Luigi Auriemma

568 exploits Active since Feb 2002
EIP-2026-116336 EXPLOITDB text WORKING POC
Sterling Trader 7.0.2 - Integer Overflow
EIP-2026-116347 EXPLOITDB text WRITEUP
sunway ForceControl 6.1 sp3 - Multiple Vulnerabilities
EIP-2026-116391 EXPLOITDB text WRITEUP
TeamSpeak 3.0.0-beta25 - Multiple Vulnerabilities
CVE-2005-0280 EXPLOITDB c WORKING POC
Soldner Secret Wars - Format String Vulnerability via Message Processing
Format string vulnerability in Soldner Secret Wars 30830 and earlier allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via format string specifiers in a message.
CVE-2004-1195 EXPLOITDB c WORKING POC
Star Wars Battlefront 1.11 - Denial of Service via Join Request Memory Address
Star Wars Battlefront 1.11 and earlier allows remote attackers to cause a denial of service (application crash) via a join request that contains a memory address that causes the server to read arbitrary memory.
CVE-2004-1542 EXPLOITDB c WORKING POC
Soldier of Fortune II <= 1.03 Gold - Denial of Service via Long Query or Reply
Buffer overflow in Soldier of Fortune II 1.03 Gold and earlier allows remote attackers to cause a denial of service (server or client crash) via a long (1) query or (2) reply.
EIP-2026-116414 EXPLOITDB text SUSPICIOUS
ToCA Race Driver - Multiple Remote Denial of Service Vulnerabilities
CVE-2005-0568 EXPLOITDB c WORKING POC
Soldier of Fortune II 1.03 gold - Denial of Service via Large cl_guid Value
Soldier of Fortune II 1.03 gold allows remote attackers to cause a denial of service (application crash) via a large cl_guid value, which results in an invalid pointer dereference.
CVE-2005-0984 EXPLOITDB WORKING POC
Star Wars Jedi Knight: Jedi Academy <1.011 - RCE
Buffer overflow in the G_Printf function in Star Wars Jedi Knight: Jedi Academy 1.011 and earlier allows remote attackers to execute arbitrary code via a long message using commands such as (1) say and (2) tell.
CVE-2011-4879 EXPLOITDB text WRITEUP
Siemens WinCC flexible - Information Disclosure and Denial of Service via Crafted POST Request
miniweb.exe in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime does not properly handle URIs beginning with a 0xfa character, which allows remote attackers to read data from arbitrary memory locations or cause a denial of service (application crash) via a crafted POST request.
CVE-2006-2012 EXPLOITDB text WRITEUP
Skulltag < 0.96f - Denial of Service via Version String Format String Vulnerability
Format string vulnerability in Skulltag 0.96f and earlier allows remote attackers to cause a denial of service via the version string.
CVE-2011-4532 EXPLOITDB text WRITEUP
Siemens Automation License Manager < 5.1 - Unauthenticated Arbitrary File Write
Absolute path traversal vulnerability in the ALMListView.ALMListCtrl ActiveX control in almaxcx.dll in the graphical user interface in Siemens Automation License Manager (ALM) 2.0 through 5.1+SP1+Upd2 allows remote attackers to overwrite arbitrary files via the Save method.
CVE-2008-1690 EXPLOITDB text WRITEUP
SLMail Pro <= 6.3.1.0 - Denial of Service via Long URI in HTTP Request
WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a long URI in HTTP requests to TCP port 801. NOTE: some of these details are obtained from third party information.
CVE-2011-0517 EXPLOITDB text WORKING POC
Sielco Sistemi Winlog Pro < 2.07.00 - Remote Code Execution via Crafted 0x02 Opcode
Stack-based buffer overflow in Sielco Sistemi Winlog Pro 2.07.00 and earlier, when Run TCP/IP server is enabled, allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted 0x02 opcode to TCP port 46823.
EIP-2026-116264 EXPLOITDB text WRITEUP
Software602 602 LAN Suite - Multiple Remote Denial of Service Vulnerabilities
EIP-2026-116420 EXPLOITDB text WRITEUP
Torque Game Engine - Multiple Denial of Service Vulnerabilities
CVE-2012-4357 EXPLOITDB text WRITEUP
Winlog Pro < 2.07.17 - Remote Code Execution via Invalid File-Pointer Index
Array index error in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 might allow remote attackers to execute arbitrary code by referencing, within a port-46824 TCP packet, an invalid file-pointer index that leads to execution of an EnterCriticalSection code block.
CVE-2006-1103 EXPLOITDB c WORKING POC
Sauerbraten 2006_02_28 - Denial of Service via Incomplete Client Join Timeout
engine/server.cpp in Sauerbraten 2006_02_28, as derived from the Cube engine, allows remote attackers to cause a denial of service (segmentation fault) via a client that does not completely join the game and times out, which results in a null pointer dereference.
CVE-2005-3488 EXPLOITDB c WORKING POC
Scorched 3D 39.1 (bf) and earlier - Denial of Service via Negative numplayers Value
Scorched 3D 39.1 (bf) and earlier allows remote attackers to cause a denial of service (long loop and server hang) via a negative numplayers value that bypasses a signed check in ServerConnectHandler.cpp.
CVE-2012-4335 EXPLOITDB text WRITEUP
Samsung NET-i viewer 1.37.120316 - Denial of Service via Negative Size Value in TCP Request
Samsung NET-i viewer 1.37.120316 allows remote attackers to cause a denial of service (infinite loop) via a negative size value in a TCP request to (1) NiwMasterService or (2) NiwStorageService. NOTE: some of these details are obtained from third party information.
CVE-2005-0621 EXPLOITDB c WORKING POC
Scrapland 1.0 and earlier - Denial of Service via Error Handling
Scrapland 1.0 and earlier allows remote attackers to cause a denial of service (server termination) by triggering an error, which is treated as a fatal error by the server, as demonstrated using (1) signed integers for size values, (2) an invalid model, (3) a "newpos" value that is less than or equal to a size value, or (4) partial packets.
EIP-2026-116193 EXPLOITDB text WRITEUP
Rocket Software UniData 7.2.7.3806 - Denial of Service
CVE-2011-3489 EXPLOITDB text WORKING POC
Rockwell RSLogix < 19 - Denial of Service via Crafted RNA Packet
RnaUtility.dll in RsvcHost.exe 2.30.0.23 in Rockwell RSLogix 19 and earlier allows remote attackers to cause a denial of service (crash) via a crafted rna packet with a long string to TCP port 4446 that triggers (1) "a memset zero overflow" or (2) an out-of-bounds read, related to improper handling of a 32-bit size field.
CVE-2004-0345 EXPLOITDB c WORKING POC
Red Faction <= 1.20 - Remote Code Execution via Long Server Name
Buffer overflow in Red Faction client 1.20 and earlier allows remote servers to execute arbitrary code via a long server name.
EIP-2026-116211 EXPLOITDB text WORKING POC
Samsung AllShare 2.1.1.0 - Null Pointer Dereference