Francis Provencher

111 exploits Active since Mar 2009
EIP-2026-114844 EXPLOITDB text WRITEUP
ACDSee PRO 5.1 - '.gif' Image Processing Heap Overflow
EIP-2026-114843 EXPLOITDB text WRITEUP
ACDSee PRO 5.1 - '.CUR' Image Processing Heap Overflow
EIP-2026-115198 EXPLOITDB html WORKING POC
EasyMail Objects 6.0.2.0 - 'emimap4.dll' ActiveX Control Remote Code Execution
EIP-2026-115199 EXPLOITDB text WORKING POC
EasyMail Quicksoft 6.0.2.0 - ActiveX Remote Code Execution (PoC)
CVE-2008-6447 EXPLOITDB text WORKING POC
Quiksoft Easymail Mailstore Object - Memory Corruption
Buffer overflow in emmailstore.dll 6.5.0.3 in the QuikSoft EasyMail MailStore ActiveX control allows remote attackers to execute arbitrary code via a long first argument to the CreateStore method.
CVE-2009-3837 EXPLOITDB text WORKING POC
Eureka-email Eureka Email - Memory Corruption
Stack-based buffer overflow in Eureka Email 2.2q allows remote POP3 servers to execute arbitrary code via a long error message.
CVE-2015-2790 EXPLOITDB text WRITEUP
Foxitsoftware Enterprise Reader - Improper Input Validation
Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted (1) Ubyte Size in a DataSubBlock structure or (2) LZWMinimumCodeSize in a GIF image.
CVE-2015-2790 EXPLOITDB text WRITEUP
Foxitsoftware Enterprise Reader - Improper Input Validation
Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted (1) Ubyte Size in a DataSubBlock structure or (2) LZWMinimumCodeSize in a GIF image.
EIP-2026-115285 EXPLOITDB text WRITEUP
Foxit Reader 7.2.8.1124 - '.PDF' Parsing Memory Corruption
EIP-2026-114433 EXPLOITDB html WORKING POC
XiVO - Cross-Site Request Forgery
EIP-2026-104526 EXPLOITDB html WORKING POC
Novell Client 4.91.5 - ActiveX Control 'nwsetup.dll' Remote Denial of Service (2)
EIP-2026-104525 EXPLOITDB html WORKING POC
Novell Client 4.91.5 - ActiveX Control 'nwsetup.dll' Remote Denial of Service (1)
CVE-2011-4191 EXPLOITDB text WORKING POC
Novell NetWare 6.5 SP8 - Buffer Overflow
Stack-based buffer overflow in the xdrDecodeString function in XNFS.NLM in Novell NetWare 6.5 SP8 allows remote attackers to execute arbitrary code or cause a denial of service (abend or NFS outage) via long packets.
EIP-2026-104530 EXPLOITDB text WORKING POC
Novell Netware 6.5 - OpenSSH Remote Stack Overflow
CVE-2010-4715 EXPLOITDB python WORKING POC
Novell GroupWise <8.02HP - Path Traversal
Multiple directory traversal vulnerabilities in the (1) WebAccess Agent and (2) Document Viewer Agent components in Novell GroupWise before 8.02HP allow remote attackers to read arbitrary files via unspecified vectors. NOTE: some of these details are obtained from third party information.
CVE-2010-4228 EXPLOITDB python WORKING POC
Novell Netware - Memory Corruption
Stack-based buffer overflow in NWFTPD.NLM before 5.10.02 in the FTP server in Novell NetWare allows remote authenticated users to execute arbitrary code or cause a denial of service (abend) via a long DELE command, a different vulnerability than CVE-2010-0625.4.
CVE-2010-4227 EXPLOITDB ruby WORKING POC
Novell Netware < 6.5 - Memory Corruption
The xdrDecodeString function in XNFS.NLM in Novell Netware 6.5 before SP8 allows remote attackers to cause a denial of service (abend) or execute arbitrary code via a crafted, signed value in a NFS RPC request to port UDP 1234, leading to a stack-based buffer overflow.
CVE-2011-4191 EXPLOITDB text WORKING POC
Novell NetWare 6.5 SP8 - Buffer Overflow
Stack-based buffer overflow in the xdrDecodeString function in XNFS.NLM in Novell NetWare 6.5 SP8 allows remote attackers to execute arbitrary code or cause a denial of service (abend or NFS outage) via long packets.
CVE-2011-4191 EXPLOITDB text WORKING POC
Novell NetWare 6.5 SP8 - Buffer Overflow
Stack-based buffer overflow in the xdrDecodeString function in XNFS.NLM in Novell NetWare 6.5 SP8 allows remote attackers to execute arbitrary code or cause a denial of service (abend or NFS outage) via long packets.
CVE-2016-1848 EXPLOITDB HIGH text WRITEUP
Apple OS X <10.11.5 - Memory Corruption
QuickTime in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file.
CVSS 7.8
EIP-2026-104539 EXPLOITDB text WORKING POC
Novell Edirectory 8.8 SP5 - Cross-Site Scripting
EIP-2026-104538 EXPLOITDB text WORKING POC
Novell eDirectory 8.8 SP5 - 'dconserv.dlm' Cross-Site Scripting
CVE-2009-3244 EXPLOITDB text WORKING POC
Adobe Shockwave Player < 11.5.1.601 - Memory Corruption
Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe Shockwave Player 11.5.1.601 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long PlayerVersion property value.
CVE-2010-0317 EXPLOITDB perl WORKING POC
Novell Netware - Resource Management Error
Novell Netware 6.5 SP8 allows remote attackers to cause a denial of service (NULL pointer dereference, memory consumption, ABEND, and crash) via a large number of malformed or AFP requests that are not properly handled by (1) the CIFS functionality in CIFS.nlm Semantic Agent (Build 163 MP) 3.27 or (2) the AFP functionality in AFPTCP.nlm Build 163 SP 3.27. NOTE: some of these details are obtained from third party information.
CVE-2016-1769 EXPLOITDB HIGH text WRITEUP
Apple OS X <10.11.4 - Memory Corruption
QuickTime in Apple OS X before 10.11.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Photoshop file.
CVSS 7.8