Evgeny Legerov

23 exploits Active since Dec 2003
CVE-2006-5815 METASPLOIT ruby WORKING POC
ProFTPD < 1.3.0 - Stack-based Buffer Overflow in sreplace Function
Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vd_proftpd.pm, a "ProFTPD remote exploit."
CVE-2006-5780 EXPLOITDB WORKING POC
XLink Omni-NFS Server 5.2 - Stack-Based Buffer Overflow via Crafted TCP Packet
Stack-based buffer overflow in nfsd.exe in XLink Omni-NFS Server 5.2 allows remote attackers to execute arbitrary code via a crafted TCP packet to port 2049 (nfsd), as demonstrated by vd_xlink.pm.
EIP-2026-115516 EXPLOITDB python WORKING POC
Kerio MailServer 5.x/6.x - Remote LDAP Denial of Service
CVE-2010-0462 EXPLOITDB text WORKING POC
IBM DB2 9.1-9.7 - Authenticated Heap-Based Buffer Overflow via REPEAT Function
Heap-based buffer overflow in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 allows remote authenticated users to have an unspecified impact via a SELECT statement that has a long column name generated with the REPEAT function.
CVE-2006-0647 EXPLOITDB text STUB
Sun Java System Directory Server 5.2 - Denial of Service via Crafted Subtree Search Request
LDAP service in Sun Java System Directory Server 5.2, running on Linux and possibly other platforms, allows remote attackers to cause a denial of service (memory allocation error) via an LDAP packet with a crafted subtree search request, as demonstrated using the ProtoVer LDAP test suite.
EIP-2026-103668 EXPLOITDB python WORKING POC
Sun Java System Web Server 6.1/7.0 - 'TRACE' Heap Buffer Overflow (PoC)
EIP-2026-103513 EXPLOITDB text WORKING POC
IBM DB2 - 'kuddb2' Remote Denial of Service
EIP-2026-103538 EXPLOITDB python WORKING POC
Lotus Domino 7.0.x/8.0/8.5 - LDAP Message Remote Denial of Service
CVE-2006-0710 EXPLOITDB text STUB
Isode M-Vault Server 11.3 - Remote Code Execution via Crafted LDAP Request
Double free vulnerability in isode.eddy in Isode M-Vault Server 11.3 allows remote attackers to execute arbitrary code via a crafted LDAP request, as demonstrated by ProtoVer Sample LDAP.
EIP-2026-103518 EXPLOITDB text WORKING POC
Ingres Database 9.3 - Heap Buffer Overflow
CVE-2006-0717 EXPLOITDB text STUB
IBM Tivoli Directory Server 6.0 - Denial of Service via Crafted LDAP Request
IBM Tivoli Directory Server 6.0 allows remote attackers to cause a denial of service (crash) via a crafted LDAP request, as demonstrated by test 2532 in the ProtoVer Sample LDAP test suite.
CVE-2006-5815 EXPLOITDB WORKING POC
ProFTPD < 1.3.0 - Stack-based Buffer Overflow in sreplace Function
Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vd_proftpd.pm, a "ProFTPD remote exploit."
CVE-2006-5815 EXPLOITDB ruby WORKING POC
ProFTPD < 1.3.0 - Stack-based Buffer Overflow in sreplace Function
Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vd_proftpd.pm, a "ProFTPD remote exploit."
CVE-2006-0468 EXPLOITDB python WORKING POC
CommuniGate Pro < 5.0.7 - Denial of Service and Remote Code Execution via LDAP BER Length Manipulation
CommuniGate Pro Core Server before 5.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via LDAP messages with negative BER lengths, and possibly other vectors, as demonstrated by the ProtoVer LDAP test suite.
EIP-2026-102706 EXPLOITDB WORKING POC
OpenLDAP 2.2.29 - Remote Denial of Service (Metasploit)
EIP-2026-102627 EXPLOITDB python WORKING POC
Kerio MailServer 6.2.2 - Remote Denial of Service (PoC)
CVE-2006-3746 EXPLOITDB text WORKING POC
GnuPG 1.4.4 - Denial of Service via Integer Overflow in parse_comment
Integer overflow in parse_comment in GnuPG (gpg) 1.4.4 allows remote attackers to cause a denial of service (segmentation fault) via a crafted message.
CVE-2006-3082 EXPLOITDB text WORKING POC
GnuPG < 1.9.20 - Denial of Service via Large Message Packet Length
parse-packet.c in GnuPG (gpg) 1.4.3 and 1.9.20, and earlier versions, allows remote attackers to cause a denial of service (gpg crash) and possibly overwrite memory via a message packet with a large length (long user ID string), which could lead to an integer overflow, as demonstrated using the --no-armor option.
CVE-2003-0967 EXPLOITDB text WORKING POC
FreeRADIUS < 0.9.2 - Denial of Service via Short RADIUS String Attribute with Tag
rad_decode in FreeRADIUS 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a short RADIUS string attribute with a tag, which causes memcpy to be called with a -1 length argument, as demonstrated using the Tunnel-Password attribute.
CVE-2006-6293 EXPLOITDB python WORKING POC
F-Prot Antivirus <4.6.7 - Buffer Overflow
Heap-based buffer overflow in FRISK Software F-Prot Antivirus before 4.6.7 allows user-assisted remote attackers to execute arbitrary code via a crafted CHM file. NOTE: this issue has at least a partial overlap with CVE-2006-6294.
CVE-2006-6352 EXPLOITDB python WORKING POC
FRISK Software F-Prot Antivirus <4.6.7 - DoS
FRISK Software F-Prot Antivirus before 4.6.7 allows user-assisted remote attackers to cause a denial of service (infinite loop) via a crafted ACE file. NOTE: this issue has at least a partial overlap with CVE-2006-6294.
CVE-2006-5550 EXPLOITDB c WORKING POC
FreeBSD 6.1 and OpenBSD 4.0 - Denial of Service via /dev/crypto ioctl Requests
The kernel in FreeBSD 6.1 and OpenBSD 4.0 allows local users to cause a denial of service via unspecified vectors involving certain ioctl requests to /dev/crypto.
CVE-2006-0900 EXPLOITDB perl WORKING POC
FreeBSD 6.0 - Denial of Service via NFS Mount Request
nfsd in FreeBSD 6.0 kernel allows remote attackers to cause a denial of service via a crafted NFS mount request, as demonstrated by the ProtoVer NFS test suite.