This module abuses a vulnerability in phpMyAdmin 3.5.x before 3.5.8 and 4.x before 4.0.0-rc3 that allows remote authenticated users to execute arbitrary code via a /e\x00 sequence, which is not properly handled before making a preg_replace function call within the "Replace table prefix" feature.

In module wpsio, a BSTR string stored in the file is copied to the stack buffer, without checking its length, leading to a stack buffer overflow.

A flaw exists within Device Manager (rrobotd.exe), which listens by default on port 3000, when parsing the 0x41 command.

A Buffer Overflow exists within ERDAS ER Viewer due to a boundary error within the ERM_convert_to_correct_webpath() function in (ermapper_u.dll) when parsing file paths via a specially crafted ERS file.

This module exploits a heap overflow vulnerability in the Schneider Electric Accutech Manager Server by sending a malformed packet to the 2537/TCP port to execute arbitrary code or crash the server.

CuteZip is prone to a buffer-overflow when handling a specially crafted ZIP file.

Use-after-free occurs when a CGenericElement object is freed, but a reference is kept live on the Document and reused during rendering.

This module exploits a remote code execution vulnerability in HP Intelligent Management Center by using the "mibFileUpload" servlet to upload an arbitrary .JSP file.

BigAnt IM Server is vulnerable to a buffer-overflow within the AntDS.exe component when handling an overly long username.

This module exploits a remote buffer overflow in Firebird SQL by sending a malformed packet to the 3050/TCP port.