Luigi Auriemma

568 exploits Active since Feb 2002
CVE-2008-1322 EXPLOITDB text WRITEUP
ASG-Sentry Network Mgr <7.0.0 - DoS
The File Check Utility (fcheck.exe) in ASG-Sentry Network Manager 7.0.0 and earlier allows remote attackers to cause a denial of service (CPU consumption) or overwrite arbitrary files via a query string that specifies the -b option, probably due to an argument injection vulnerability.
EIP-2026-103402 EXPLOITDB text WORKING POC
America's Army 3.0.4 - Invalid Query Remote Denial of Service
CVE-2007-4754 EXPLOITDB text WRITEUP
COR Entertainment Alien Arena 2007 - Format String Vulnerability
Format string vulnerability in the safe_bprintf function in acesrc/acebot_cmds.c in Alien Arena 2007 6.10 and earlier allows remote attackers to cause a denial of service (daemon crash) via format string specifiers in a nickname.
EIP-2026-103386 EXPLOITDB text WORKING POC
Acronis True Image Echo Enterprise Server 9.5.0.8072 - Multiple Remote Denial of Service Vulnerabilities
CVE-2006-1275 EXPLOITDB text WORKING POC
GGZ Gaming Zone 0.0.12 - DoS
GGZ Gaming Zone 0.0.12 allows remote attackers to cause a denial of service (client disconnect) via inputs that produce malformed XML, including (1) trailing ' (apostrophe) character on the ID attribute in a PLAYER XML tag, (2) joining with a long ID attribute or non-trailing ' characters, which causes a <none> name to be assigned, and then disconnecting, or (3) a long CDATA message attribute, which prevents closing tags from being added to the string.
EIP-2026-103476 EXPLOITDB text SUSPICIOUS
GetWare Web Server Component - Content-Length Value Remote Denial of Service
EIP-2026-103475 EXPLOITDB text WRITEUP
Gearbox Software Halo Game 1.x - Client Remote Denial of Service
CVE-2008-0151 EXPLOITDB text WRITEUP
Foxitsoftware Wac Server - Memory Corruption
Heap-based buffer overflow in Foxit WAC Server 2.1.0.910, 2.0 Build 3503, and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a Telnet request with long options.
CVE-2008-7031 EXPLOITDB text WRITEUP
Foxitsoftware Wac Server - Memory Corruption
Heap-based buffer overflow in Foxit Remote Access Server (aka WAC Server) 2.0 Build 3503 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long SSH packets, a different vulnerability than CVE-2008-0151.
EIP-2026-103470 EXPLOITDB text WORKING POC
FlexNet License Server Manager - Stack Overflow In lmgrd
EIP-2026-103467 EXPLOITDB text WRITEUP
Firefly Studios Stronghold 2 - Remote Denial of Service
CVE-2006-4024 EXPLOITDB c WORKING POC
Festalon < 0.5.5 - Denial of Service
The FESTAHES_Load function in pce/hes.c in Festalon 0.5.0 through 0.5.5 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a negative LoadAddr value in a HES file, which is used as an offset in a memcpy operation and leads to a buffer underflow.
CVE-2004-1805 EXPLOITDB text WRITEUP
Epic Games Unreal Engine - Denial of Service
Format string vulnerability in games using the Epic Games Unreal Engine 436 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in class names.
CVE-2007-4442 EXPLOITDB text WRITEUP
Unreal Engine - Buffer Overflow
Stack-based buffer overflow in the logging function in the Unreal engine, possibly 2003 and 2004, as used in the internal web server, allows remote attackers to cause a denial of service (application crash) via a request for a long .gif filename in the images/ directory, related to conversion from Unicode to ASCII.
CVE-2006-1194 EXPLOITDB c WORKING POC
ENet < Jul 2005 - DoS
Integer signedness error in the enet_protocol_handle_incoming_commands function in protocol.c for ENet library CVS version Jul 2005 and earlier, as used in products including (1) Cube, (2) Sauerbraten, and (3) Duke3d_w32, allows remote attackers to cause a denial of service (application crash) via a packet with a large command length value, which leads to an invalid memory access.
