Advisories | EvilCode

Software CMS Cameron McKenna 2013 Allow Execute Evil Remote Code

April 26, 2013 admevil No comments

Author(s): Ivan Sanchez & Raul Diaz(Dshellnoi Unix)
Contact Us: security@evilcode.com.ar
Version: CMS 2013
Date: 26/04/2013
Product: CMS Cameron McKenna
Vendor: Notified twice

Sites affected

——————–

http://www.cms-cmck.com

http://www.cms-bfl.com/

http://cms-site/Berlin-Germany

http://www.cms-db.com/Antwerp-Belgium

http://www.cms-dsb.com/Amsterdam-Netherlands

http://www.cms-bfl.com/Casablanca-en

http://cms-site.com/Frankfurt-Germany-LS

http://www.cms-rpa.com//en-Lisbon-Portugal

http://www.cms-rrh.com/Ljubljana-Slovenia

http://cms-site.ru/Moscow-Russia

http://www.cms-asl.com/Madrid-Spain

http://www.cms-aacs.com/Milan-Italy

http://www.cms-veh.com

http://cms-site.cn/Shanghai-China-en

Example:

“><img src=”image.gif” onerror=”alert(1)”>

Software Gestión GESIO XSS Allow Execute Evil Remote Code

April 19, 2013 admevil No comments

Author(s): Ivan Sanchez & Raul Diaz
Contact Us: security@evilcode.com.ar
Version: GESIO CM Tienda Online
Date: 18/04/2013
Product: GESIO CM
Vendor: Notified

The POC will be posted in short time.

GOOGLE DORKS:
allintext:POLÍTICA DE PROTECCIÓN DE DATOS -Software Gestión GESIO®
inurl:cms/site_0003

Microsoft Windows -Tipskins.dll Malformed HTML Null Pointer Dereference Vulnerability

September 13, 2011 admevil No comments

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: Microsoft Windows Tipskins.dll
Date: 13/10/2011
Product: Microsoft Windows Vista/Seven Tipskins.dll
Vendor: Notified
Internal Id: MSRC 11642

We have discovered that the product “Microsoft Windows Vista/Seven Tipskins.dll” presents a big hole regarding a Remote NULL Pointer Dereference , crashing the application when you run special code .

Microsoft Visual Studio 2010 – Vsabv10dt.dll Malformed HTML Null Pointer Dereference Vulnerability

September 13, 2011 admevil No comments

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: Microsoft Visual Studio 2010 / Vsabv10dt.dll
Date: 13/10/2011
Product: Microsoft Microsoft Visual Studio 2010/ VVsabv10dt.dll
Vendor: Notified
Internal Id: MSRC 11644

We have discovered that the product “Microsoft Visual Studio 2010 – Vsabv10dt.dll” presents a big hole regarding a Remote NULL Pointer Dereference , crashing the application when you run special code .

Microsoft Office 2010 BCSAutogen.dll – Remote Unhandled exception Vulnerability

September 10, 2011 admevil No comments

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: Microsoft Office 2010 Component BCSAutogen.dll
Date: 10/10/2011
Product: Microsoft Office 2010 Component BCSAutogen.dll
Vendor: Notified
Internal Id: MSRC 11641

We have discovered that the product “Microsoft Office 14 Component BCSAutogen.dll” presents a big hole regarding an unhandled exception rather than a memory corruption, crashing the application when you run special code .

Quick Time Player 7.6.9 – ActiveX Control Buffer Overflow Vulnerability

September 06, 2011 admevil No comments

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: QuickTimePlayer_7.6.9
Date: 06/09/2011
Product:QuickTimePlayer_7.6.9
Vendor Notified: 2 months ago “Apple Inc / bugreport.apple.com ”
Problem ID: 9753778

We have discovered that the product “QuickTimePlayer_7.6.9″ presents a big hole regarding an ActiveX Control Buffer Overflow, crashing the application when you run special code.

