porkythepig

8 exploits Active since Jan 2007
CVE-2007-0352 EXPLOITDB c++ WORKING POC
Microsoft HTML Help Workshop - Stack-Based Buffer Overflow via Crafted .cnt File
Stack-based buffer overflow in Microsoft Help Workshop 4.03.0002 allows user-assisted remote attackers to execute arbitrary code via a crafted .cnt file composed of lines that begin with an integer followed by a space and a long string.
CVE-2007-6332 EXPLOITDB html WRITEUP
HPInfoDLL.HPInfo.1 - Registry Access
The HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center (hpinfocenter.exe) 1.0.1.1 in HP Quick Launch Button (QLBCTRL.exe, aka QLB) 6.3 and earlier, on Microsoft Windows before Vista allows remote attackers to create or modify arbitrary registry values via the arguments to the SetRegValue method.
CVE-2007-6331 EXPLOITDB html WRITEUP
HPInfoDLL.HPInfo.1 - Path Traversal
Absolute path traversal vulnerability in the HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center (hpinfocenter.exe) 1.0.1.1 in HP Quick Launch Button (QLBCTRL.exe, aka QLB) 6.3 and earlier allows remote attackers to execute arbitrary programs via the first argument to the LaunchApp method. NOTE: only a user-assisted attack is possible on Windows Vista.
CVE-2007-6333 EXPLOITDB html WRITEUP
HPInfoDLL.HPInfo.1 - Info Disclosure
The HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center (hpinfocenter.exe) 1.0.1.1 in HP Quick Launch Button (QLBCTRL.exe, aka QLB) 6.3 and earlier, allows remote attackers to read arbitrary registry values via the arguments to the GetRegValue method.
EIP-2026-117510 EXPLOITDB c++ WORKING POC
Microsoft Visual C++ - '.RC Resource Files' Local Buffer Overflow
CVE-2007-0427 EXPLOITDB c++ WORKING POC
Microsoft HTML Help Workshop - Stack-based Buffer Overflow via Long HLP Field in OPTIONS Section
Stack-based buffer overflow in Microsoft Help Workshop 4.03.0002 allows user-assisted remote attackers to execute arbitrary code via a help project (.HPJ) file with a long HLP field in the OPTIONS section.
CVE-2007-0427 EXPLOITDB c++ WORKING POC
Microsoft HTML Help Workshop - Stack-based Buffer Overflow via Long HLP Field in OPTIONS Section
Stack-based buffer overflow in Microsoft Help Workshop 4.03.0002 allows user-assisted remote attackers to execute arbitrary code via a help project (.HPJ) file with a long HLP field in the OPTIONS section.
CVE-2007-6506 EXPLOITDB text WORKING POC
HP Software Update <4.000.005.007 - RCE
The HPRulesEngine.ContentCollection.1 ActiveX Control in RulesEngine.dll for HP Software Update 4.000.005.007 and earlier, including 3.0.8.4, allows remote attackers to (1) overwrite and corrupt arbitrary files via arguments to the SaveToFile method, and possibly (2) access arbitrary files via the LoadDataFromFile method.