Last Stage of Delirium

44 exploits Active since Feb 1997
CVE-2002-2281 EXPLOITDB text WRITEUP
Symantec Java! JIT Compiler - Remote Code Execution via Jump Call
Symantec Java! JIT (Just-In-Time) Compiler for Netscape Communicator 4.0 through 4.8 allows remote attackers to execute arbitrary Java commands via an applet that uses a jump call, which is not correctly compiled by the JIT compiler.
CVE-2003-0111 EXPLOITDB text WORKING POC
Microsoft Virtual Machine - Remote Code Execution via Malicious Java Applet
The ByteCode Verifier component of Microsoft Virtual Machine (VM) build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise."
CVE-2001-0426 EXPLOITDB c WORKING POC
Solaris - Local Privilege Escalation via LANG Environment Variable
Buffer overflow in dtsession on Solaris, and possibly other operating systems, allows local users to gain privileges via a long LANG environmental variable.
CVE-1999-0046 EXPLOITDB c WORKING POC
BSD/OS - Buffer Overflow via TERM Environment Variable
Buffer overflow of rlogin program using TERM environmental variable.
CVE-2001-0595 EXPLOITDB c WORKING POC
Sunos - Buffer Overflow
Buffer overflow in the kcsSUNWIOsolf.so library in Solaris 7 and 8 allows local attackers to execute arbitrary commands via the KCMS_PROFILES environment variable, e.g. as demonstrated using the kcms_configure program.
CVE-2001-0010 EXPLOITDB c WORKING POC
BIND 8 - Buffer Overflow in TSIG Handling
Buffer overflow in transaction signature (TSIG) handling code in BIND 8 allows remote attackers to gain root privileges.
CVE-2001-0236 EXPLOITDB c WORKING POC
Solaris - Remote Code Execution via SNMP to DMI Mapper Daemon Buffer Overflow
Buffer overflow in Solaris snmpXdmid SNMP to DMI mapper daemon allows remote attackers to execute arbitrary commands via a long "indication" event.
CVE-2002-0033 EXPLOITDB c WORKING POC
Solaris - Remote Code Execution via cfsd_calloc Heap Overflow
Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name.
CVE-1999-1588 EXPLOITDB CRITICAL c WORKING POC
Solaris 2.4-2.5.1 - Remote Code Execution via nlps_server Long String
Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code as root via a long string beginning with "NLPS:002:002:" to the listen (aka System V listener) port, TCP port 2766.
CVSS 9.8
CVE-1999-0040 EXPLOITDB c WORKING POC
SGI IRIX - Buffer Overflow in Xt Library
Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.
CVE-1999-0003 EXPLOITDB c WORKING POC
Tritreal Ted Cde - Buffer Overflow
Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).
CVE-2002-1337 EXPLOITDB c WORKING POC
Sendmail 5.79-8.12.7 - Remote Code Execution via Formatted Address Fields in Header Comments
Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c.
CVE-2001-0595 EXPLOITDB c WORKING POC
Sunos - Buffer Overflow
Buffer overflow in the kcsSUNWIOsolf.so library in Solaris 7 and 8 allows local attackers to execute arbitrary commands via the KCMS_PROFILES environment variable, e.g. as demonstrated using the kcms_configure program.
EIP-2026-104075 EXPLOITDB c WORKING POC
SGI Advanced Linux Environment 3.0 / SGI IRIX 6.5.4 / SGI UNICOS 10.0 6 - arrayd.auth Default Configuration
EIP-2026-104093 EXPLOITDB text SUSPICIOUS
Sun/Netscape Java Virtual Machine1.x - Bytecode Verifier
CVE-1999-0041 EXPLOITDB c WORKING POC
GNU libc - Buffer Overflow in NLS
Buffer overflow in NLS (Natural Language Service).
CVE-1999-0696 EXPLOITDB c WORKING POC
HP-UX and Solaris - Buffer Overflow in CDE Calendar Manager Service Daemon
Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).
CVE-2003-0896 EXPLOITDB java WORKING POC
Sun SDK/JRE 1.4.1_03 - Code Injection
The loadClass method of the sun.applet.AppletClassLoader class in the Java Virtual Machine (JVM) in Sun SDK and JRE 1.4.1_03 and earlier allows remote attackers to bypass sandbox restrictions and execute arbitrary code via a loaded class name that contains "/" (slash) instead of "." (dot) characters, which bypasses a call to the Security Manager's checkPackageAccess method.
EIP-2026-103813 EXPLOITDB c WORKING POC
SCO Open Server 5.0.5 / IRIX 6.2 ibX11/X11 Toolkit/Athena Widget Library - Local Buffer Overflow
CVE-1999-1488 EXPLOITDB c WORKING POC
IBM System Data Repository - Unauthenticated Arbitrary File Read
sdrd daemon in IBM SP2 System Data Repository (SDR) allows remote attackers to read files without authentication.
CVE-2001-0010 EXPLOITDB c WORKING POC
BIND 8 - Buffer Overflow in TSIG Handling
Buffer overflow in transaction signature (TSIG) handling code in BIND 8 allows remote attackers to gain root privileges.
CVE-2002-0652 EXPLOITDB c WORKING POC
IRIX 6.5-6.5.16 - Remote Code Execution via XFSMD Popen Shell Metacharacter Injection
xfsmd for IRIX 6.5 through 6.5.16 allows remote attackers to execute arbitrary code via shell metacharacters that are not properly filtered from several calls to the popen() function, such as export_fs().
CVE-2003-1358 EXPLOITDB bash WORKING POC
HP-UX 10.0-11.22 - Privilege Escalation via PATH Environment Variable Manipulation
rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by modifying the path to point to a malicious rm program.
CVE-2003-1359 EXPLOITDB c WORKING POC
HP-UX 10.0-11.22 - Local Buffer Overflow via stmkfont Command Line Argument
Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument.
CVE-2000-0795 EXPLOITDB bash WORKING POC
IRIX 6.2-6.3 - Local Buffer Overflow via lpstat -n Option
Buffer overflow in lpstat in IRIX 6.2 and 6.3 allows local users to gain root privileges via a long -n option.