Damian Put

10 exploits Active since Dec 2004
CVE-2006-5645 EXPLOITDB text WRITEUP
Sophos Anti-Virus and Endpoint Security < 6.0.5 - Denial of Service via Malformed RAR Archive
Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11, when "Enabled scanning of archives" is set, allows remote attackers to cause a denial of service (infinite loop) via a malformed RAR archive with an Archive Header section with the head_size and pack_size fields set to zero.
CVE-2006-5646 EXPLOITDB text WORKING POC
Sophos Anti-Virus and Endpoint Security < 6.0.5 - Heap-Based Buffer Overflow via CHM LZX Decompression
Heap-based buffer overflow in Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11, when archive scanning is enabled, allows remote attackers to trigger a denial of service (memory corruption) via a CHM file with an LZX decompression header that specifies a Window_size of 0.
CVE-2006-5647 EXPLOITDB text WORKING POC
Sophos Anti-Virus and Endpoint Security < 6.0.5 - Remote Code Execution via Malformed CHM File
Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via a malformed CHM file with a large name length in the CHM chunk header, aka "CHM name length memory consumption vulnerability."
CVE-2006-4182 EXPLOITDB text WORKING POC
ClamAV < 0.88.5 - Remote Code Execution via Crafted PE File
Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected.
CVE-2006-5295 EXPLOITDB perl WORKING POC
ClamAV < 0.88.5 - Denial of Service via Crafted CHM File
Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cause a denial of service (scanning service crash) via a crafted Compressed HTML Help (CHM) file that causes ClamAV to "read an invalid memory location."
CVE-2004-1373 EXPLOITDB c WORKING POC
SHOUTcast 1.9.4 - Remote Code Execution via Format String in Content URL
Format string vulnerability in SHOUTcast 1.9.4 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via format string specifiers in a content URL, as demonstrated in the filename portion of a .mp3 file.
EIP-2026-102565 EXPLOITDB text WORKING POC
Blender BlenLoader 2.x - File Processing Integer Overflow
CVE-2006-4018 EXPLOITDB text WRITEUP
ClamAV 0.81-0.88.3 - Remote Code Execution via UPX Packed File with Large rsize Values
Heap-based buffer overflow in the pefromupx function in libclamav/upx.c in Clam AntiVirus (ClamAV) 0.81 through 0.88.3 allows remote attackers to execute arbitrary code via a crafted UPX packed file containing sections with large rsize values.
CVE-2006-4144 EXPLOITDB text WRITEUP
ImageMagick - Denial of Service and Possible Remote Code Execution via Integer Overflow in ReadSGIImage
Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick before 6.2.9 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via large (1) bytes_per_pixel, (2) columns, and (3) rows values, which trigger a heap-based buffer overflow.
CVE-2005-1275 EXPLOITDB text WORKING POC
ImageMagick <6.2.1 - Buffer Overflow
Heap-based buffer overflow in the ReadPNMImage function in pnm.c for ImageMagick 6.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a PNM file with a small colors value.