Jeremy Brown

76 exploits Active since Mar 2008
CVE-2008-4762 EXPLOITDB perl WORKING POC
freeSSHd 1.2.1 - Authenticated Stack-Based Buffer Overflow via Long Argument to Rename or Realpath Parameters
Stack-based buffer overflow in freeSSHd 1.2.1 allows remote authenticated users to cause a denial of service (service crash) and potentially execute arbitrary code via a long argument to the (1) rename and (2) realpath parameters.
CVE-2008-4762 EXPLOITDB perl WORKING POC
freeSSHd 1.2.1 - Authenticated Stack-Based Buffer Overflow via Long Argument to Rename or Realpath Parameters
Stack-based buffer overflow in freeSSHd 1.2.1 allows remote authenticated users to cause a denial of service (service crash) and potentially execute arbitrary code via a long argument to the (1) rename and (2) realpath parameters.
CVE-2010-4597 EXPLOITDB python WORKING POC
Ecava IntegraXor < 3.5.3900.5 - Stack-Based Buffer Overflow via IntegraXor.Project ActiveX Control
Stack-based buffer overflow in the save method in the IntegraXor.Project ActiveX control in igcomm.dll in Ecava IntegraXor Human-Machine Interface (HMI) before 3.5.3900.10 allows remote attackers to execute arbitrary code via a long string in the second argument.
CVE-2010-4709 EXPLOITDB python WORKING POC
Automated Solutions Modbus/TCP Master OPC Server < 3.0.2 - Heap-Based Buffer Overflow via Crafted MODBUS Response Packet
Heap-based buffer overflow in Automated Solutions Modbus/TCP Master OPC Server before 3.0.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a MODBUS response packet with a crafted length field.
EIP-2026-114716 EXPLOITDB c WORKING POC
Sun Solaris 10 RPC dmispd - Denial of Service
CVE-2008-5821 EXPLOITDB perl WORKING POC
Apple Safari 3.2 - Denial of Service via Long ALINK Attribute
Memory leak in WebKit.dll in WebKit, as used by Apple Safari 3.2 on Windows Vista SP1, allows remote attackers to cause a denial of service (memory consumption and browser crash) via a long ALINK attribute in a BODY element in an HTML document.
EIP-2026-104276 EXPLOITDB python WORKING POC
HPE Edgeline Infrastructure Manager 1.0 - Multiple Remote Vulnerabilities
CVE-2010-0317 EXPLOITDB perl WORKING POC
Novell Netware 6.5 SP8 - Denial of Service via Malformed CIFS or AFP Requests
Novell Netware 6.5 SP8 allows remote attackers to cause a denial of service (NULL pointer dereference, memory consumption, ABEND, and crash) via a large number of malformed or AFP requests that are not properly handled by (1) the CIFS functionality in CIFS.nlm Semantic Agent (Build 163 MP) 3.27 or (2) the AFP functionality in AFPTCP.nlm Build 163 SP 3.27. NOTE: some of these details are obtained from third party information.
EIP-2026-103346 EXPLOITDB python WORKING POC
Zoom Meeting Connector 4.6.239.20200613 - Remote Root Exploit (Authenticated)
EIP-2026-102844 EXPLOITDB c WORKING POC
GemStone/S 6.3.1 - 'stoned' Local Buffer Overflow
EIP-2026-102928 EXPLOITDB perl WORKING POC
Mozilla Codesighs - Memory Corruption
EIP-2026-102843 EXPLOITDB bash WORKING POC
Geany .18 - Local File Overwrite
EIP-2026-102625 EXPLOITDB text WORKING POC
KDE Konqueror 3.5.9 - JavaScript 'load' Denial of Service
CVE-2009-4413 EXPLOITDB perl WORKING POC
Polipo 0.9.8, 0.9.12, 1.0.4 - Denial of Service via Large Content-Length Request
The httpClientDiscardBody function in client.c in Polipo 0.9.8, 0.9.12, 1.0.4, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a request with a large Content-Length value, which triggers an integer overflow, a signed-to-unsigned conversion error with a negative value, and a segmentation fault.
CVE-2015-3205 EXPLOITDB python WORKING POC
libmimedir - Remote Code Execution via Malformed VCF File
libmimedir allows remote attackers to execute arbitrary code via a VCF file with two NULL bytes at the end of the file, related to "free" function calls in the "lexer's memory clean-up procedure."
CVE-2008-5698 EXPLOITDB html WORKING POC
Konqueror in KDE 3.5.9-3.5.10 - DoS
HTMLTokenizer::scriptHandler in Konqueror in KDE 3.5.9 and 3.5.10 allows remote attackers to cause a denial of service (application crash) via an invalid document.load call that triggers use of a deleted object. NOTE: some of these details are obtained from third party information.
CVE-2008-5712 EXPLOITDB text WORKING POC
KDE Konqueror 3.5.9 - Denial of Service via Long HTML Color Attribute
The HTML parser in KDE Konqueror 3.5.9 allows remote attackers to cause a denial of service (application crash) via (1) a long COLOR attribute in an HR element; or a long (a) BGCOLOR or (b) BORDERCOLOR attribute in a (2) TABLE, (3) TD, or (4) TR element. NOTE: the FONT vector is already covered by CVE-2008-4514.
CVE-2008-5712 EXPLOITDB text WORKING POC
KDE Konqueror 3.5.9 - Denial of Service via Long HTML Color Attribute
The HTML parser in KDE Konqueror 3.5.9 allows remote attackers to cause a denial of service (application crash) via (1) a long COLOR attribute in an HR element; or a long (a) BGCOLOR or (b) BORDERCOLOR attribute in a (2) TABLE, (3) TD, or (4) TR element. NOTE: the FONT vector is already covered by CVE-2008-4514.
CVE-2008-7014 EXPLOITDB perl WORKING POC
fhttpd 0.4.2 - Denial of Service via Malformed Authorization Header
fhttpd 0.4.2 allows remote attackers to cause a denial of service (crash) via an Authorization HTTP header with an invalid character after the Basic value.
EIP-2026-102437 EXPLOITDB ruby WORKING POC
Ajenti 2.1.31 - Remote Code Exection (Metasploit)
EIP-2026-101973 EXPLOITDB python WORKING POC
Seagate Central 2014.0410.0026-F - Remote Facebook Access Token
EIP-2026-101194 EXPLOITDB html WORKING POC
Cisco 871 Integrated Services Router - Cross-Site Request Forgery (1)
EIP-2026-101442 EXPLOITDB python WORKING POC
Seagate Central 2014.0410.0026-F - Remote Command Execution
CVE-2008-4128 EXPLOITDB html WORKING POC
Cisco IOS 12.4 - Cross-Site Request Forgery via HTTP Administration Component
Multiple cross-site request forgery (CSRF) vulnerabilities in the HTTP Administration component in Cisco IOS 12.4 on the 871 Integrated Services Router allow remote attackers to execute arbitrary commands via (1) a certain "show privilege" command to the /level/15/exec/- URI, and (2) a certain "alias exec" command to the /level/15/exec/-/configure/http URI. NOTE: some of these details are obtained from third party information.
EIP-2026-101195 EXPLOITDB html WORKING POC
Cisco 871 Integrated Services Router - Cross-Site Request Forgery (2)