Francis Provencher

111 exploits Active since Mar 2009
EIP-2026-115468 EXPLOITDB text SUSPICIOUS
IrfanView 4.33 - Format PlugIn '.TTF' File Parsing Stack Overflow
EIP-2026-115469 EXPLOITDB text WRITEUP
IrfanView 4.33 - Format PlugIn ECW Decompression Heap Overflow
CVE-2012-0278 EXPLOITDB text WRITEUP
IrfanView <4.3.4.0 - Buffer Overflow
Heap-based buffer overflow in the FlashPix PlugIn before 4.3.4.0 for IrfanView might allow remote attackers to execute arbitrary code via a .fpx file containing a crafted FlashPix image that is not properly handled during decompression.
CVE-2012-0025 EXPLOITDB text WRITEUP
Irfanview Flashpix Plugin - Resource Management Error
Double free vulnerability in the Free_All_Memory function in jpeg/dectile.c in libfpx before 1.3.1-1, as used in the FlashPix PlugIn 4.2.2.0 for IrfanView, allows remote attackers to cause a denial of service (crash) via a crafted FPX image.
EIP-2026-115517 EXPLOITDB text WRITEUP
Kingsoft Internet Security 9 - Denial of Service
CVE-2009-3038 EXPLOITDB text WORKING POC
IBM Lotus Notes Connector - Denial of Service
A certain ActiveX control in lnresobject.dll 7.1.1.119 in the Research In Motion (RIM) Lotus Notes connector for BlackBerry Desktop Manager 5.0.0.11 allows remote attackers to cause a denial of service (Internet Explorer crash) by referencing the control's CLSID in the classid attribute of an OBJECT element.
EIP-2026-115584 EXPLOITDB text WRITEUP
Malwarebytes AntiVirus 2.2.0 - Denial of Service (PoC)
EIP-2026-115751 EXPLOITDB text WRITEUP
Microsoft Office XP - Remote code Execution
EIP-2026-115132 EXPLOITDB text WORKING POC
DecisionTools SharpGrid - ActiveX Control Remote Code Execution
EIP-2026-115126 EXPLOITDB text WORKING POC
Cyme ChartFX Client Server - ActiveX Control Array Indexing
CVE-2016-1464 EXPLOITDB HIGH text WRITEUP
Cisco WebEx Meetings Player T29.10 - RCE
Cisco WebEx Meetings Player T29.10, when WRF file support is enabled, allows remote attackers to execute arbitrary code via a crafted file, aka Bug ID CSCva09375.
CVSS 7.8
CVE-2016-1415 EXPLOITDB MEDIUM text WRITEUP
Cisco WebEx Meetings Player T29.10 - DoS
Cisco WebEx Meetings Player T29.10, when WRF file support is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted file, aka Bug ID CSCuz80455.
CVSS 5.5
EIP-2026-115030 EXPLOITDB text WORKING POC
Cerberus FTP server 3.0.6 - Denial of Service
EIP-2026-115028 EXPLOITDB text WORKING POC
Cerberus FTP 3.0.1 - 'ALLO' Remote Overflow Denial of Service (Metasploit)
CVE-2011-5012 EXPLOITDB ruby WORKING POC
Attachmate Reflection - Memory Corruption
Heap-based buffer overflow in the Reflection FTP Client (rftpcom.dll 7.2.0.106 and possibly other versions), as used in Attachmate Reflection 2008, Reflection 2011 R1 before 15.3.2.569 and R1 SP1 before, Reflection 2011 R2 before 15.4.1.327, Reflection Windows Client 7.2 SP1 before hotfix 7.2.1186, and Reflection 14.1 SP1 before 14.1.1.206, allows remote FTP servers to execute arbitrary code via a long directory name in a response to a LIST command.
CVE-2009-3244 EXPLOITDB text WRITEUP
Adobe Shockwave Player < 11.5.1.601 - Memory Corruption
Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe Shockwave Player 11.5.1.601 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long PlayerVersion property value.
CVE-2012-4170 EXPLOITDB text WRITEUP
Adobe Photoshop Cs6 - Memory Corruption
Buffer overflow in Adobe Photoshop CS6 13.x before 13.0.1 allows remote attackers to execute arbitrary code via a crafted file.
CVE-2011-2131 EXPLOITDB text WRITEUP
Adobe Photoshop <12.1 - RCE
Adobe Photoshop 12.0 in Creative Suite 5 (CS5) and 12.1 in Creative Suite 5.1 (CS5.1) allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted GIF file.
CVE-2016-0952 EXPLOITDB CRITICAL text WRITEUP
Adobe Photoshop CC <15.2.4 & Bridge CC <6.2 - Memory Corruption
Adobe Photoshop CC 2014 before 15.2.4, Photoshop CC 2015 before 16.1.2, and Bridge CC before 6.2 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0951 and CVE-2016-0953.
CVSS 9.8
CVE-2016-0951 EXPLOITDB CRITICAL text WRITEUP
Adobe Photoshop CC <15.2.4 & Bridge CC <6.2 - Memory Corruption
Adobe Photoshop CC 2014 before 15.2.4, Photoshop CC 2015 before 16.1.2, and Bridge CC before 6.2 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0952 and CVE-2016-0953.
CVSS 9.8
CVE-2016-0953 EXPLOITDB CRITICAL text WRITEUP
Adobe Photoshop CC <15.2.4 & Bridge CC <6.2 - Memory Corruption
Adobe Photoshop CC 2014 before 15.2.4, Photoshop CC 2015 before 16.1.2, and Bridge CC before 6.2 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0951 and CVE-2016-0952.
CVSS 9.8
CVE-2012-2027 EXPLOITDB text WRITEUP
Adobe Photoshop < 12.0 - Resource Management Error
Use-after-free vulnerability in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a crafted TIFF (aka .TIF) file.
CVE-2015-7622 EXPLOITDB text WRITEUP
Adobe Reader/Acrobat <10.1.16/<11.0.13 - Memory Corruption
Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-6685, CVE-2015-6686, CVE-2015-6693, CVE-2015-6694, and CVE-2015-6695.
EIP-2026-114846 EXPLOITDB text WORKING POC
ACDSee PRO 5.1 - '.RLE' Image Processing Heap Overflow
EIP-2026-114845 EXPLOITDB text WRITEUP
ACDSee PRO 5.1 - '.PCT' Image Processing Heap Overflow