Luca Ercoli

13 exploits Active since Jun 2001
EIP-2026-119287 EXPLOITDB html WORKING POC
WinSCP 3.5.6 - Long URI Handling Memory Corruption
CVE-2003-0760 EXPLOITDB c WORKING POC
Blubster 2.5 - Denial of Service via UDP Port 701 Flood
Blubster 2.5 allows remote attackers to cause a denial of service (crash) via a flood of connections to UDP port 701.
EIP-2026-116068 EXPLOITDB c WORKING POC
Piolet Client 1.05 - Remote Denial of Service
EIP-2026-115048 EXPLOITDB c WORKING POC
Chindi Server 1.0 - Denial of Service
EIP-2026-114852 EXPLOITDB c WORKING POC
Activity Monitor 2002 2.6 - Remote Denial of Service
EIP-2026-115106 EXPLOITDB assembly WORKING POC
Crob FTP Server 2.50.4 - Remote 'Username' Format String
EIP-2026-115136 EXPLOITDB c WORKING POC
Desktop Orbiter 2.0 1 - Resource Exhaustion (Denial of Service)
CVE-2005-3640 EXPLOITDB perl WORKING POC
Floosietek FTGate 4.1 - Remote Code Execution via Long IMAP Command Arguments
Multiple buffer overflows in the IMAP Groupware Mail server of Floosietek FTGate (FTGate4) 4.1 allow remote attackers to execute arbitrary code via long arguments to various IMAP commands, as demonstrated with the EXAMINE command.
CVE-2005-1344 EXPLOITDB c WORKING POC
Apache HTTP Server 2.0.52 - Buffer Overflow via Long Realm Argument
Buffer overflow in htdigest in Apache 2.0.52 may allow attackers to execute arbitrary code via a long realm argument. NOTE: since htdigest is normally only locally accessible and not setuid or setgid, there are few attack vectors which would lead to an escalation of privileges, unless htdigest is executed from a CGI program. Therefore this may not be a vulnerability.
EIP-2026-102916 EXPLOITDB perl WORKING POC
Maelstrom Player 3.0.x - Argument Buffer Overflow (1)
CVE-2001-1078 EXPLOITDB c WORKING POC
eXtremail <= 1.1.9 - Format String Vulnerability via SMTP and POP3 Commands
Format string vulnerability in flog function of eXtremail 1.1.9 and earlier allows remote attackers to gain root privileges via format specifiers in the SMTP commands (1) HELO, (2) EHLO, (3) MAIL FROM, or (4) RCPT TO, and the POP3 commands (5) USER and (6) other commands that can be executed after POP3 authentication.
EIP-2026-101033 EXPLOITDB text WRITEUP
LG U8120 Mobile Phone - '.MIDI' File Remote Denial of Service
CVE-2003-0325 EXPLOITDB perl WORKING POC
Maelstrom <= 3.0.6 - Buffer Overflow via Long Server Command Line Argument
Buffer overflow in Maelstrom 3.0.6, 3.0.5, and earlier allows local users to execute arbitrary code via a long -server command line argument.