sponsors that helped make it happen, H2HC Cancun entrance is free on December 3rd, 2010.
548f02d8ec422aa20a8218ce3df321d8f8116d82f01e912ecba1597473a488f3Apple Directory Services suffers from a memory corruption vulnerability.
8481c28235d20fa0485ba7450f678bb97a628f8d197b96a6443f807b2cf74e70There are multiple JSON hijacking vulnerabilities in Spree e-commerce and as a result, an attacker can steal confidential information such as: product costs, price and quantities and users email, encrypted passwords, tokens, OpenID identifier, phone and address as well as orders count and values by period.
129fcbe0112190916cc1826e1e039917100d9c116fdf4c0f538a86a5ca357a91The cforms WordPress plugin suffers from a cross site scripting vulnerability. Version 11.5 is affected.
1e73fd19bd42e9d6d569ea3750b2bfb41338b03125cfcacefd4f28b8adc31117Adobe Shockwave Player suffers from multiple memory corruption vulnerabilities.
11361a286c7fb83e25af1b9c1340df96ba726fed468d57467a1833d1809da8d7Microsoft Internet Explorer suffers from an uninitialized memory corruption vulnerability.
38a3c922b972da71d7b40c535c1be74a12386f2bb68598ddcf92becd9732cf7fSynology Disk Station suffers from code execution, cross site request forgery and cross site scripting vulnerabilities.
f6e790ae4cf51446cb1ee256dd0149e093643e66c06d4c0a07d0b80084afa7f1Apple Preview.app is the default application used in Apple MacOS systems in order to visualize PDF files and does not properly parse PDF files, which leads to memory corruption when opening a malformed file with an invalid size on JBIG2 structure at offset 0x2C1 as in PoC Repro1.pdf or offset 0x2C5 as in PoC Repro2.pdf (both values trigger the same vulnerability).
53ce5615d54db8981ef51e6b34e7974571da0512912d9784b1b7d1be0444b0fdCheckpoint has released advisories detailing memory corruption vulnerabilities in Adobe Shockwave Player.
4829efd722cb176afb7773873dd385fa21fc3c8bb1ec6cd4af10f5f67b7a7e38rpc.ttdbserverd database parser heap overflow proof of concept exploit for Solaris x86.
4309d6ea600529f4cb32d290cdc671e242d95116c79a1748a4d0cb19b53446c1rpc.ttdbserverd database parser heap overflow proof of concept exploit for Solaris SPARC.
51a856a4f60ca9c109097e6ad7f77b45c5f9b8654533179d8c56df7d756afcc4There exists a vulnerability within the way Microsoft Word handles html linked objects, which leads to attacker controlled memory write and code execution.
388ef977d6d340327415d1bce4d0dccc5e9342fd13c3dfe272913b9f9aa483a9rpc.pcnfsd remote format string exploit for AIX versions 6.1.0 and below.
9608caf3a078bffe08324219439a68fb2fc7292b8e1b12c4e24838f89c4b78faTwo working proof of concept exploits for a stack overflow in Ghostscript. One works against PCBSD exploiting the vulnerability through CUPS. The other creates a .ps file that will trigger the vulnerability.
5ae9270895d3e789549d5022b11b8a33534564778a2cf307bd28c33902b28c71There exists a vulnerability within a function of the ToolTalk database server (rpc.ttdbserverd), which when properly exploited can lead to compromise of the vulnerable system. This vulnerability can be triggered by creating a fake database (.rec file) on the system and calling remote procedure 7 of ToolTalk database server pointing to this database, leading to a heap overflow.
d52652680c2282a365582b370699c7a5d7ea1fad7ca3f74abec30bf475ffe69drpc.pcnfsd suffers from a syslog related format string vulnerability. IBM AIX versions 6.1.0 and below, IRIX 6.5 and HP-UX versions 11.11, 11.23 and 11.31 are all affected.
78d8496b11da0be50a94a9121549a259d6a954ea9337ad9e3d7cd651348c21b2
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed