Author : julien ahrens
Page 1 of 34 exploits
 |
Title | Author | Platform | Source | Description | Date |
|---|---|---|---|---|---|---|
|
ABBS Audio Media Player v3.1 (.lst) Buffer Overflow | Julien Ahrens | windows | exploit-db.com | !/usr/bin/python Exploit Title: ABBS Audio Media Player v3.1 (.lst) Buffer Overflow Version: v3.1 Date: 2013-05-04 Author: Julien Ahrens (@MrTuxracer) Homepage: http://www.inshell.net Software Link: http://abbs.qsnx.net/ Tested on: Windows XP S | May 4 |
|
|
Photodex ProShow Producer v5.0.3310 ScsiAccess - Local Privilege Escalation | Julien Ahrens | windows | exploit-db.com | Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Incorrect Default Permissions [CWE-276] Date found: 2013-03-18 Date published: 2013-03-19 CVSSv | March 22 |
|
|
Photodex ProShow Producer 5.0.3310 Privilege Escalation | Julien Ahrens | na | security.inshell.net | A local privilege escalation vulnerability has been identified in Photodex ProShow Producer version 5.0.3310. Insecure file permissions on the executable file "scsiaccess.exe", which is used by the application service "ScsiAccess" under the SYSTEM account, may allow a less privileged user to gain access to SYSTEM privileges. A local attacker or compromised process is able to replace the original application binary with a malicious application which will be executed by a victim user or after a ScsiAccess service restart. | March 20 |
|
|
HP Intelligent Management Center 5.1 E0202 Cross Site Scripting | Julien Ahrens | na | security.inshell.net | HP Intelligent Management Center version 5.1 E0202 suffers from a reflective cross site scripting vulnerability. | March 4 |
|
|
Photodex ProShow Producer 5.0.3297 Insecure Library Load | Julien Ahrens | na | security.inshell.net | Photodex ProShow Producer version 5.0.3297 suffers from an insecure library loading vulnerability. Proof of concept code included. | February 23 |
|
|
Photodex ProShow Producer 5.0.3297 Buffer Overflow | Julien Ahrens | na | security.inshell.net | Photodex ProShow Producer version 5.0.3297 suffers from a stack-based buffer overflow vulnerability. When opening a crafted transition file (.pxt) the application loads the "title" value from the pxt file. The application does not properly validate the length of the string loaded from the "title" value from the pxt file before using it in the further application context, which leads to a buffer overflow condition with possible code execution via overwritten SEH chains on Windows XP/7 32bit. Proof of concept code included. | February 17 |
|
|
Photodex ProShow Producer 5.0.3297 Memory Corruption | Julien Ahrens | na | security.inshell.net | A memory corruption vulnerability has been identified in Photodex ProShow Producer version 5.0.3297. When opening a crafted style file (.pxs), the application loads the "title" value from the pxs file. The ColorPickerProc function does not properly validate the length of the string loaded from the "title" value from the pxs file before using it in the further application context, which leads to a memory corruption condition with possible code execution depending on the version of the operating system. | February 15 |
|
|
Photodex ProShow Producer v5.0.3297 (.pxs) Memory Corruption Exploit | Julien Ahrens | windows | exploit-db.com | !/usr/bin/python Exploit Title: Photodex ProShow Producer v5.0.3297 (.pxs) Memory Corruption Vulnerability Version: <= 5.0.3297 Date: 2013-02-14 Author: Julien Ahrens (@MrTuxracer) Homepage: http://www.inshell.net Software Link: http://www.photodex.co | February 15 |
|
|
Photodex ProShow Producers 5.0.3297 Buffer Overflow | Julien Ahrens | na | security.inshell.net | Photodex ProShow Producer version 5.0.3297 suffers from a stack-based buffer overflow vulnerability. | January 26 |
|
|
Serva 2.0.0 HTTP Server Denial Of Service | Julien Ahrens | na | packetstormsecurity.org | The Serva version 2.0.0 HTTP server suffers from a GET remote denial of service vulnerability. | January 14 |
|
|
Serva 2.0.0 DNS Server Denial Of Service | Julien Ahrens | na | packetstormsecurity.org | The Serva version 2.0.0 DNS server suffers from a QueryName remote denial of service vulnerability. | January 14 |
|
|
FormatFactory 3.0.1 Buffer Overflow | Julien Ahrens | na | packetstormsecurity.org | FormatFactory versions 3.0.1 and below suffer from a profile file handling buffer overflow vulnerability. | November 20 |
|
|
Zoner Photo Studio 15 Build 3 Registry Value Parsing | Julien Ahrens | na | packetstormsecurity.org | Zoner Photo Studio version 15 build 3 (Zps.exe) registry value parsing local buffer overflow exploit. | November 12 |
|
|
Zoner Photo Studio 15 Buffer Overflow | Julien Ahrens | na | security.inshell.net | Zoner Photo Studio 15 builds 2 and 3 suffer from a stack-based buffer overflow vulnerability. Full proof of concept code included. | November 8 |
|
|
NCMedia Sound Editor Pro 7.5.1 Buffer Overflow | Julien Ahrens | na | security.inshell.net | A local buffer overflow vulnerability has been found on the NCMedia Sound Editor Pro version 7.5.1. The application saves the paths for all recently used files in a file called "MRUList201202.dat" in the directory %appdata%\Sound Editor Pro\. When clicking on the "File" menu item the application reads the contents of the file, but does not validate the length of the string loaded from the file before passing it to a buffer, which leads to a stack-based buffer overflow. | September 17 |