Gyan Chawdhary

5 exploits Active since Oct 2003
CVE-2004-0594 EXPLOITDB c WORKING POC
PHP 4.x-5.0.0RC3 - Remote Code Execution
The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init function and overwriting a HashTable destructor pointer before the initialization of key data structures is complete.
CVE-2004-0416 EXPLOITDB c WORKING POC
CVS <1.12.8/<1.11.16 - Memory Corruption
Double free vulnerability for the error_prog_name string in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to execute arbitrary code.
CVE-2003-0681 EXPLOITDB c WORKING POC
Sendmail Advanced Message Server - Buffer Overflow in Ruleset Parsing
A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.
CVE-2004-0397 EXPLOITDB c WORKING POC
Subversion <= 1.0.2 - Remote Code Execution via DAV2 REPORT Query or get-dated-rev Command
Stack-based buffer overflow during the apr_time_t data conversion in Subversion 1.0.2 and earlier allows remote attackers to execute arbitrary code via a (1) DAV2 REPORT query or (2) get-dated-rev svn-protocol command.
CVE-2004-1471 EXPLOITDB c WORKING POC
CVS 1.11.x-1.11.16 and 1.12.x-1.12.8 - Remote Code Execution via Format String in Wrapper Line
Format string vulnerability in wrapper.c in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16 allows remote attackers with CVSROOT commit access to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a wrapper line.