metacom

53 exploits Active since Jun 2007
CVE-2025-34106 EXPLOITDB HIGH ruby WORKING POC
PDF Shaper 3.5-3.6 - Buffer Overflow via Convert to Image Feature
A buffer overflow vulnerability exists in PDF Shaper versions 3.5 and 3.6 when converting a crafted PDF file to an image using the 'Convert PDF to Image' functionality. An attacker can exploit this vulnerability by tricking a user into opening a maliciously crafted PDF file, leading to arbitrary code execution under the context of the user. This vulnerability has been verified on Windows XP, 7, 8, and 10 platforms using the PDFTools.exe component.
CVE-2025-34123 EXPLOITDB HIGH python WORKING POC
VideoCharge Studio 2.12.3.685 - Buffer Overflow
A stack-based buffer overflow vulnerability exists in VideoCharge Studio 2.12.3.685 when processing a specially crafted .VSC configuration file. The issue occurs due to improper handling of user-supplied data in the XML 'Name' attribute, leading to an SEH overwrite condition. An attacker can exploit this vulnerability by convincing a user to open a malicious .VSC file, resulting in arbitrary code execution under the context of the user.
CVE-2014-125114 EXPLOITDB HIGH ruby WORKING POC
i-Ftp 2.20 - Stack-based Buffer Overflow via Schedule.xml Time Attribute
A stack-based buffer overflow vulnerability exists in i-Ftp version 2.20 due to improper handling of the Time attribute within Schedule.xml. By placing a specially crafted Schedule.xml file in the i-Ftp application directory, a remote attacker can trigger a buffer overflow during scheduled download parsing, potentially leading to arbitrary code execution or a crash.
CVE-2014-125114 EXPLOITDB HIGH python WORKING POC
i-Ftp 2.20 - Stack-based Buffer Overflow via Schedule.xml Time Attribute
A stack-based buffer overflow vulnerability exists in i-Ftp version 2.20 due to improper handling of the Time attribute within Schedule.xml. By placing a specially crafted Schedule.xml file in the i-Ftp application directory, a remote attacker can trigger a buffer overflow during scheduled download parsing, potentially leading to arbitrary code execution or a crash.
CVE-2013-10036 EXPLOITDB HIGH python WORKING POC
Beetel Connection Manager PCW_BTLINDV1.0.0B04 - Buffer Overflow
A stack-based buffer overflow vulnerability exists in Beetel Connection Manager version PCW_BTLINDV1.0.0B04 when parsing the UserName parameter in the NetConfig.ini configuration file. A crafted .ini file containing an overly long UserName value can overwrite the Structured Exception Handler (SEH), leading to arbitrary code execution when the application processes the file.
CVE-2013-10036 METASPLOIT HIGH ruby WORKING POC
Beetel Connection Manager PCW_BTLINDV1.0.0B04 - Buffer Overflow
A stack-based buffer overflow vulnerability exists in Beetel Connection Manager version PCW_BTLINDV1.0.0B04 when parsing the UserName parameter in the NetConfig.ini configuration file. A crafted .ini file containing an overly long UserName value can overwrite the Structured Exception Handler (SEH), leading to arbitrary code execution when the application processes the file.
CVE-2017-8870 METASPLOIT HIGH ruby WORKING POC
AudioCoder 0.8.46 - Buffer Overflow via Crafted .m3u File
Buffer overflow in AudioCoder 0.8.46 allows remote attackers to execute arbitrary code via a crafted .m3u file.
CVSS 7.8
CVE-2013-6935 METASPLOIT ruby WORKING POC
VideoCharge Watermark Master 2.2.23 - Remote Code Execution via Long SourcePath in WCF File
Buffer overflow in VideoCharge Software Watermark Master 2.2.23 allows remote attackers to execute arbitrary code via a long string in the SourcePath value in a .wcf file.
CVE-2013-7409 METASPLOIT ruby WORKING POC
ALLPlayer 5.6.2-5.8.1 - Buffer Overflow via .m3u Playlist File
Buffer overflow in ALLPlayer 5.6.2 through 5.8.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a .m3u (playlist) file.
CVE-2017-8869 METASPLOIT HIGH ruby WORKING POC
MediaCoder 0.8.48.5888 - Remote Code Execution via Crafted .m3u File
Buffer overflow in MediaCoder 0.8.48.5888 allows remote attackers to execute arbitrary code via a crafted .m3u file.
