Dennis Rand

23 exploits Active since May 2003
EIP-2026-119038 EXPLOITDB text WRITEUP
PlatinumFTPServer 1.0.6 - Directory Traversal
EIP-2026-119037 EXPLOITDB text WRITEUP
PlatinumFTPServer 1.0.6 - Arbitrary File Deletion
EIP-2026-118985 EXPLOITDB text WRITEUP
OpenConnect WebConnect 6.4/6.5 - jretest.html Traversal Arbitrary File Access
EIP-2026-119039 EXPLOITDB text WORKING POC
PlatinumFTPServer 1.0.6 - Information Disclosure
CVE-2005-1939 EXPLOITDB text WORKING POC
Ipswitch WhatsUp Small Business 2004 - Directory Traversal via Report Service
Directory traversal vulnerability in Ipswitch WhatsUp Small Business 2004 allows remote attackers to read arbitrary files via ".." (dot dot) sequences in a request to the Report service (TCP 8022).
CVE-2007-5604 EXPLOITDB xml WORKING POC
HP Instant Support < 1.0.0.23 - Remote Code Execution via ExtractCab Function
Buffer overflow in the ExtractCab function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to execute arbitrary code via a long first argument, a different vulnerability than CVE-2007-5605, CVE-2007-5606, and CVE-2007-5607.
CVE-2006-1172 EXPLOITDB text WORKING POC
Cryptomathic Cenroll ActiveX Control 1.1.0.0 - Buffer Overflow
Stack-based buffer overflow in the createPKCS10 function in Cryptomathic Cenroll ActiveX Control 1.1.0.0 allows remote attackers to execute arbitrary code via vectors related to the TDC Digital signature.
CVE-2003-0280 EXPLOITDB perl WORKING POC
CMailServer 4.0.2003.03 - Buffer Overflow
Multiple buffer overflows in the SMTP Service for ESMTP CMailServer 4.0.2003.03.27 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands.
CVE-2003-0280 EXPLOITDB perl WORKING POC
CMailServer 4.0.2003.03 - Buffer Overflow
Multiple buffer overflows in the SMTP Service for ESMTP CMailServer 4.0.2003.03.27 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands.
CVE-2007-2237 EXPLOITDB MEDIUM text WRITEUP
Microsoft Windows XP - Denial of Service via ICO File with Zero Height
Microsoft Windows Graphics Device Interface (GDI+, GdiPlus.dll) allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, which triggers a divide-by-zero error.
CVSS 5.5
CVE-2008-0952 EXPLOITDB xml WORKING POC
HPISDataManagerLib.Datamgr <1.0.0.24 - RCE
The AppendStringToFile function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to create files with arbitrary content via a full pathname in the first argument and the content in the second argument, a different vulnerability than CVE-2007-5608 and CVE-2008-0953.
CVE-2007-5607 EXPLOITDB xml WORKING POC
HP Instant Support < 1.0.0.23 - Remote Code Execution via RegistryString Function Buffer Overflow
Buffer overflow in the RegistryString function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to execute arbitrary code via a long first argument, a different vulnerability than CVE-2007-5604, CVE-2007-5605, and CVE-2007-5606.
CVE-2008-0953 EXPLOITDB xml WORKING POC
HPISDataManagerLib.Datamgr <1.0.0.24 - RCE
The StartApp function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to execute arbitrary programs via a .exe filename in the argument, a different vulnerability than CVE-2007-5608 and CVE-2008-0953.
CVE-2007-5610 EXPLOITDB xml WORKING POC
HPISDataManager <1.0.0.24 - Path Traversal
The DeleteSingleFile function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to delete an arbitrary file via a full pathname in the argument.
CVE-2003-1368 EXPLOITDB perl WORKING POC
Electrasoft FTP Client 9.49.1 - Buffer Overflow via Long FTP Server Banner
Buffer overflow in the 32bit FTP client 9.49.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long FTP server banner.
CVE-2003-0263 EXPLOITDB perl WORKING POC
Floosietek FTGate Pro Mail Server <1.22 - RCE
Multiple buffer overflows in Floosietek FTGate Pro Mail Server (FTGatePro) 1.22 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands.
CVE-2003-0263 EXPLOITDB perl WORKING POC
Floosietek FTGate Pro Mail Server <1.22 - RCE
Multiple buffer overflows in Floosietek FTGate Pro Mail Server (FTGatePro) 1.22 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands.
CVE-2003-1369 EXPLOITDB perl WORKING POC
Save IT Software PTY Bytecatcherftp - Memory Corruption
Buffer overflow in ByteCatcher FTP client 1.04b allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long FTP server banner.
CVE-2005-2340 EXPLOITDB text WRITEUP
Apple QuickTime < 7.0.4 - Remote Code Execution via Crafted Image File
Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a crafted (1) QuickTime Image File (QTIF), (2) PICT, or (3) JPEG format image with a long data field.
EIP-2026-103828 EXPLOITDB text WORKING POC
12Planet Chat Server 2.5 - Error Message Installation Full Path Disclosure
CVE-2007-1685 EXPLOITDB html WORKING POC
BlueCoat K9 Web Protection < 3.2.44 - Buffer Overflow via Long HTTP GET Request
Buffer overflow in k9filter.exe in BlueCoat K9 Web Protection 3.2.36, and probably other versions before 3.2.44, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request to port 2372.
CVE-2005-3315 EXPLOITDB text WRITEUP
Novell ZENworks Patch Management < 6.2.2.181 - SQL Injection via Multiple Parameters
Multiple SQL injection vulnerabilities in Novell ZENworks Patch Management 6.x before 6.2.2.181 allow remote attackers to execute arbitrary SQL commands via the (1) Direction parameter to computers/default.asp, and the (2) SearchText, (3) StatusFilter, and (4) computerFilter parameters to reports/default.asp.
CVE-2005-3315 EXPLOITDB text WRITEUP
Novell ZENworks Patch Management < 6.2.2.181 - SQL Injection via Multiple Parameters
Multiple SQL injection vulnerabilities in Novell ZENworks Patch Management 6.x before 6.2.2.181 allow remote attackers to execute arbitrary SQL commands via the (1) Direction parameter to computers/default.asp, and the (2) SearchText, (3) StatusFilter, and (4) computerFilter parameters to reports/default.asp.