Last Stage of Delirium

44 exploits Active since Feb 1997
CVE-2002-2281 EXPLOITDB text WRITEUP
Symantec Java! JIT - RCE
Symantec Java! JIT (Just-In-Time) Compiler for Netscape Communicator 4.0 through 4.8 allows remote attackers to execute arbitrary Java commands via an applet that uses a jump call, which is not correctly compiled by the JIT compiler.
CVE-2003-0111 EXPLOITDB text WORKING POC
Microsoft VM <5.0.3809 - RCE
The ByteCode Verifier component of Microsoft Virtual Machine (VM) build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise."
CVE-2001-0426 EXPLOITDB c WORKING POC
SUN Solaris - Buffer Overflow
Buffer overflow in dtsession on Solaris, and possibly other operating systems, allows local users to gain privileges via a long LANG environmental variable.
CVE-1999-0046 EXPLOITDB c WORKING POC
Bsdi Bsd OS - Buffer Overflow
Buffer overflow of rlogin program using TERM environmental variable.
CVE-2001-0595 EXPLOITDB c WORKING POC
Sunos - Buffer Overflow
Buffer overflow in the kcsSUNWIOsolf.so library in Solaris 7 and 8 allows local attackers to execute arbitrary commands via the KCMS_PROFILES environment variable, e.g. as demonstrated using the kcms_configure program.
CVE-2001-0010 EXPLOITDB c WORKING POC
BIND 8 - Buffer Overflow
Buffer overflow in transaction signature (TSIG) handling code in BIND 8 allows remote attackers to gain root privileges.
CVE-2001-0236 EXPLOITDB c WORKING POC
SUN Solaris - Buffer Overflow
Buffer overflow in Solaris snmpXdmid SNMP to DMI mapper daemon allows remote attackers to execute arbitrary commands via a long "indication" event.
CVE-2002-0033 EXPLOITDB c WORKING POC
SUN Solaris - Buffer Overflow
Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name.
CVE-1999-1588 EXPLOITDB CRITICAL c WORKING POC
SUN Solaris - Memory Corruption
Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code as root via a long string beginning with "NLPS:002:002:" to the listen (aka System V listener) port, TCP port 2766.
CVSS 9.8
CVE-1999-0040 EXPLOITDB c WORKING POC
SGI Irix - Buffer Overflow
Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.
CVE-1999-0003 EXPLOITDB c WORKING POC
Tritreal Ted Cde - Buffer Overflow
Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).
CVE-2002-1337 EXPLOITDB c WORKING POC
Sendmail <8.12.7 - RCE
Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c.
CVE-2001-0595 EXPLOITDB c WORKING POC
Sunos - Buffer Overflow
Buffer overflow in the kcsSUNWIOsolf.so library in Solaris 7 and 8 allows local attackers to execute arbitrary commands via the KCMS_PROFILES environment variable, e.g. as demonstrated using the kcms_configure program.
EIP-2026-104075 EXPLOITDB c WORKING POC
SGI Advanced Linux Environment 3.0 / SGI IRIX 6.5.4 / SGI UNICOS 10.0 6 - arrayd.auth Default Configuration
EIP-2026-104093 EXPLOITDB text SUSPICIOUS
Sun/Netscape Java Virtual Machine1.x - Bytecode Verifier
CVE-1999-0041 EXPLOITDB c WORKING POC
GNU Libc - Buffer Overflow
Buffer overflow in NLS (Natural Language Service).
CVE-1999-0696 EXPLOITDB c WORKING POC
Hp-ux - Buffer Overflow
Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).
CVE-2003-0896 EXPLOITDB java WORKING POC
Sun SDK/JRE 1.4.1_03 - Code Injection
The loadClass method of the sun.applet.AppletClassLoader class in the Java Virtual Machine (JVM) in Sun SDK and JRE 1.4.1_03 and earlier allows remote attackers to bypass sandbox restrictions and execute arbitrary code via a loaded class name that contains "/" (slash) instead of "." (dot) characters, which bypasses a call to the Security Manager's checkPackageAccess method.
EIP-2026-103813 EXPLOITDB c WORKING POC
SCO Open Server 5.0.5 / IRIX 6.2 ibX11/X11 Toolkit/Athena Widget Library - Local Buffer Overflow
CVE-1999-1488 EXPLOITDB c WORKING POC
IBM SP2 SDR - Info Disclosure
sdrd daemon in IBM SP2 System Data Repository (SDR) allows remote attackers to read files without authentication.
CVE-2001-0010 EXPLOITDB c WORKING POC
BIND 8 - Buffer Overflow
Buffer overflow in transaction signature (TSIG) handling code in BIND 8 allows remote attackers to gain root privileges.
CVE-2002-0652 EXPLOITDB c WORKING POC
xfsmd <6.5.16 - RCE
xfsmd for IRIX 6.5 through 6.5.16 allows remote attackers to execute arbitrary code via shell metacharacters that are not properly filtered from several calls to the popen() function, such as export_fs().
CVE-2003-1358 EXPLOITDB bash WORKING POC
Hp-ux - Access Control
rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by modifying the path to point to a malicious rm program.
CVE-2003-1359 EXPLOITDB c WORKING POC
Hp-ux - Memory Corruption
Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument.
CVE-2000-0795 EXPLOITDB bash WORKING POC
SGI Irix - Buffer Overflow
Buffer overflow in lpstat in IRIX 6.2 and 6.3 allows local users to gain root privileges via a long -n option.