CVSS 7.8
CVE-2014-125114 METASPLOIT HIGH ruby WORKING POC
i-Ftp 2.20 - Stack-based Buffer Overflow via Schedule.xml Time Attribute
A stack-based buffer overflow vulnerability exists in i-Ftp version 2.20 due to improper handling of the Time attribute within Schedule.xml. By placing a specially crafted Schedule.xml file in the i-Ftp application directory, a remote attacker can trigger a buffer overflow during scheduled download parsing, potentially leading to arbitrary code execution or a crash.
CVE-2020-7374 METASPLOIT MEDIUM ruby WORKING POC
Documalis Free PDF Editor 5.7.2.26 and Free PDF Scanner 5.7.2.122 - Remote Code Execution via Malicious JPEG in PDF
Documalis Free PDF Editor version 5.7.2.26 and Documalis Free PDF Scanner version 5.7.2.122 do not appropriately validate the contents of JPEG images contained within a PDF. Attackers can exploit this vulnerability to trigger a buffer overflow on the stack and gain remote code execution as the user running the Documalis Free PDF Editor or Documalis Free PDF Scanner software.
CVSS 5.3
CVE-2025-34106 METASPLOIT HIGH ruby WORKING POC
PDF Shaper 3.5-3.6 - Buffer Overflow via Convert to Image Feature
A buffer overflow vulnerability exists in PDF Shaper versions 3.5 and 3.6 when converting a crafted PDF file to an image using the 'Convert PDF to Image' functionality. An attacker can exploit this vulnerability by tricking a user into opening a maliciously crafted PDF file, leading to arbitrary code execution under the context of the user. This vulnerability has been verified on Windows XP, 7, 8, and 10 platforms using the PDFTools.exe component.
CVE-2025-34123 METASPLOIT HIGH ruby WORKING POC
VideoCharge Studio 2.12.3.685 - Buffer Overflow
A stack-based buffer overflow vulnerability exists in VideoCharge Studio 2.12.3.685 when processing a specially crafted .VSC configuration file. The issue occurs due to improper handling of user-supplied data in the XML 'Name' attribute, leading to an SEH overwrite condition. An attacker can exploit this vulnerability by convincing a user to open a malicious .VSC file, resulting in arbitrary code execution under the context of the user.
EIP-2026-119268 EXPLOITDB python WORKING POC
WebDrive 12.2 (Build #4172) - Remote Buffer Overflow
CVE-2007-3071 EXPLOITDB html WORKING POC
eSellerate SDK 3.6.5.0 - Buffer Overflow via GetWebStoreURL ActiveX Control
Buffer overflow in the GetWebStoreURL function in a certain ActiveX control in eSellerateControl365.dll 3.6.5.0 in eSellerate SDK allows user-assisted remote attackers to execute arbitrary code via a long first argument.
EIP-2026-119442 EXPLOITDB html WORKING POC
Tango FTP 1.0 (Build 136) - Activex HeapSpray
CVE-2012-2271 EXPLOITDB text WORKING POC
SkinCrafter 3.0 - Buffer Overflow via InitLicenKeys reg_name Argument
Buffer overflow in the InitLicenKeys function in a certain ActiveX control in SkinCrafter3_vs2005.dll in SkinCrafter 3.0 allows remote attackers to execute arbitrary code via a long string in the first argument (aka the reg_name argument).
EIP-2026-118060 EXPLOITDB ruby WORKING POC
VideoSpirit Pro 1.90 - Local Buffer Overflow (SEH)
EIP-2026-118266 EXPLOITDB html WORKING POC
AoA MP4 Converter 4.1.2 - ActiveX
EIP-2026-118059 EXPLOITDB ruby WORKING POC
VideoSpirit Lite 1.77 - Local Buffer Overflow (SEH)
EIP-2026-118264 EXPLOITDB html WORKING POC
AoA Audio Extractor Basic 2.3.7 - ActiveX
EIP-2026-118265 EXPLOITDB html WORKING POC
AoA DVD Creator 2.6.2 - ActiveX
EIP-2026-117992 EXPLOITDB python WORKING POC
T-Mobile Internet Manager - Local Buffer Overflow (SEH)
EIP-2026-118056 EXPLOITDB ruby WORKING POC
VideoCharge Studio - Local Buffer Overflow (SEH) (Metasploit)