Jose Miguel Esparza

4 exploits Active since Sep 2007
CVE-2010-1797 EXPLOITDB python WORKING POC
iPhone OS - Remote Code Execution via Crafted CFF Opcodes in Embedded Fonts
Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in the CFF Type2 CharStrings interpreter in cff/cffgload.c in FreeType before 2.4.2, as used in Apple iOS before 4.0.2 on the iPhone and iPod touch and before 3.2.2 on the iPad, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted CFF opcodes in embedded fonts in a PDF document, as demonstrated by JailbreakMe. NOTE: some of these details are obtained from third party information.
EIP-2026-116584 EXPLOITDB python WORKING POC
WzdFTPD 8.0 - Remote Denial of Service
CVE-2007-4924 EXPLOITDB python WORKING POC
Ekiga < 2.0.10 and OpenH323 < 2.2.4 - Denial of Service via Invalid SIP Content-Length Header
The Open Phone Abstraction Library (opal), as used by (1) Ekiga before 2.0.10 and (2) OpenH323 before 2.2.4, allows remote attackers to cause a denial of service (crash) via an invalid Content-Length header field in Session Initiation Protocol (SIP) packets, which causes a \0 byte to be written to an "attacker-controlled address."
CVE-2007-4897 EXPLOITDB python WORKING POC
Ekiga 2.0.5 - Denial of Service via Long Argument to PString::vsprintf
pwlib, as used by Ekiga 2.0.5 and possibly other products, allows remote attackers to cause a denial of service (application crash) via a long argument to the PString::vsprintf function, related to a "memory management flaw". NOTE: this issue was originally reported as being in the SIPURL::GetHostAddress function in Ekiga (formerly GnomeMeeting).