VMware Exe’s Files Affected – Access Violation Memory Vulnerability

September 05, 2011 admevil No comments

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: VMware Virtual Image Editing Framework 4.0.0 build-111735
Date: 05/09/2011
Product:VMware Virtual Image Editing Framework 4.0.0 build-111735
Vendor Notified: VMware Inc.

We have discovered that the product “VMware Virtual Image Editing Framework 4.0.0 build-111735″ presents a big hole regarding an Access Violation Code , crashing the application when you run special code.

VMware Virtual Image Editing Framework – DLL Untrusted Library Loading Execution Code

September 05, 2011 admevil No comments

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: VMware Virtual Image Editing Framework 4.0.0 build-111735
Date: 05/09/2011
Product: VMware Virtual Image Editing Framework
Vendor Notified: VMware Inc.

We have discovered that the product “VMware Virtual Image Editing Framework 4.0.0 build-111735″ presents a big hole as regard to DLL hijacking;The basis of this exploit is the way in which Python works and how it loads DLL files used by many applications, if an application calls a DLL without specifying an absolute path Windows will conduct a search for the DLL file in various set locations.

Microsoft Visual Studio 2010 Vswizard.dll Malformed HTML Null Pointer Dereference Vulnerability

September 01, 2011 admevil No comments

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: Microsoft Visual Studio 2010
Date: 01/10/2011
Product: Microsoft Visual Studio 2010
Vendor: Notified
Internal Id: MSRC 11643

We have discovered that the product “Microsoft Visual Studio 2010″ presents a big hole regarding a Remote NULL Pointer Dereference , crashing the application when you run special code .

Python 3.2 – DLL Untrusted Library Loading Execution Code

August 28, 2011 admevil No comments

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: Python 3.1 3.2 Pythonw
Date: 28/08/2011
Product: Python
Vendor: Notified

We have discovered that the product “Python 3.1 / 3.2″ presents a big hole as regard to DLL hijacking;The basis of this exploit is the way in which Python works and how it loads DLL files used by many applications, if an application calls a DLL without specifying an absolute path Windows will conduct a search for the DLL file in various set locations.

Links

Trend

CORELABS IT

Category Archives: Advisories

Software CMS Cameron McKenna 2013 Allow Execute Evil Remote Code

Software Gestión GESIO XSS Allow Execute Evil Remote Code

Microsoft Windows -Tipskins.dll Malformed HTML Null Pointer Dereference Vulnerability

Microsoft Visual Studio 2010 – Vsabv10dt.dll Malformed HTML Null Pointer Dereference Vulnerability

Microsoft Office 2010 BCSAutogen.dll – Remote Unhandled exception Vulnerability

Quick Time Player 7.6.9 – ActiveX Control Buffer Overflow Vulnerability

VMware Exe’s Files Affected – Access Violation Memory Vulnerability

VMware Virtual Image Editing Framework – DLL Untrusted Library Loading Execution Code

Microsoft Visual Studio 2010 Vswizard.dll Malformed HTML Null Pointer Dereference Vulnerability

Python 3.2 – DLL Untrusted Library Loading Execution Code

Search

Software CMS Cameron McKenna 2013 Allow Execute Evil Remote Code

Software Gestión GESIO XSS Allow Execute Evil Remote Code

Microsoft Windows -Tipskins.dll Malformed HTML Null Pointer Dereference Vulnerability

Microsoft Visual Studio 2010 – Vsabv10dt.dll Malformed HTML Null Pointer Dereference Vulnerability

Microsoft Office 2010 BCSAutogen.dll – Remote Unhandled exception Vulnerability

Quick Time Player 7.6.9 – ActiveX Control Buffer Overflow Vulnerability

VMware Exe’s Files Affected – Access Violation Memory Vulnerability

VMware Virtual Image Editing Framework – DLL Untrusted Library Loading Execution Code

Recent Comments

SECURITY BULLETINS

SECURITY ADVISORIES

Share

Links

Category Archives: Advisories

Search

Tags

Recent Comments