BisonWare BisonFTP Server version 3.5 is prone to an overflow condition. This Metasploit module exploits a buffer overflow vulnerability in said application.
>> CATEGORY: exploit
SAP Sybase Adaptive Server Enterprise suffers from an XXE injection vulnerability.
Neos CMS version 2.0.3 suffers from cross site scripting and remote shell upload vulnerabilities.
KNX management software ETS version 4.1.5 build 3246 suffers from a buffer overflow vulnerability that allows for remote code execution.
An independent vulnerability laboratory researcher discovered a remote sql injection web vulnerability in the official CIS Manager Content Management System.
The attached testcase crashes Window 7 32-bit with Special Pool enabled on win32k.sys due to a use-after-free condition. The bug appears to be a race condition between two threads and…
The Microsoft Windows kernel suffers from an NtUserScrollDC memory corruption vulnerability.
The Microsoft Windows kernel suffers from a use-after-free vulnerability with device contexts and NtGdiSelectBitmap.
The attached testcase crashes Windows 7 32-bit due to a pool buffer overflow in an ioctl handler. Enabling special on ndis.sys netio.sys and ntoskrnl helps to track down the issue,…
The 3D Vision service nvSCPAPISvr.exe installed as part of typical driver installations runs at Local System and has an insecure named pipe server. One of the commands in the server…