Nine:Situations:Group::surfista

7 exploits Active since Dec 2007
CVE-2009-0811 EXPLOITDB html WORKING POC
SopCast SopCore ActiveX <3.0.3.501 - RCE
Insecure method vulnerability in the SopCast SopCore ActiveX control in sopocx.ocx 3.0.3.501 allows remote attackers to execute arbitrary programs via an executable file name in the argument to the SetExternalPlayer method.
EIP-2026-118592 EXPLOITDB php WORKING POC
FTPDMIN 0.96 (Windows XP SP3) - 'RNFR' Remote Buffer Overflow
EIP-2026-118209 EXPLOITDB php WORKING POC
Zoom Player Pro 3.30 - '.m3u' Local Buffer Overflow (SEH)
CVE-2009-1516 EXPLOITDB php WORKING POC
Icewarp Merak Mail Server - Memory Corruption
Stack-based buffer overflow in the IceWarpServer.APIObject ActiveX control in api.dll in IceWarp Merak Mail Server 9.4.1 might allow context-dependent attackers to execute arbitrary code via a large value in the second argument to the Base64FileEncode method, as possibly demonstrated by a web application that accepts untrusted input for this method.
CVE-2008-2511 EXPLOITDB html WORKING POC
CA Internet Security Suite Plus 2008 - Path Traversal
Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create and overwrite arbitrary files via a .. (dot dot) in the argument to the SaveToFile method. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: some of these details are obtained from third party information.
EIP-2026-115019 EXPLOITDB html WORKING POC
CA Internet Security Suite - 'UmxEventCli.dll' ActiveX Control Arbitrary File Overwrite
CVE-2007-6533 EXPLOITDB php WORKING POC
Zoom Player <6.00 beta 2 - RCE
Buffer overflow in Zoom Player 6.00 beta 2 and earlier allows user-assisted remote attackers to execute arbitrary code via an HTTP link to a PLS file in a crafted ZPL file, which causes an overflow in Unicode handling when generating an error message.