A Buffer Overflow exists within ERDAS ER Viewer due to a boundary error within the ERM_convert_to_correct_webpath() function in (ermapper_u.dll) when parsing file paths via a specially crafted ERS file.

This module exploits a heap overflow vulnerability in the Schneider Electric Accutech Manager Server by sending a malformed packet to the 2537/TCP port to execute arbitrary code or crash the server.

CuteZip is prone to a buffer-overflow when handling a specially crafted ZIP file.

This module exploits a vulnerability in Windows kernel (win32k.sys) when a crafted TTF font is open.

Use-after-free occurs when a CGenericElement object is freed, but a reference is kept live on the Document and reused during rendering.

This module exploits a remote code execution vulnerability in HP Intelligent Management Center by using the "mibFileUpload" servlet to upload an arbitrary .JSP file.

BigAnt IM Server is vulnerable to a buffer-overflow within the AntDS.exe component when handling an overly long username.

A Buffer overflow against the com_print_typeinfo function in PHP running on Windows allows remote attackers to execute arbitrary code via crafted arguments that trigger incorrect handling of COM object VARIANT types.

3S Codesys Gateway Server is prone to a directory traversal vulnerability that allows arbitrary file creation.

This module exploits a vulnerability in Windows kernel (win32k.sys) when a crafted TTF font is open.



WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs

or have limited functionality and may not have complete or accurate documentation.