ATmaCA

22 exploits Active since Sep 2004
CVE-2006-0476 EXPLOITDB c++ WORKING POC
Nullsoft Winamp 5.12 - Buffer Overflow via Playlist File1 Field
Buffer overflow in Nullsoft Winamp 5.12 allows remote attackers to execute arbitrary code via a playlist (pls) file with a long file name (File1 field).
EIP-2026-118928 EXPLOITDB c WORKING POC
MSN Messenger (Linux) - '.png' Image Buffer Overflow
EIP-2026-118929 EXPLOITDB c++ WORKING POC
MSN Messenger - '.png' Image Buffer Overflow Download Shellcode
CVE-2004-0597 EXPLOITDB c WORKING POC
libpng < 1.2.5 - Remote Code Execution via Malformed PNG Image
Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tRNS) data, or the (2) png_handle_sBIT or (3) png_handle_hIST functions do not perform sufficient bounds checking.
CVE-2006-1359 EXPLOITDB c++ WORKING POC
Microsoft Internet Explorer <7 - RCE/DoS
Microsoft Internet Explorer 6 and 7 Beta 2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a certain createTextRange call on a checkbox object, which results in a dereference of an invalid table pointer.
EIP-2026-118800 EXPLOITDB c++ WORKING POC
Microsoft Internet Explorer - 'createTextRang' Download Shellcode (1)
EIP-2026-118914 EXPLOITDB c WORKING POC
Mirabilis ICQ 2003a - Remote Buffer Overflow Download Shellcode
CVE-2004-0200 EXPLOITDB c WORKING POC
Microsoft .NET Framework - Remote Code Execution via JPEG COM Field Length Overflow
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
CVE-2005-0634 EXPLOITDB c++ WORKING POC
Golden FTP Server 1.92 - Remote Code Execution via Long USER Command
Buffer overflow in Golden FTP Server 1.92 allows remote attackers to execute arbitrary code via a long USER command.
CVE-2004-1465 EXPLOITDB c++ WORKING POC
WinZip 9.0 - Buffer Overflow via Command Line
Multiple buffer overflows in WinZip 9.0 and earlier may allow attackers to execute arbitrary code via multiple vectors, including the command line.
CVE-2005-2694 EXPLOITDB c WORKING POC
WinAce 2.6.0.5 - Buffer Overflow via Long File Name in Temporary File
Buffer overflow in WinAce 2.6.0.5, and possibly earlier versions, allows remote attackers to execute arbitrary code via a temporary (.tmp) file that contains an entry with a long file name.
EIP-2026-118131 EXPLOITDB c WORKING POC
WinRAR 1.0 - Local Buffer Overflow
EIP-2026-118272 EXPLOITDB c++ WORKING POC
Apple iTunes - Playlist Buffer Overflow Download Shellcode
EIP-2026-117758 EXPLOITDB c++ WORKING POC
Peer2Mail 1.4 - Encrypted Password Dumper
EIP-2026-117242 EXPLOITDB text WORKING POC
GlobalScape - CuteFTP macros '.mcr' Local File Write
EIP-2026-117223 EXPLOITDB c WORKING POC
Funduc Search and Replace - Compressed File Local Buffer Overflow
CVE-2005-2287 EXPLOITDB c WORKING POC
SoftiaCom wMailServer 1.0 and 2.0 - Denial of Service via Large TCP Packet with Leading Space
SoftiaCom wMailServer 1.0 and 2.0 allows remote attackers to cause a denial of service (application crash) via a large TCP packet with a leading space, possibly triggering a buffer overflow.
EIP-2026-116027 EXPLOITDB c WORKING POC
OverByte ICS FTP Server - Remote Denial of Service
CVE-2006-0006 EXPLOITDB c++ WORKING POC
Microsoft Windows Media Player <10 - Buffer Overflow
Heap-based buffer overflow in the bitmap processing routine in Microsoft Windows Media Player 7.1 on Windows 2000 SP4, Media Player 9 on Windows 2000 SP4 and XP SP1, and Media Player 10 on XP SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted bitmap (.BMP) file that specifies a size of 0 but contains additional data.
CVE-2004-0575 EXPLOITDB text WRITEUP
Windows XP and Windows Server 2003 - Remote Code Execution via Compressed Folder Integer Overflow
Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an "unchecked buffer" and improper length validation.
CVE-2005-1812 EXPLOITDB c WORKING POC
FutureSoft TFTP Server Evaluation Version 1.0.0.1 - Remote Code Execution via Long Filename or Transfer Mode String
Multiple stack-based buffer overflows in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allow remote attackers to execute arbitrary code via a long (1) filename or (2) transfer mode string in a Read Request (RRQ) or Write Request (WRQ) packet.
EIP-2026-114917 EXPLOITDB text WRITEUP
Apple QuickTime 6.5.2.10 - '.qtif' Image Parsing