This module exploits a vulnerability in isig.dll included in the IBM Tivoli Provisioning Manager application. The exploit is triggered when the RunAndUploadFile() method processes a long string argument resulting in a stack-based buffer overflow. This module runs a web server waiting for vulnerable clients (Internet Explorer) to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
A vulnerability when assign a malformed string to the ColComboList property, the module Vsflex8l does not properly check the size before copies the string into a static buffer. This module runs a web server waiting for vulnerable clients (Internet Explorer) to connect to it.
A vulnerability when assign a malformed string to the ColComboList property, the module Vsflex8l does not properly check the size before copies the string into a global buffer in the data section with a static size of 0x64. This module runs a web server waiting for vulnerable clients (Internet Explorer) to connect to it.
A vulnerability exists in C1sizer.ocx when handling the TabCaption buffer: C1sizer.ocx does not properly check the size before running lstrcatA and therefore will cause a buffer overflow. This module runs a web server waiting for vulnerable clients (Internet Explorer) to connect to it.
IBM Rational ClearQuest ActiveX control Cqole.dll is vulnerable to a buffer overflow, caused by a function prototype mismatch in the RegisterSchemaRepoFromFileByDbSet() function. This module runs a web server waiting for vulnerable clients (Internet Explorer 6 or 7) to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
This module exploits a buffer overflow in IBM Personal Communications which allows attackers to execute arbitrary code via a crafted .ws (aka workspace) file.
A buffer overflow in the ActiveX control qp2.cab in IBM Lotus Quickr for Domino allows remote attackers to execute arbitrary code via a long argument to the Attachment_Times method. This module runs a web server waiting for vulnerable clients (Internet Explorer 6 or 7) to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
A heap overflow in the ActiveX control qp2.cab in IBM Lotus Quickr for Domino allows remote attackers to execute arbitrary code via a crafted argument to the Attachment_Names method. This module runs a web server waiting for vulnerable clients (Internet Explorer 8) to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
This module runs a web server waiting for vulnerable clients to connect to it. When the client connects, it will try to install an agent by exploiting a stack based buffer overflow vulnerability in the IBM Lotus Notes e-mail client. The module will send an e-mail with an attached file. This file will deploy an agent when opened by the user.
IBM Lotus iNotes ActiveX control dwa85W.dll is vulnerable to a buffer overflow via a long argument passed to the Attachment_Times method. This module runs a web server waiting for vulnerable clients (Internet Explorer 6 or 7) to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.