Evgeny Legerov

23 exploits Active since Dec 2003
CVE-2006-5815 METASPLOIT ruby WORKING POC
Proftpd < 1.3.0 - Memory Corruption
Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vd_proftpd.pm, a "ProFTPD remote exploit."
CVE-2006-5780 EXPLOITDB WORKING POC
Xlink Technology Omni-nfs Server - Buffer Overflow
Stack-based buffer overflow in nfsd.exe in XLink Omni-NFS Server 5.2 allows remote attackers to execute arbitrary code via a crafted TCP packet to port 2049 (nfsd), as demonstrated by vd_xlink.pm.
EIP-2026-115516 EXPLOITDB python WORKING POC
Kerio MailServer 5.x/6.x - Remote LDAP Denial of Service
CVE-2010-0462 EXPLOITDB text WORKING POC
IBM Db2 - Memory Corruption
Heap-based buffer overflow in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 allows remote authenticated users to have an unspecified impact via a SELECT statement that has a long column name generated with the REPEAT function.
CVE-2006-0647 EXPLOITDB text STUB
SUN Java System Directory Server - Denial of Service
LDAP service in Sun Java System Directory Server 5.2, running on Linux and possibly other platforms, allows remote attackers to cause a denial of service (memory allocation error) via an LDAP packet with a crafted subtree search request, as demonstrated using the ProtoVer LDAP test suite.
EIP-2026-103668 EXPLOITDB python WORKING POC
Sun Java System Web Server 6.1/7.0 - 'TRACE' Heap Buffer Overflow (PoC)
EIP-2026-103513 EXPLOITDB text WORKING POC
IBM DB2 - 'kuddb2' Remote Denial of Service
EIP-2026-103538 EXPLOITDB python WORKING POC
Lotus Domino 7.0.x/8.0/8.5 - LDAP Message Remote Denial of Service
CVE-2006-0710 EXPLOITDB text STUB
Isode M-vault Server - Memory Corruption
Double free vulnerability in isode.eddy in Isode M-Vault Server 11.3 allows remote attackers to execute arbitrary code via a crafted LDAP request, as demonstrated by ProtoVer Sample LDAP.
EIP-2026-103518 EXPLOITDB text WORKING POC
Ingres Database 9.3 - Heap Buffer Overflow
CVE-2006-0717 EXPLOITDB text STUB
IBM Tivoli Directory Server - Denial of Service
IBM Tivoli Directory Server 6.0 allows remote attackers to cause a denial of service (crash) via a crafted LDAP request, as demonstrated by test 2532 in the ProtoVer Sample LDAP test suite.
CVE-2006-5815 EXPLOITDB WORKING POC
Proftpd < 1.3.0 - Memory Corruption
Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vd_proftpd.pm, a "ProFTPD remote exploit."
CVE-2006-5815 EXPLOITDB ruby WORKING POC
Proftpd < 1.3.0 - Memory Corruption
Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vd_proftpd.pm, a "ProFTPD remote exploit."
CVE-2006-0468 EXPLOITDB python WORKING POC
Stalker Communigate Pro - Denial of Service
CommuniGate Pro Core Server before 5.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via LDAP messages with negative BER lengths, and possibly other vectors, as demonstrated by the ProtoVer LDAP test suite.
EIP-2026-102706 EXPLOITDB WORKING POC
OpenLDAP 2.2.29 - Remote Denial of Service (Metasploit)
EIP-2026-102627 EXPLOITDB python WORKING POC
Kerio MailServer 6.2.2 - Remote Denial of Service (PoC)
CVE-2006-3746 EXPLOITDB text WORKING POC
Gnupg - Denial of Service
Integer overflow in parse_comment in GnuPG (gpg) 1.4.4 allows remote attackers to cause a denial of service (segmentation fault) via a crafted message.
CVE-2006-3082 EXPLOITDB text WORKING POC
GnuPG <1.9.20 - DoS
parse-packet.c in GnuPG (gpg) 1.4.3 and 1.9.20, and earlier versions, allows remote attackers to cause a denial of service (gpg crash) and possibly overwrite memory via a message packet with a large length (long user ID string), which could lead to an integer overflow, as demonstrated using the --no-armor option.
CVE-2003-0967 EXPLOITDB text WORKING POC
Freeradius < 0.9.2 - Denial of Service
rad_decode in FreeRADIUS 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a short RADIUS string attribute with a tag, which causes memcpy to be called with a -1 length argument, as demonstrated using the Tunnel-Password attribute.
CVE-2006-6293 EXPLOITDB python WORKING POC
F-Prot Antivirus <4.6.7 - Buffer Overflow
Heap-based buffer overflow in FRISK Software F-Prot Antivirus before 4.6.7 allows user-assisted remote attackers to execute arbitrary code via a crafted CHM file. NOTE: this issue has at least a partial overlap with CVE-2006-6294.
CVE-2006-6352 EXPLOITDB python WORKING POC
FRISK Software F-Prot Antivirus <4.6.7 - DoS
FRISK Software F-Prot Antivirus before 4.6.7 allows user-assisted remote attackers to cause a denial of service (infinite loop) via a crafted ACE file. NOTE: this issue has at least a partial overlap with CVE-2006-6294.
CVE-2006-5550 EXPLOITDB c WORKING POC
Freebsd - Denial of Service
The kernel in FreeBSD 6.1 and OpenBSD 4.0 allows local users to cause a denial of service via unspecified vectors involving certain ioctl requests to /dev/crypto.
CVE-2006-0900 EXPLOITDB perl WORKING POC
Freebsd - Denial of Service
nfsd in FreeBSD 6.0 kernel allows remote attackers to cause a denial of service via a crafted NFS mount request, as demonstrated by the ProtoVer NFS test suite.