Edi Strosar

3 exploits Active since Jun 2007
CVE-2008-3430 EXPLOITDB text WORKING POC
CoVideoWindow.ocx 5.0.907.1 - Buffer Overflow
Buffer overflow in the CoVideoWindow.ocx ActiveX control 5.0.907.1 in Eyeball MessengerSDK, as used in products such as SiOL Komunikator 1.3, allows remote attackers to execute arbitrary code via a large argument supplied to the BGColor method. NOTE: this might only be a vulnerability in certain insecure configurations of Internet Explorer.
CVE-2007-4649 EXPLOITDB text WORKING POC
MicroWorld eScan <9.0.722.1 - Privilege Escalation
MicroWorld eScan Virus Control 9.0.722.1, Anti-Virus 9.0.722.1, and Internet Security 9.0.722.1 use weak permissions (Everyone:Full Control) for their installation directory trees, which allows local users to gain privileges by replacing application files, as demonstrated by traysser.exe.
CVE-2007-3249 EXPLOITDB text WORKING POC
Letterman Subscriber < 1.2.3 - Cross-Site Scripting via Itemid Parameter
Cross-site scripting (XSS) vulnerability in mod_lettermansubscribe.php in the Letterman Subscriber (mod_letterman) before 1.2.5 module for Joomla! allows remote attackers to inject arbitrary web script or HTML via the Itemid parameter.