Gaurav Baruah

6 exploits Active since May 2009
CVE-2012-2176 METASPLOIT ruby WORKING POC
IBM Lotus Quickr 8.2 - Remote Code Execution via Long Argument to Attachment_Times or Import_Times Method
Multiple stack-based buffer overflows in a certain ActiveX control in qp2.cab in IBM Lotus Quickr 8.2 before 8.2.0.27-002a for Domino allow remote attackers to execute arbitrary code via a long argument to the (1) Attachment_Times or (2) Import_Times method.
CVE-2012-2175 METASPLOIT ruby WORKING POC
IBM Lotus iNotes 8.5.x - Buffer Overflow in Attachment_Times Method
Buffer overflow in the Attachment_Times method in a certain ActiveX control in dwa85W.dll in IBM Lotus iNotes 8.5.x before 8.5.3 FP2 allows remote attackers to execute arbitrary code via a long argument.
CVE-2012-2175 EXPLOITDB ruby WORKING POC
IBM Lotus iNotes 8.5.x - Buffer Overflow in Attachment_Times Method
Buffer overflow in the Attachment_Times method in a certain ActiveX control in dwa85W.dll in IBM Lotus iNotes 8.5.x before 8.5.3 FP2 allows remote attackers to execute arbitrary code via a long argument.
CVE-2012-2176 EXPLOITDB ruby WORKING POC
IBM Lotus Quickr 8.2 - Remote Code Execution via Long Argument to Attachment_Times or Import_Times Method
Multiple stack-based buffer overflows in a certain ActiveX control in qp2.cab in IBM Lotus Quickr 8.2 before 8.2.0.27-002a for Domino allow remote attackers to execute arbitrary code via a long argument to the (1) Attachment_Times or (2) Import_Times method.
CVE-2009-1586 EXPLOITDB perl WORKING POC
GrabIt < 1.7.2 Beta 3 - Stack-Based Buffer Overflow via NZB File DTD Reference
Stack-based buffer overflow in the NZB importer feature in GrabIt 1.7.2 Beta 3 and earlier allows remote attackers to execute arbitrary code via a crafted DTD reference in a DOCTYPE element in an NZB file.
CVE-2009-3115 EXPLOITDB perl WORKING POC
SolarWinds TFTP Server <= 9.2.0.111 - Denial of Service via Crafted OACK Request
SolarWinds TFTP Server 9.2.0.111 and earlier allows remote attackers to cause a denial of service (service stop) via a crafted Option Acknowledgement (OACK) request. NOTE: some of these details are obtained from third party information.