VULNERABILITY ANALYSIS

About Me

KateM

View my complete profile

Tuesday, July 5, 2011

CVE-2009-3129 - International Military Attache Cooperation.xls

Description

Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows remote attackers to execute arbitrary code via a spreadsheet with a FEATHEADER record containing an invalid cbHdrData size element that affects a pointer offset, aka "Excel Featheader Record Memory Corruption Vulnerability."

Posted by KateM at 9:23 AM 0 comments

Email This BlogThis!Share to X Share to Facebook Share to Pinterest

Wednesday, June 29, 2011

CVE-2011-2110

Description

Adobe Flash Player before 10.3.181.26 on Windows, Mac OS X, Linux, and Solaris, and 10.3.185.23 and earlier on Android, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in June 2011.

Posted by KateM at 11:43 AM 0 comments

Email This BlogThis!Share to X Share to Facebook Share to Pinterest

CVE-2010-3333 - 1126M051.doc

Description
Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2010, Office 2004 and 2008 for Mac, Office for Mac 2011, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via crafted RTF data, aka "RTF Stack Buffer Overflow Vulnerability."

From *****@bk.ru Thu Jun 23 17:04:54 2011
Return-path: <*****@bk.ru>
Received: from [178.32.238.215] (port=55688 helo=[178.32.238.215])
by mx62.mail.ru with esmtp
for ****@mail.ru; Thu, 23 Jun 2011 17:04:52 +0400
Received-SPF: softfail (mx62.mail.ru: transitioning domain of bk.ru does not designate 178.32.238.215 as permitted sender)
client-ip=178.32.238.215; envelope-from=*****@bk.ru; helo=[178.32.238.215];
Message-Id: <1308834292.2974807702@mx62.mail.ru>
Date: Thu Jun 23 17:04:52 2011 (MSK)
From: =?utf-8?B?QmF0eXM=?= <*****@bk.ru>
To: *****@mail.ru

Posted by KateM at 12:58 AM 0 comments

Email This BlogThis!Share to X Share to Facebook Share to Pinterest

Location: Нор — Па-де-Кале, Франция

Tuesday, June 28, 2011

cve-2006-2492-world-cup-2010

Description:

Buffer overflow in Microsoft Word in Office 2000 SP3, Office XP SP3, Office 2003 Sp1 and SP2, and Microsoft Works Suites through 2006, allows user-assisted attackers to execute arbitrary code via a malformed object pointer, as originally reported by ISC on 20060519 for a zero-day attack.

File consists of four parts: shellcode_one, shellcode_two, exe_file and new_doc_file, which opens when an exception is throw...

Posted by KateM at 1:42 AM 0 comments

Email This BlogThis!Share to X Share to Facebook Share to Pinterest

Newer Posts Home

Subscribe to: Posts (Atom)

FROM ME

My Blogs is a collection of the malware samples, threats and analyses. If you have new exploit or you know about new vulnerabilities, please contact with me (I can buy 0-Days exploit or other exploit which to be interesting for me).

Total Pageviews

Blog Archive

▼ 2011 (4)
- ▼ July (1)
  - CVE-2009-3129 - International Military Attache Coo...
- ► June (3)

Picture Window theme. Powered by Blogger.