The Java plugin for Internet Explorer (jp2iexp.dll) is affected by a stack-based buffer overflow when processing the docBase parameter of a Java applet. This can be exploited to execute arbitrary code with the privileges of the current user by enticing the victim to visit a malicious web page.



This update adds DEP bypassing capability to the exploit, and adds support for Windows 7, Windows Server 2008, and Internet Explorer 8.

This module exploits a vulnerability in Adobe Reader when parsing a .PDF file with a malformed Flash file embedded. This update fixes an issue in the agent connector.

This module exploits a buffer overflow vulnerability in Microsoft Internet Explorer when processing a special crafted html with CSS clip attribute.



This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation.

Foxit Reader is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied data. An attacker can exploit this issue by enticing a user to open a malicious PDF file containing an overly long title.

This module exploits a vulnerability in Adobe Reader when parsing a .PDF file with a malformed flash file embedded.



WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs

or have limited functionality and may not have complete or accurate documentation.

This module exploits a vulnerability in Adobe Shockwave triggered when processing a specially crafted .DIR file. This module runs a malicious web site on the CORE IMPACT Console and waits for an unsuspecting user to trigger the exploit by connecting to the web site.



This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation.

Microsoft Office Groove is prone to a vulnerability that may allow execution of imm.dll if this dll is located in the same folder than .GRP file.

SCADA Engine BACnet OPC Client is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data, when handling crafted .CSV files.

The Java plugin for Internet Explorer is affected by a stack-based buffer overflow when processing the docBase parameter of a Java applet. This can be exploited to execute arbitrary code with the privileges of the current user by enticing the victim to visit a malicious web page.



WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation.

Microsoft Office PowerPoint is prone to a vulnerability that may allow execution of pp4x322.dll if this dll is located in the same folder than .PPT file.