EIP-2026-103458 EXPLOITDB text WORKING POC
EMC NetWorker 7.6 sp3 - Denial of Service
CVE-2008-6195 EXPLOITDB text WRITEUP
Landesk Management Suite < 8.80.1.1 - Path Traversal
Directory traversal vulnerability in the PXE TFTP Service (PXEMTFTP.exe) in LANDesk Management Suite (LDMS) 8.80.1.1 and earlier allows remote attackers to read arbitrary files via a subdirectory name followed by ".." sequences, a different vulnerability than CVE-2008-1643.
CVE-2008-0096 EXPLOITDB text WRITEUP
Georgia Softworks Ssh2 Server < 7.01.0003 - Memory Corruption
Multiple buffer overflows in Georgia SoftWorks SSH2 Server (GSW_SSHD) 7.01.0003 and earlier allow remote attackers to execute arbitrary code via a (1) a long username, which triggers an overflow in the log function; or (2) a long password.
CVE-2007-4642 EXPLOITDB text WRITEUP
Doomsday 1.9.0-beta5.1 - Buffer Overflow
Multiple buffer overflows in Doomsday (aka deng) 1.9.0-beta5.1 and earlier allow remote attackers to execute arbitrary code via a long chat (PKT_CHAT) message that is not properly handled by the (1) D_NetPlayerEvent function in d_net.c or the (2) Msg_Write function in net_msg.c, or (3) many commands that are not properly handled by the NetSv_ReadCommands function in d_netsv.c; or (4) cause a denial of service (daemon crash) via a chat (PKT_CHAT) message without a final '\0' character.
CVE-2006-4006 EXPLOITDB c WORKING POC
Bomberclone < 0.11.6 - Information Disclosure
The do_gameinfo function in BomberClone 0.11.6 and earlier, and possibly other functions, does not reset the packet data size, which causes the send_pkg function (packets.c) to use this data size when sending a reply, and allows remote attackers to read portions of server memory.
CVE-2008-1482 EXPLOITDB c WORKING POC
xine-lib <1.1.11 - RCE
Multiple integer overflows in xine-lib 1.1.11 and earlier allow remote attackers to trigger heap-based buffer overflows and possibly execute arbitrary code via (1) a crafted .FLV file, which triggers an overflow in demuxers/demux_flv.c; (2) a crafted .MOV file, which triggers an overflow in demuxers/demux_qt.c; (3) a crafted .RM file, which triggers an overflow in demuxers/demux_real.c; (4) a crafted .MVE file, which triggers an overflow in demuxers/demux_wc3movie.c; (5) a crafted .MKV file, which triggers an overflow in demuxers/ebml.c; or (6) a crafted .CAK file, which triggers an overflow in demuxers/demux_film.c.
CVE-2006-3581 EXPLOITDB c WORKING POC
Audacious Media Player Team Adplug < 2.0 - Memory Corruption
Multiple stack-based buffer overflows in Audacious AdPlug 2.0 and earlier allow remote user-assisted attackers to execute arbitrary code via large (1) DTM and (2) S3M files.
CVE-2012-6083 EXPLOITDB HIGH text WRITEUP
Freeciv < 2.3.3 - Denial of Service
Freeciv before 2.3.3 allows remote attackers to cause a denial of service via a crafted packet.
CVSS 7.5
CVE-2007-6731 EXPLOITDB c WORKING POC
XMP 2.5.1 - RCE
Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm functions in misc/oxm.c, leading to a buffer overflow.
CVE-2007-6609 EXPLOITDB text WORKING POC
CoolPlayer <217 - Buffer Overflow
Multiple stack-based buffer overflows in the CPLI_ReadTag_OGG function in CPI_PlaylistItem.c in CoolPlayer 217 and earlier allow user-assisted remote attackers to execute arbitrary code via a long (1) cTag or (2) cValue field in an OGG Vorbis file.