Critical Security

9 exploits Active since Sep 2005
CVE-2006-0441 METASPLOIT ruby WORKING POC
Sami FTP Server 2.0.1 - Stack-Based Buffer Overflow via Long USER Command
Stack-based buffer overflow in Sami FTP Server 2.0.1 allows remote attackers to execute arbitrary code via a long USER command, which triggers the overflow when the log is viewed.
CVE-2006-2212 METASPLOIT ruby WORKING POC
KarjaSoft Sami FTP Server <= 2.0.2 - Remote Code Execution via Long USER or PASS Command
Buffer overflow in KarjaSoft Sami FTP Server 2.0.2 and earlier allows remote attackers to execute arbitrary code via a long (1) USER or (2) PASS command.
CVE-2006-0441 EXPLOITDB perl WORKING POC
Sami FTP Server 2.0.1 - Stack-Based Buffer Overflow via Long USER Command
Stack-based buffer overflow in Sami FTP Server 2.0.1 allows remote attackers to execute arbitrary code via a long USER command, which triggers the overflow when the log is viewed.
CVE-2006-0328 EXPLOITDB perl WORKING POC
Tftpd32 2.81 - Denial of Service via Format String in GET or SEND Request
Format string vulnerability in Tftpd32 2.81 allows remote attackers to cause a denial of service via format string specifiers in a filename in a (1) GET or (2) SEND request.
CVE-2005-2850 EXPLOITDB c WORKING POC
SlimFTPd 3.17 - Denial of Service via USER and PASS Commands
SlimFTPd 3.17 allows remote attackers to cause a denial of service (crash) via certain (1) USER and (2) PASS commands, possibly due to a buffer overflow or off-by-one error.
EIP-2026-103653 EXPLOITDB text WORKING POC
Skype 3.6.216 - Voicemail URI Handler Remote Denial of Service
CVE-2006-6810 EXPLOITDB perl WORKING POC
DB Hub 0.3 - Denial of Service via Crafted Network Traffic
Unspecified vulnerability in the clear_user_list function in src/main.c in DB Hub 0.3 allows remote attackers to cause a denial of service (application crash) via crafted network traffic, which triggers memory corruption.
CVE-2006-3199 EXPLOITDB html WORKING POC
Opera 9 - Denial of Service via Long Hostname in A Tag href Attribute
Opera 9 allows remote attackers to cause a denial of service (crash) via an A tag with an href attribute with a URL containing a long hostname, which triggers an out-of-bounds operation.
CVE-2007-0085 EXPLOITDB c WORKING POC
OpenBSD 3.9-4.0 - Local Privilege Escalation via VGA PCI Driver NULL Pointer Dereference
Unspecified vulnerability in sys/dev/pci/vga_pci.c in the VGA graphics driver for wscons in OpenBSD 3.9 and 4.0, when the kernel is compiled with the PCIAGP option and a non-AGP device is being used, allows local users to gain privileges via unspecified vectors, possibly related to agp_ioctl NULL pointer reference.