Luigi Auriemma

568 exploits Active since Feb 2002
EIP-2026-115543 EXPLOITDB c WORKING POC
LeadMind Pop Messenger 1.60 - Illegal Character Remote Denial of Service
CVE-2008-0764 EXPLOITDB text WORKING POC
Larson Network Print Server < 9.4.2 - Remote Code Execution via Format String in USEP Command
Format string vulnerability in the logging function in Larson Network Print Server (LstNPS) 9.4.2 build 105 and earlier for Windows might allow remote attackers to execute arbitrary code via format string specifiers in a USEP command on TCP port 3114.
CVE-2008-0763 EXPLOITDB text WORKING POC
Larson Network Print Server < 9.4.2 - Remote Code Execution via Long LICENSE Command
Stack-based buffer overflow in NPSpcSVR.exe in Larson Network Print Server (LstNPS) 9.4.2 build 105 and earlier allows remote attackers to execute arbitrary code via a long argument in a LICENSE command on TCP port 3114.
CVE-2004-1216 EXPLOITDB c WORKING POC
Kreed <= 1.05 - Denial of Service via Long Nickname or Model Type
The scripts that handle players in Kreed 1.05 and earlier allow remote attackers to cause a denial of service (server freeze) via a long (1) nickname or (2) model type, which generates dialog boxes on the server that must be manually handled before the server continues the game.
EIP-2026-115479 EXPLOITDB c WORKING POC
Jana Server 2.4.4 - 'http/pna' Denial of Service
CVE-2008-0944 EXPLOITDB text WRITEUP
Ipswitch Instant Messaging <= 2.0.8.1 - Denial of Service via Version Field
Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote attackers to cause a denial of service (NULL dereference and application crash) via a version field containing zero.
EIP-2026-115432 EXPLOITDB c WORKING POC
Impressions Games Lords of the Realm III - Nickname Remote Denial of Service
EIP-2026-115423 EXPLOITDB text WRITEUP
iconics genesis32 and genesis64 - Multiple Vulnerabilities
CVE-2008-1842 EXPLOITDB text WRITEUP
HP OpenView Network Node Manager <8.01 - Buffer Overflow
Integer signedness error in ovspmd.exe in HP OpenView Network Node Manager (OV NNM) 8.01, and 7.53 and earlier, allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code via a long request to TCP port 8886 that begins with a certain negative integer, which passes a signed comparison and triggers a heap-based buffer overflow.
CVE-2008-3544 EXPLOITDB text WORKING POC
HP OpenView Network Node Manager <7.51 - Buffer Overflow
Multiple stack-based buffer overflows in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51, and possibly 7.01, 7.50, and 7.53, allow remote attackers to execute arbitrary code via a long (1) REQUEST_SEV_CHANGE (aka number 47), (2) REQUEST_SAVE_STATE (aka number 61), or (3) REQUEST_RESTORE_STATE (aka number 62) request to TCP port 2954.
CVE-2004-1539 EXPLOITDB c WORKING POC
Halo: Combat Evolved <= 1.05 - Denial of Service via Long Game Server Reply
Halo: Combat Evolved 1.05 and earlier allows remote game servers to cause a denial of service (client crash) via a long value in a game server reply, which triggers a NULL dereference.
CVE-2004-1751 EXPLOITDB c WORKING POC
Ground Control II: Operation Exodus - Denial of Service via Large Packet
Ground Control II: Operation Exodus 1.0.0.7 and earlier allows remote servers to cause a denial of service (client or server crash) via a large packet, which generates a "Message too long" socket error that is treated as a critical error.
EIP-2026-115359 EXPLOITDB c WORKING POC
Gore 1.50 - Socket Unreacheable Denial of Service
EIP-2026-115330 EXPLOITDB c WORKING POC
GO-Global Windows Server 3.1.0.3270 - Buffer Overflow (PoC)
CVE-2005-3483 EXPLOITDB c WORKING POC
GO-Global for Windows <= 3.1.0.3270 - Remote Code Execution via Oversized Data Block
Buffer overflow in GO-Global for Windows 3.1.0.3270 and earlier allows remote attackers to execute arbitrary code via a data block that is longer than the specified data block size.
CVE-2006-2413 EXPLOITDB text WORKING POC
GNUnet < 0.7.0d - Denial of Service via Empty UDP Datagram
GNUnet before SVN revision 2781 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an empty UDP datagram, possibly involving FIONREAD errors.
CVE-2005-3485 EXPLOITDB c WORKING POC
Glider Collect'n kill 1.0.0.0 - Remote Code Execution via Long Player Name in gl_playerEnter Command
Buffer overflow in Glider Collect'n kill 1.0.0.0 allows remote attackers to execute arbitrary code via a gl_playerEnter command with a long player name.
EIP-2026-115327 EXPLOITDB text WRITEUP
Ghost Recon Advanced Warfighter - Integer Overflow / Array Indexing Overflow
EIP-2026-115322 EXPLOITDB text WRITEUP
GenStat 14.1.0.5943 - Multiple Vulnerabilities
CVE-2008-7126 EXPLOITDB text WRITEUP
Micro Focus VisiBroker < 08.00.00.c1.03 - Remote Code Execution via UDP Packet Integer Overflow
Integer overflow in osagent.exe in Borland VisiBroker Smart Agent 08.00.00.C1.03 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet with a large string length value to UDP port 14000, which triggers a heap-based buffer overflow.
CVE-2005-1741 EXPLOITDB text WRITEUP
Halo: Combat Evolved 1.6 - Denial of Service via Malformed Data
Gearbox Software Halo: Combat Evolved 1.6 allows remote attackers to cause a denial of service (infinite loop) via malformed data.
EIP-2026-115321 EXPLOITDB text WRITEUP
Gearbox Software Halo Combat Evolved 1.x - Game Server Remote Denial of Service
CVE-2005-0848 EXPLOITDB text WRITEUP
Funlabs 4x4 Off-road Adventure Iii - Denial of Service
Multiple games developed by FUN labs, including 4X4 Off-road Adventure III, Big Game Hunter, Dangerous Hunts, Deer Hunt, Revolution, Secret Service, Shadow Force, and US Most Wanted, allow remote attackers to cause a denial of service via an empty UDP packet to the server, which cannot detect that a new packet has arrived using the socket ioctl.
CVE-2007-5256 EXPLOITDB text WORKING POC
FSD 2.052 d9 and earlier - Remote Code Execution via Long HELP Command
Multiple stack-based buffer overflows in FSD 2.052 d9 and earlier, and FSFDT FSD 3.000 d9 and earlier, allow (1) remote attackers to execute arbitrary code via a long HELP command on TCP port 3010 to the sysuser::exechelp function in sysuser.cc and (2) remote authenticated users to execute arbitrary code via long commands on TCP port 6809 to the servinterface::sendmulticast function in servinterface.cc, as demonstrated by a PIcallsign command.
CVE-2006-0047 EXPLOITDB c WORKING POC
Freeciv < 2.0.8 - Denial of Service via Crafted Packets with Negative Compressed Size
packets.c in Freeciv 2.0 before 2.0.8 allows remote attackers to cause a denial of service (server crash) via crafted packets with negative compressed size values.