Andrew Griffiths

8 exploits Active since Oct 2001
CVE-2014-4168 WRITEUP WRITEUP
iodine <0.7.0 - Auth Bypass
(1) iodined.c and (2) user.c in iodine before 0.7.0 allows remote attackers to bypass authentication by continuing execution after an error has been triggering.
CVE-2004-2086 METASPLOIT ruby WORKING POC
Sambar Server <6.0 - Buffer Overflow
Stack-based buffer overflow in results.stm for Sambar Server before the 6.0 production release allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP POST request with a long query parameter.
CVE-2004-2086 EXPLOITDB ruby WORKING POC
Sambar Server <6.0 - Buffer Overflow
Stack-based buffer overflow in results.stm for Sambar Server before the 6.0 production release allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP POST request with a long query parameter.
CVE-2002-0140 EXPLOITDB text WORKING POC
Dnrd - Denial of Service
Domain Name Relay Daemon (dnrd) 2.10 and earlier allows remote malicious DNS sites to cause a denial of service and possibly execute arbitrary code via a long or malformed DNS reply, which is not handled properly by parse_query, get_objectname, and possibly other functions.
EIP-2026-104697 EXPLOITDB c WORKING POC
PHP 4.x - DLOpen Memory Disclosure (1)
CVE-2002-2016 EXPLOITDB text WRITEUP
User-mode Linux <2.4.17-8 - RCE
User-mode Linux (UML) 2.4.17-8 does not restrict access to kernel address space, which allows local users to execute arbitrary code.
CVE-2001-1287 EXPLOITDB c WORKING POC
Ipswitch IMail <7.04 - RCE
Buffer overflow in Web Calendar in Ipswitch IMail 7.04 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.
CVE-2002-0210 EXPLOITDB c WORKING POC
TOLIS Group BRU 17.0 - Local Privilege Escalation
setlicense for TOLIS Group Backup and Restore Utility (BRU) 17.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/brutest.$$ temporary file.