The vulnerability is a buffer overflow caused due to an error related to the ComboList property within the vsflex8l ActiveX Control.
Publish-It is prone to a buffer overflow when handling specially crafted PUI files.
This module exploits a vulnerability in Adobe Flash Player triggered when processing a SWF file and this load a crafted dll module. This module runs a malicious web site on the CORE IMPACT Console and waits for an unsuspecting user to trigger the exploit by connecting to the web site.
This update improves the reliability of the exploit.
This update improves the reliability of the exploit.
By properly setting the ProjectURL property, it is possible for an attacker to download an arbitrary dll file from a remote location and run the code in the dll in the context of the target process.
Use after free in Internet Explorer when handling a CDisplayPointer object via the use of a "onpropertychange" event handler. Successful control of the freed memory may leverage arbitrary code execution under the context of the user.
This module exploits a buffer overflow vulnerability in Adobe Flash Player in the flash.Display.Shader class when setting a Pixel Bender Filte as the Shader bytecode.
This vulnerability has been found exploited in-the-wild during April 2014.
WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation.
This vulnerability has been found exploited in-the-wild during April 2014.
WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation.
This module exploits a type confusion vulnerability in Adobe Flash Player.
This vulnerability has been found exploited in-the-wild during December 2013.
This update improves module documentation, exploit code and adds more vulnerable Adobe Flash Player versions.
This vulnerability has been found exploited in-the-wild during December 2013.
This update improves module documentation, exploit code and adds more vulnerable Adobe Flash Player versions.
This module exploits an integer underflow vulnerability in Adobe Flash Player. This vulnerability was exploited in 0day attacks in February 2014.
WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation.
WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation.
This module exploits a type confusion vulnerability in Adobe Flash Player.
This vulnerability has been found exploited in-the-wild during December 2013.
WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation.
This vulnerability has been found exploited in-the-wild during December 2013.
WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation.
This module exploits a vulnerability in Microsoft Word 2010 when parsing a specially crafted RTF file.
This vulnerability was found being exploited in-the-wild during March 2014.
This vulnerability was found being exploited in-the-wild during March 2014.