Luigi Auriemma

568 exploits Active since Feb 2002
CVE-2010-4057 EXPLOITDB text WRITEUP
IBM solidDB <= 6.5.0.3 - Denial of Service via Malformed Packet Data
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing many integer fields with two different values, which allows remote attackers to cause a denial of service (invalid memory access and daemon crash) via a TCP session on port 1315.
EIP-2026-103515 EXPLOITDB text SUSPICIOUS
IBM solidDB 6.0.10 - Format String / Denial of Service
EIP-2026-103453 EXPLOITDB text WRITEUP
Easy File Sharing Web Server 1.3x/4.5 - Directory Traversal / Multiple Information Disclosure Vulnerabilities
CVE-2006-0304 EXPLOITDB text WRITEUP
Dual DHCP DNS Server 1.0 - Buffer Overflow via DHCP Options Field
Buffer overflow in Dual DHCP DNS Server 1.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via the DHCP options field.
CVE-2006-1618 EXPLOITDB text WORKING POC
Doomsday 1.8.6 - Remote Code Execution via Format String in JOIN Command
Format string vulnerability in the (1) Con_message and (2) conPrintf functions in con_main.c in Doomsday engine 1.8.6 allows remote attackers to execute arbitrary code via format string specifiers in an argument to the JOIN command, and possibly other command arguments.
EIP-2026-103448 EXPLOITDB text WRITEUP
Digital Illusions CE Codename Eagle - Remote Denial of Service
CVE-2006-4126 EXPLOITDB text WRITEUP
DConnect Daemon <= 0.7.0 - Denial of Service via Null Pointer Dereference in dc_chat Function
The dc_chat function in cmd.dc.c in DConnect Daemon 0.7.0 and earlier allows remote attackers to cause a denial of service (application crash) by sending a client message before providing the nickname, which triggers a null pointer dereference.
CVE-2007-5265 EXPLOITDB text WRITEUP
dawn_of_time < 1.69s_beta4 - Remote Code Execution via Format String in Username or Password
Multiple format string vulnerabilities in websrv.cpp in Dawn of Time 1.69s beta4 and earlier allow remote attackers to execute arbitrary code via format string specifiers in the (1) username or (2) password fields when accessing certain "restricted zones", which are not properly handled by the (a) processWebHeader and (b) filterWebRequest functions.
CVE-2008-0756 EXPLOITDB text WRITEUP
cyan soft cyanPrintIP and Opium OPI Server - Denial of Service via LPD Command 3 or 4
The LPD server in cyan soft Opium OPI Server 4.10.1028 and earlier; cyanPrintIP Easy OPI, Professional, and Basic 4.10.1030 and earlier; Workstation 4.10.836 and earlier; and Standard 4.10.940 and earlier; allows remote attackers to cause a denial of service (daemon crash) via a connection that begins with (1) a "Send queue state" LPD command 3 or (2) a "Send queue state" LPD command 4.
EIP-2026-103445 EXPLOITDB text WORKING POC
Crysis 1.21/1.5 - HTTP/XML-RPC Service Access Violation Remote Denial of Service
CVE-2008-6712 EXPLOITDB text WORKING POC
Crysis < 1.21 - Denial of Service via Long HTTP Request
The HTTP/XML-RPC service in Crysis 1.21 (game version 1.1.1.6156) and earlier allows remote attackers to cause a denial of service (crash) via a long HTTP request, which triggers a NULL pointer dereference.
EIP-2026-103444 EXPLOITDB text WRITEUP
Combat Evolved 1.0.7.0615 - Multiple Denial of Service Vulnerabilities
EIP-2026-103442 EXPLOITDB text WRITEUP
Colin McRae Rally 2004 - Multiplayer Denial of Service
CVE-2011-5009 EXPLOITDB text WORKING POC
3S CoDeSys 3.4 SP4 Patch 2 - Denial of Service via Crafted HTTP Request
The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service (NULL pointer dereference) via (1) a crafted Content-Length in an HTTP POST or (2) an invalid HTTP request method.
CVE-2011-5009 EXPLOITDB text WORKING POC
3S CoDeSys 3.4 SP4 Patch 2 - Denial of Service via Crafted HTTP Request
The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service (NULL pointer dereference) via (1) a crafted Content-Length in an HTTP POST or (2) an invalid HTTP request method.
CVE-2007-4838 EXPLOITDB text WRITEUP
CellFactor Revolution < 1.03 - Remote Code Execution via Long Packet String
Multiple buffer overflows in CellFactor Revolution 1.03 and earlier allow remote attackers to execute arbitrary code via a long string in a (1) 0x21, (2) 0x22, or (3) 0x23 packet.
CVE-2004-0247 EXPLOITDB text WRITEUP
Chaser 1.50 - Denial of Service via Malformed UDP Packet Length Field
The client and server of Chaser 1.50 and earlier allow remote attackers to cause a denial of service (crash via exception) via a UDP packet with a length field that is greater than the actual data length, which causes Chaser to read unexpected memory.
CVE-2004-0247 EXPLOITDB text WRITEUP
Chaser 1.50 - Denial of Service via Malformed UDP Packet Length Field
The client and server of Chaser 1.50 and earlier allow remote attackers to cause a denial of service (crash via exception) via a UDP packet with a length field that is greater than the actual data length, which causes Chaser to read unexpected memory.
CVE-2006-5058 EXPLOITDB text WRITEUP
Call of Duty <1.5b - Buffer Overflow
Buffer overflow in (1) Call of Duty 1.5b and earlier, (2) Call of Duty United Offensive 1.51b and earlier, and (3) Call of Duty 2 1.3 and earlier allows remote attackers to execute arbitrary code via a long map argument to the "callvote map" command.
CVE-2008-2106 EXPLOITDB text WRITEUP
Call of Duty 4 < 1.5 - Authenticated Denial of Service via Type 7 Stats Packet
Call of Duty 4 (CoD4) 1.5 and earlier allows remote authenticated users to cause a denial of service (crash) via a type 7 stats packet, which triggers a memcpy with a negative value.
CVE-2004-1664 EXPLOITDB c WORKING POC
Call of Duty <= 1.4 - Denial of Service via Large Query or Reply Packet
Call of Duty 1.4 and earlier allows remote attackers to cause a denial of service (game end) via a large (1) query or (2) reply packet, which is not properly handled by the buffer overflow protection mechanism. NOTE: this issue might overlap CVE-2005-0430.
CVE-2005-4584 EXPLOITDB c WORKING POC
bzflag_server < 2.0.4 - Denial of Service via Malformed Callsign
BZFlag server 2.0.4 and earlier allows remote attackers to cause a denial of service (application crash) via a callsign that is not followed by a NULL (\0) character.
EIP-2026-103426 EXPLOITDB text WRITEUP
Borland StarTeam 2008 10.0.57 - Multiple Remote Vulnerabilities
EIP-2026-103423 EXPLOITDB text WRITEUP
Battlefield 2/2142 - Packet Null Pointer Dereference Remote Denial of Service
CVE-2007-4508 EXPLOITDB text WRITEUP
Rebellion Asura engine - Buffer Overflow
Stack-based buffer overflow in Rebellion Asura engine, as used for the server in Rogue Trooper 1.0 and earlier and Prism 1.1.1.0 and earlier, allows remote attackers to execute arbitrary code via a long string in a 0xf007 packet for the challenge B query.