Elazar

33 exploits Active since Dec 2006
CVE-2007-4474 EXPLOITDB html WORKING POC
IBM Lotus Domino Web Access 6.x-7.x - Remote Code Execution via Long General_ServerName Property
Multiple stack-based buffer overflows in the IBM Lotus Domino Web Access ActiveX control, as provided by inotes6.dll, inotes6w.dll, dwa7.dll, and dwa7w.dll, in Domino 6.x and 7.x allow remote attackers to execute arbitrary code, as demonstrated by an overflow from a long General_ServerName property value when calling the InstallBrowserHelperDll function in the Upload Module in the dwa7.dwa7.1 control in dwa7w.dll 7.0.34.1.
CVE-2008-0437 EXPLOITDB html WORKING POC
HP Virtual Rooms - Buffer Overflow via ActiveX Control Property Manipulation
Multiple buffer overflows in the WebHPVCInstall.HPVirtualRooms14 ActiveX control in HPVirtualRooms14.dll 1.0.0.100, as used in the installation process for HP Virtual Rooms, allow remote attackers to execute arbitrary code via a long (1) AuthenticationURL, (2) PortalAPIURL, or (3) cabroot property value. NOTE: some of these details are obtained from third party information.
CVE-2008-0220 EXPLOITDB html WORKING POC
Gateway Weblaunch 1.0.0.1 - Stack-Based Buffer Overflow via DoWebLaunch Method
Multiple stack-based buffer overflows in the WebLaunch.WeblaunchCtl.1 (aka CWebLaunchCtl) ActiveX control in weblaunch.ocx 1.0.0.1 in Gateway Weblaunch allow remote attackers to execute arbitrary code via a long string in the (1) second or (2) fourth argument to the DoWebLaunch method. NOTE: some of these details are obtained from third party information.
CVE-2008-0221 EXPLOITDB html WORKING POC
Gateway Weblaunch 1.0.0.1 - Remote Code Execution via DoWebLaunch Method Path Traversal
Directory traversal vulnerability in the WebLaunch.WeblaunchCtl.1 (aka CWebLaunchCtl) ActiveX control in weblaunch.ocx 1.0.0.1 in Gateway Weblaunch allows remote attackers to execute arbitrary programs via a ..\ (dot dot backslash) in the second argument to the DoWebLaunch method. NOTE: some of these details are obtained from third party information.
CVE-2008-5711 EXPLOITDB html WORKING POC
Facebook PhotoUploader <5.0.14.0 - Buffer Overflow
Heap-based buffer overflow in the Facebook PhotoUploader ActiveX control 5.0.14.0 and earlier allows remote attackers to execute arbitrary code via a long FileMask property value.
EIP-2026-118289 EXPLOITDB html WORKING POC
Autodesk IDrop - ActiveX Remote Code Execution
CVE-2008-2992 EXPLOITDB HIGH text WORKING POC
Adobe Acrobat and Reader < 8.1.2 - Remote Code Execution via util.printf Format String
Stack-based buffer overflow in Adobe Acrobat and Reader 8.1.2 and earlier allows remote attackers to execute arbitrary code via a PDF file that calls the util.printf JavaScript function with a crafted format string argument, a related issue to CVE-2008-1104.
CVSS 7.8
CVE-2007-5941 EXPLOITDB html WORKING POC
Adobe Shockwave Player - Stack-based Buffer Overflow via ShockwaveVersion Method
Stack-based buffer overflow in the SWCtl.SWCtl ActiveX control in Adobe Shockwave allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long argument to the ShockwaveVersion method.