James Fitts

69 exploits Active since Sep 2005
CVE-2011-5165 EXPLOITDB ruby WORKING POC
Free MP3 CD Ripper <= 2.6 - Stack-based Buffer Overflow via Crafted WAV File
Stack-based buffer overflow in Free MP3 CD Ripper 1.1, 2.6 and earlier, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wav file.
CVE-2009-4962 EXPLOITDB ruby WORKING POC
Fat Player 0.6b - Remote Code Execution via Long String in WAV File
Stack-based buffer overflow in Fat Player 0.6b allows remote attackers to execute arbitrary code via a long string in a .wav file. NOTE: some of these details are obtained from third party information.
CVE-2013-3482 EXPLOITDB ruby WORKING POC
ERDAS ER Viewer < 13.0.1.1301 - Stack-Based Buffer Overflow via Long String in ERS File
Stack-based buffer overflow in the rf_report_error function in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long string in an ERS file.
EIP-2026-116997 EXPLOITDB ruby WORKING POC
CoolPlayer Portable 2.19.2 - Local Buffer Overflow (Metasploit)
EIP-2026-116703 EXPLOITDB ruby WORKING POC
ABBS Audio Media Player 3.0 - Local Buffer Overflow (Metasploit)
EIP-2026-116258 EXPLOITDB ruby WORKING POC
SnackAmp 3.1.2 - '.wav' Buffer Overflow (PoC)
EIP-2026-116706 EXPLOITDB ruby WORKING POC
ABBS Electronic Flashcards 2.1 - Local Buffer Overflow (Metasploit)
EIP-2026-104783 EXPLOITDB ruby WORKING POC
Trend Micro Control Manager - ImportFile Directory Traversal Remote Code Execution (Metasploit)
CVE-2013-2097 EXPLOITDB HIGH ruby WORKING POC
ZPanel through 10.1.0 - Remote Code Execution
ZPanel through 10.1.0 has Remote Command Execution
CVSS 7.8
CVE-2017-6020 EXPLOITDB MEDIUM ruby WORKING POC
LAquis SCADA < 4.1.0.3237 - Path Traversal
Leao Consultoria e Desenvolvimento de Sistemas (LCDS) LTDA ME LAquis SCADA software versions prior to version 4.1.0.3237 do not neutralize external input to ensure that users are not calling for absolute path sequences outside of their privilege level.
CVSS 5.3
CVE-2014-3805 EXPLOITDB ruby WORKING POC
AlienVault OSSIM < 4.7.0 - Remote Code Execution via av-centerd SOAP Service
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) get_license, (2) get_log_line, or (3) update_system/upgrade_pro_web request, a different vulnerability than CVE-2014-3804.
CVE-2014-4153 EXPLOITDB ruby WORKING POC
AlienVault OSSIM <4.8.0 - Info Disclosure
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to read arbitrary files via a crafted get_file request.
CVE-2014-5210 EXPLOITDB ruby WORKING POC
AlienVault OSSIM < 4.7.0 - Remote Code Execution via SOAP remote_task or get_license Request
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) remote_task or (2) get_license request, a different vulnerability than CVE-2014-3804 and CVE-2014-3805.
CVE-2014-3804 EXPLOITDB ruby WORKING POC
AlienVault OSSIM < 4.7.0 - Remote Code Execution via av-centerd SOAP Service
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) update_system_info_debian_package, (2) ossec_task, (3) set_ossim_setup admin_ip, (4) sync_rserver, or (5) set_ossim_setup framework_ip request, a different vulnerability than CVE-2014-3805.
CVE-2016-9351 EXPLOITDB HIGH ruby WORKING POC
Advantech SUISAccess Server <3.0 - Path Traversal
An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior. The directory traversal/file upload error allows an attacker to upload and unpack a zip file.
CVSS 7.0
CVE-2013-6810 EXPLOITDB ruby WORKING POC
EMC Connectrix Manager - Remote Code Execution via Servlet File Upload
The server in Brocade Network Advisor before 12.1.0, as used in EMC Connectrix Manager Converged Network Edition (CMCNE), HP B-series SAN Network Advisor, and possibly other products, allows remote attackers to execute arbitrary code by using a servlet to upload an executable file.
CVE-2013-6810 EXPLOITDB ruby WORKING POC
EMC Connectrix Manager - Remote Code Execution via Servlet File Upload
The server in Brocade Network Advisor before 12.1.0, as used in EMC Connectrix Manager Converged Network Edition (CMCNE), HP B-series SAN Network Advisor, and possibly other products, allows remote attackers to execute arbitrary code by using a servlet to upload an executable file.
CVE-2016-9349 EXPLOITDB HIGH ruby WORKING POC
Advantech SUISAccess Server <3.0 - Info Disclosure
An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior. An attacker could traverse the file system and extract files that can result in information disclosure.
CVSS 7.5
CVE-2015-7901 EXPLOITDB ruby WORKING POC
Infinite Automation Mango Automation <2.6.0-430 - Command Injection
Infinite Automation Mango Automation 2.5.x and 2.6.x through 2.6.0 build 430 allows remote authenticated users to execute arbitrary OS commands via unspecified vectors.