Luigi Auriemma

568 exploits Active since Feb 2002
EIP-2026-116336 EXPLOITDB text WORKING POC
Sterling Trader 7.0.2 - Integer Overflow
EIP-2026-116347 EXPLOITDB text WRITEUP
sunway ForceControl 6.1 sp3 - Multiple Vulnerabilities
EIP-2026-116391 EXPLOITDB text WRITEUP
TeamSpeak 3.0.0-beta25 - Multiple Vulnerabilities
CVE-2005-0280 EXPLOITDB c WORKING POC
Jowood Productions Soldner Secret Wars - Denial of Service
Format string vulnerability in Soldner Secret Wars 30830 and earlier allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via format string specifiers in a message.
CVE-2004-1195 EXPLOITDB c WORKING POC
Lucasarts Star Wars Battlefront - Denial of Service
Star Wars Battlefront 1.11 and earlier allows remote attackers to cause a denial of service (application crash) via a join request that contains a memory address that causes the server to read arbitrary memory.
CVE-2004-1542 EXPLOITDB c WORKING POC
Raven Software Soldier OF Fortune - Buffer Overflow
Buffer overflow in Soldier of Fortune II 1.03 Gold and earlier allows remote attackers to cause a denial of service (server or client crash) via a long (1) query or (2) reply.
EIP-2026-116414 EXPLOITDB text SUSPICIOUS
ToCA Race Driver - Multiple Remote Denial of Service Vulnerabilities
CVE-2005-0568 EXPLOITDB c WORKING POC
Raven Software Soldier OF Fortune 2 - Denial of Service
Soldier of Fortune II 1.03 gold allows remote attackers to cause a denial of service (application crash) via a large cl_guid value, which results in an invalid pointer dereference.
CVE-2005-0984 EXPLOITDB WORKING POC
Star Wars Jedi Knight: Jedi Academy <1.011 - RCE
Buffer overflow in the G_Printf function in Star Wars Jedi Knight: Jedi Academy 1.011 and earlier allows remote attackers to execute arbitrary code via a long message using commands such as (1) say and (2) tell.
CVE-2011-4879 EXPLOITDB text WRITEUP
Siemens Wincc Flexible < v11 - Improper Input Validation
miniweb.exe in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime does not properly handle URIs beginning with a 0xfa character, which allows remote attackers to read data from arbitrary memory locations or cause a denial of service (application crash) via a crafted POST request.
CVE-2006-2012 EXPLOITDB text WRITEUP
Skulltag < 0.96f - Denial of Service
Format string vulnerability in Skulltag 0.96f and earlier allows remote attackers to cause a denial of service via the version string.
CVE-2011-4532 EXPLOITDB text WRITEUP
Siemens Automation License Manager < 5.1 - Path Traversal
Absolute path traversal vulnerability in the ALMListView.ALMListCtrl ActiveX control in almaxcx.dll in the graphical user interface in Siemens Automation License Manager (ALM) 2.0 through 5.1+SP1+Upd2 allows remote attackers to overwrite arbitrary files via the Save method.
CVE-2008-1690 EXPLOITDB text WRITEUP
WebContainer.exe <1.0.0.336 - DoS
WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a long URI in HTTP requests to TCP port 801. NOTE: some of these details are obtained from third party information.
CVE-2011-0517 EXPLOITDB text WORKING POC
Sielcosistemi Winlog Pro < 2.07.00 - Memory Corruption
Stack-based buffer overflow in Sielco Sistemi Winlog Pro 2.07.00 and earlier, when Run TCP/IP server is enabled, allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted 0x02 opcode to TCP port 46823.
EIP-2026-116264 EXPLOITDB text WRITEUP
Software602 602 LAN Suite - Multiple Remote Denial of Service Vulnerabilities
EIP-2026-116420 EXPLOITDB text WRITEUP
Torque Game Engine - Multiple Denial of Service Vulnerabilities
CVE-2012-4357 EXPLOITDB text WRITEUP
Sielcosistemi Winlog Pro < 2.07.16 - Improper Input Validation
Array index error in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 might allow remote attackers to execute arbitrary code by referencing, within a port-46824 TCP packet, an invalid file-pointer index that leads to execution of an EnterCriticalSection code block.
CVE-2006-1103 EXPLOITDB c WORKING POC
Sauerbraten Cube - Denial of Service
engine/server.cpp in Sauerbraten 2006_02_28, as derived from the Cube engine, allows remote attackers to cause a denial of service (segmentation fault) via a client that does not completely join the game and times out, which results in a null pointer dereference.
CVE-2005-3488 EXPLOITDB c WORKING POC
Scorched 3D - Denial of Service
Scorched 3D 39.1 (bf) and earlier allows remote attackers to cause a denial of service (long loop and server hang) via a negative numplayers value that bypasses a signed check in ServerConnectHandler.cpp.
CVE-2012-4335 EXPLOITDB text WRITEUP
Samsung Net-i Viewer - Memory Corruption
Samsung NET-i viewer 1.37.120316 allows remote attackers to cause a denial of service (infinite loop) via a negative size value in a TCP request to (1) NiwMasterService or (2) NiwStorageService. NOTE: some of these details are obtained from third party information.
CVE-2005-0621 EXPLOITDB c WORKING POC
Enlight Software Scrapland - Denial of Service
Scrapland 1.0 and earlier allows remote attackers to cause a denial of service (server termination) by triggering an error, which is treated as a fatal error by the server, as demonstrated using (1) signed integers for size values, (2) an invalid model, (3) a "newpos" value that is less than or equal to a size value, or (4) partial packets.
EIP-2026-116193 EXPLOITDB text WRITEUP
Rocket Software UniData 7.2.7.3806 - Denial of Service
CVE-2011-3489 EXPLOITDB text WORKING POC
Rockwell RSLogix <19 - DoS
RnaUtility.dll in RsvcHost.exe 2.30.0.23 in Rockwell RSLogix 19 and earlier allows remote attackers to cause a denial of service (crash) via a crafted rna packet with a long string to TCP port 4446 that triggers (1) "a memset zero overflow" or (2) an out-of-bounds read, related to improper handling of a 32-bit size field.
CVE-2004-0345 EXPLOITDB c WORKING POC
Red Faction client <1.20 - RCE
Buffer overflow in Red Faction client 1.20 and earlier allows remote servers to execute arbitrary code via a long server name.
EIP-2026-116211 EXPLOITDB text WORKING POC
Samsung AllShare 2.1.1.0 - Null Pointer Dereference