Nuance Communications, Inc. offer on their german web page
http://www.nuance.de/kostenlose-ocr-software-test/download.asp
a trial version of OmniPage 16 Professional for download.
The installer OPPro16_TD.exe (a self-extracting RAR archive) was
published Tue, 30 Jun 2009 14:38:28 GMT (according
Assuming the server is running as admin the overflow can actually be used to
execute arbitrary code. In our example we spawn an instance of cmd.exe and
create a new admin, Billyboy, with a password of woot.
This has been tested with Windows XP SP2.
+ Start Exploit +
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-
Debian Security Advisory DSA-2064-1 secur...@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
June 27, 2010
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-
Debian Security Advisory DSA-2065-1 secur...@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
June 27, 2010
Security Advisory
IS-2010-004 - D-Link DAP-1160 Unauthenticated Remote Configuration
Advisory Information
Published:
2010-06-28
Updated:
2010-06-28
Manufacturer: D-Link
Model: DAP-1160
Firmware version: 1.20b06
1.30b10
1.31b01
Vulnerability Details
Folks,
We (Andre Oppermann and me) have co-authored a new IETF Internet-Draft
about TCP timestamps generation, entitled On the generation of TCP
timestamps. The I-D is available at:
http://tools.ietf.org/pdf/draft-gont-timestamps-generation-00.pdf
I have also authored a related I-D, entitled
You asked for a summer - it's here.
It's that time of the month again, and we shall be gathering in the
usual haunt to hear:
'Having fun with Apple's IOKit'
by Ilja Van Sprundel, IOActive
Celebrating the demise, oh sorry, the epic fail of some football team thing
isn't on the agenda. :-)
***
