Greg MacManus

5 exploits Active since Mar 2004
CVE-2023-28478 WRITEUP HIGH WRITEUP
TP-Link EC-70 <2.3.4 Build 20220902 rel.69498 - Buffer Overflow
TP-Link EC-70 devices through 2.3.4 Build 20220902 rel.69498 have a Buffer Overflow.
CVSS 8.8
CVE-2013-2028 METASPLOIT ruby WORKING POC
nginx 1.3.9-1.4.0 - Remote Code Execution via Chunked Transfer-Encoding
The ngx_http_parse_chunked function in http/ngx_http_parse.c in nginx 1.3.9 through 1.4.0 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a chunked Transfer-Encoding request with a large chunk size, which triggers an integer signedness error and a stack-based buffer overflow.
EIP-2026-114859 EXPLOITDB text WORKING POC
Adobe Acrobat / Acrobat Reader 6.0 - '.ETD' File Parser Format String
CVE-2013-2028 EXPLOITDB ruby WORKING POC
nginx 1.3.9-1.4.0 - Remote Code Execution via Chunked Transfer-Encoding
The ngx_http_parse_chunked function in http/ngx_http_parse.c in nginx 1.3.9 through 1.4.0 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a chunked Transfer-Encoding request with a large chunk size, which triggers an integer signedness error and a stack-based buffer overflow.
CVE-2004-0084 EXPLOITDB text WORKING POC
XFree86 4.1.0-4.3.0 - Authenticated Buffer Overflow via Malformed Font Alias File
Buffer overflow in the ReadFontAlias function in XFree86 4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows local or remote authenticated users to execute arbitrary code via a malformed entry in the font alias (font.alias) file, a different vulnerability than CVE-2004-0083 and CVE-2004-0106.