Luigi Auriemma

568 exploits Active since Feb 2002
EIP-2026-115882 EXPLOITDB text SUSPICIOUS
Multiple Tripwire Interactive Games - 'STEAMCLIENTBLOB' Multiple Denial of Service Vulnerabilities
CVE-2005-3064 EXPLOITDB c WORKING POC
MultiTheftAuto <0.5 - Command Injection
MultiTheftAuto 0.5 patch 1 and earlier does not properly verify client privileges when running command 40, which allows remote attackers to change or delete the message of the day (motd.txt).
EIP-2026-115908 EXPLOITDB text WRITEUP
NCSS 07.1.21 - Array Overflow with Write2
CVE-2004-2099 EXPLOITDB c WORKING POC
Need for Speed Hot Pursuit 2.0 <242 - Buffer Overflow
Buffer overflow in Need for Speed Hot Pursuit 2.0 client (NFSHP2), version 242 and earlier, allows remote attackers (servers) to execute arbitrary code via long (1) gamename, (2) gamever, (3) hostname, (4) gametype, (5) mapname or (6) gamemode commands.
CVE-2005-2295 EXPLOITDB c WORKING POC
Pyrosoft Netpanzer - Denial of Service
NetPanzer 0.8 and earlier allows remote attackers to cause a denial of service (infinite loop) via a packet with a zero datablock size.
CVE-2007-1251 EXPLOITDB text WRITEUP
Netrek Vanilla Server 2.12.0 - RCE
Format string vulnerability in the new_warning function in ntserv/warning.c for Netrek Vanilla Server 2.12.0, when EVENTLOG is enabled, allows remote attackers to cause a denial of service (crash) or execute arbitrary code via format string specifiers in the message handling.
EIP-2026-115930 EXPLOITDB text WRITEUP
NetVault: SmartDisk 1.2 - 'libnvbasics.dll' Remote Denial of Service
EIP-2026-115937 EXPLOITDB c WORKING POC
Neverwinter Nights special - Fake Players Denial of Service
EIP-2026-115964 EXPLOITDB text WRITEUP
Novell Groupwise Messenger 2.1.0 - Arbitrary Memory Corruption
EIP-2026-115965 EXPLOITDB text WRITEUP
Novell Groupwise Messenger 2.1.0 - Memory Corruption
EIP-2026-115966 EXPLOITDB text WRITEUP
Novell Groupwise Messenger Client 2.1.0 - Unicode Stack Overflow
CVE-2003-0765 EXPLOITDB text WRITEUP
Winamp <2.91 - RCE
The IN_MIDI.DLL plugin 3.01 and earlier, as used in Winamp 2.91, allows remote attackers to execute arbitrary code via a MIDI file with a large "Track data size" value.
CVE-2011-4871 EXPLOITDB text WORKING POC
Opcsystems.net < 4.0 - Improper Input Validation
Open Automation Software OPC Systems.NET before 5.0 allows remote attackers to cause a denial of service via a malformed .NET RPC packet on TCP port 58723.
CVE-2006-4192 EXPLOITDB c WORKING POC
Modplug Tracker < 1.17.02.43 - Buffer Overflow
Multiple buffer overflows in MODPlug Tracker (OpenMPT) 1.17.02.43 and earlier and libmodplug 0.8 and earlier, as used in GStreamer and possibly other products, allow user-assisted remote attackers to execute arbitrary code via (1) long strings in ITP files used by the CSoundFile::ReadITProject function in soundlib/Load_it.cpp and (2) crafted modules used by the CSoundFile::ReadSample function in soundlib/Sndfile.cpp, as demonstrated by crafted AMF files.
CVE-2012-5049 EXPLOITDB text WRITEUP
Optimalog Optima PLC <1.5.2 - DoS
APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
CVE-2006-2402 EXPLOITDB text SUSPICIOUS
Outgun < 1.0.3_bot_2 - Buffer Overflow
Buffer overflow in the changeRegistration function in servernet.cpp for Outgun 1.0.3 bot 2 and earlier allows remote attackers to change the registration information of other players via a long string.
CVE-2004-1745 EXPLOITDB c WORKING POC
People CAN FLY Painkiller - Buffer Overflow
Buffer overflow in Painkiller 1.3.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password.
CVE-2005-0330 EXPLOITDB c WORKING POC
People CAN FLY Painkiller - Buffer Overflow
Buffer overflow in Painkiller 1.35 and earlier, and possibly other versions before 1.61, allows remote authenticated users to cause a denial of service and possibly execute arbitrary code via a long cd-key hash.
CVE-2011-4045 EXPLOITDB text WRITEUP
ARC Informatique PcVue <10.0 - Buffer Overflow
Buffer overflow in an unspecified ActiveX control in aipgctl.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to cause a denial of service via a crafted HTML document.
CVE-2008-1303 EXPLOITDB text WRITEUP
Perforce Server <2007.3/143793 - DoS
The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a missing parameter to the (1) dm-FaultFile, (2) dm-LazyCheck, (3) dm-ResolvedFile, (4) dm-OpenFile, (5) crypto, and possibly unspecified other commands, which triggers a NULL pointer dereference.
CVE-2004-1688 EXPLOITDB c WORKING POC
Tech-noel Pigeon Server - Denial of Service
Pigeon Server 3.02.0143 and earlier allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a long login name sent to port 3103.
CVE-2004-1698 EXPLOITDB c WORKING POC
Leadmind Popmessenger - Denial of Service
The Base64 function in PopMessenger 1.60 (before 20 Sep 2004) and earlier allows remote attackers to cause a denial of service (application crash) via invalid characters in a message, which causes several alert dialogs to be displayed and leads to a crash.
EIP-2026-116087 EXPLOITDB text WORKING POC
PowerDVD 11.0.0.2114 - Remote Denial of Service
EIP-2026-116090 EXPLOITDB text WRITEUP
PowerNet Twin Client 8.9 - 'RFSync 1.0.0.1' Crash (PoC)
CVE-2012-3797 EXPLOITDB text WRITEUP
Pro-face Pro-server EX < 1.30.000 - Memory Corruption
Pro-face WinGP PC Runtime 3.1.00 and earlier, and ProServr.exe in Pro-face Pro-Server EX 1.30.000 and earlier, does not properly check packet sizes before reusing packet memory buffers, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a short crafted packet with a certain opcode.