Dr_IDE

101 exploits Active since Apr 2008
EIP-2026-119220 EXPLOITDB html WORKING POC
Trend Micro Internet Security 2010 - 'UfPBCtrl.DLL' ActiveX Remote Command Execution
CVE-2010-4321 EXPLOITDB ruby WORKING POC
Novell iPrint Client 5.52 - Stack-based Buffer Overflow via ienipp.ocx ActiveX Control
Stack-based buffer overflow in an ActiveX control in ienipp.ocx in Novell iPrint Client 5.52 allows remote attackers to execute arbitrary code via a long argument to (1) the GetDriverSettings2 method, as reachable by (2) the GetDriverSettings method.
EIP-2026-118930 EXPLOITDB text WRITEUP
Multi-Threaded HTTP Server 1.1 - Directory Traversal (2)
CVE-2010-2266 EXPLOITDB text WORKING POC
nginx 0.7.52-0.7.67 - Denial of Service via Encoded Directory Traversal Sequence
nginx 0.8.36 allows remote attackers to cause a denial of service (crash) via certain encoded directory traversal sequences that trigger memory corruption, as demonstrated using the "%c0.%c0." sequence.
CVE-2010-4321 EXPLOITDB html WORKING POC
Novell iPrint Client 5.52 - Stack-based Buffer Overflow via ienipp.ocx ActiveX Control
Stack-based buffer overflow in an ActiveX control in ienipp.ocx in Novell iPrint Client 5.52 allows remote attackers to execute arbitrary code via a long argument to (1) the GetDriverSettings2 method, as reachable by (2) the GetDriverSettings method.
EIP-2026-118775 EXPLOITDB text WRITEUP
Mereo Web Server 1.8 - Source Code Disclosure
EIP-2026-118902 EXPLOITDB text WRITEUP
MinaliC WebServer 1.0 - Remote Source Disclosure / File Download
EIP-2026-118713 EXPLOITDB text WRITEUP
Kolibri+ Web Server 2 - Arbitrary Source Code Disclosure (2)
EIP-2026-118912 EXPLOITDB text WORKING POC
MiniWebsvr 0.0.10 - Directory Traversal / Listing
CVE-2013-3075 EXPLOITDB html WORKING POC
Mitsubishi MX Component 3 - Buffer Overflow
Multiple buffer overflows in ActUWzd.dll 1.0.0.1 in Mitsubishi MX Component 3, as distributed in Citect CitectFacilities 7.10 and CitectScada 7.10r1, allow remote attackers to execute arbitrary code via a long string, as demonstrated by a long WzTitle property value to a certain ActiveX control.
CVE-2009-4535 EXPLOITDB text WRITEUP
Mongoose < 2.8.0 - Unauthenticated Source Code Exposure via URI Trailing Slash
Mongoose 2.8.0 and earlier allows remote attackers to obtain the source code for a web page by appending a / (slash) character to the URI.
EIP-2026-118702 EXPLOITDB html WORKING POC
J-Integra 2.11 - ActiveX SetIdentity() Buffer Overflow
EIP-2026-118539 EXPLOITDB text WRITEUP
Femitter HTTP Server 1.03 - Remote Source Disclosure
CVE-2009-3837 EXPLOITDB ruby WORKING POC
Eureka Email 2.2q - Remote Code Execution via Long POP3 Error Message
Stack-based buffer overflow in Eureka Email 2.2q allows remote POP3 servers to execute arbitrary code via a long error message.
CVE-2009-4531 EXPLOITDB text WRITEUP
jasper/httpdx <= 1.4.4 - Exposure of Sensitive Information via URI Dot Character
httpdx 1.4.4 and earlier allows remote attackers to obtain the source code for a web page by appending a . (dot) character to the URI.
CVE-2010-2590 EXPLOITDB html WORKING POC
SAP Crystal Reports 2008 SP3 Fix Pack 3.2 - Remote Code Execution via Long ServerResourceVersion Property
Heap-based buffer overflow in the CrystalReports12.CrystalPrintControl.1 ActiveX control in PrintControl.dll 12.3.2.753 in SAP Crystal Reports 2008 SP3 Fix Pack 3.2 allows remote attackers to execute arbitrary code via a long ServerResourceVersion property value.
EIP-2026-118523 EXPLOITDB ruby WORKING POC
Eureka Email 2.2q - ERR Remote Buffer Overflow (Metasploit) (1)
CVE-2010-2590 EXPLOITDB ruby WORKING POC
SAP Crystal Reports 2008 SP3 Fix Pack 3.2 - Remote Code Execution via Long ServerResourceVersion Property
Heap-based buffer overflow in the CrystalReports12.CrystalPrintControl.1 ActiveX control in PrintControl.dll 12.3.2.753 in SAP Crystal Reports 2008 SP3 Fix Pack 3.2 allows remote attackers to execute arbitrary code via a long ServerResourceVersion property value.
CVE-2009-3837 EXPLOITDB python WORKING POC
Eureka Email 2.2q - Remote Code Execution via Long POP3 Error Message
Stack-based buffer overflow in Eureka Email 2.2q allows remote POP3 servers to execute arbitrary code via a long error message.
EIP-2026-118262 EXPLOITDB text WORKING POC
AoA Audio Extractor - Remote ActiveX SEH JIT Spray (ASLR + DEP Bypass)
CVE-2010-2932 EXPLOITDB html WORKING POC
BarCodeWiz BarCode 3.29 ActiveX Control - Buffer Overflow via LoadProperties Method
Buffer overflow in BarCodeWiz BarCode 3.29 ActiveX control (BarcodeWiz.dll) allows remote attackers to execute arbitrary code via a long argument to the LoadProperties method.
EIP-2026-118188 EXPLOITDB python WORKING POC
xp-AntiSpy 3.9.7-4 - '.xpas' File Buffer Overflow
CVE-2010-3129 EXPLOITDB text WORKING POC
uTorrent <= 2.0.3 - DLL Hijacking via Trojan Horse DLL in Torrent File Directory
Untrusted search path vulnerability in uTorrent 2.0.3 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse plugin_dll.dll, userenv.dll, shfolder.dll, dnsapi.dll, dwmapi.dll, iphlpapi.dll, dhcpcsvc.dll, dhcpcsvc6.dll, or rpcrtremote.dll that is located in the same folder as a .torrent or .btsearch file.
EIP-2026-118226 EXPLOITDB text WRITEUP
Acritum Femitter 1.03 - Directory Traversal
CVE-2008-1914 EXPLOITDB ruby WORKING POC
BigAnt IM Server <2.2 - Buffer Overflow
Stack-based buffer overflow in the AntServer module (AntServer.exe) in BigAnt IM Server in BigAnt Messenger 2.2 allows remote attackers to execute arbitrary code via a long URI in a request to TCP port 6080. NOTE: some of these details are obtained from third party information.