Luigi Auriemma

568 exploits Active since Feb 2002
CVE-2008-1322 EXPLOITDB text WRITEUP
ASG-Sentry Network Mgr <7.0.0 - DoS
The File Check Utility (fcheck.exe) in ASG-Sentry Network Manager 7.0.0 and earlier allows remote attackers to cause a denial of service (CPU consumption) or overwrite arbitrary files via a query string that specifies the -b option, probably due to an argument injection vulnerability.
EIP-2026-103402 EXPLOITDB text WORKING POC
America's Army 3.0.4 - Invalid Query Remote Denial of Service
CVE-2007-4754 EXPLOITDB text WRITEUP
Alien Arena 2007 < 6.10 - Denial of Service via Format String in Nickname
Format string vulnerability in the safe_bprintf function in acesrc/acebot_cmds.c in Alien Arena 2007 6.10 and earlier allows remote attackers to cause a denial of service (daemon crash) via format string specifiers in a nickname.
EIP-2026-103386 EXPLOITDB text WORKING POC
Acronis True Image Echo Enterprise Server 9.5.0.8072 - Multiple Remote Denial of Service Vulnerabilities
CVE-2006-1275 EXPLOITDB text WORKING POC
GGZ Gaming Zone 0.0.12 - Denial of Service via Malformed XML Input
GGZ Gaming Zone 0.0.12 allows remote attackers to cause a denial of service (client disconnect) via inputs that produce malformed XML, including (1) trailing ' (apostrophe) character on the ID attribute in a PLAYER XML tag, (2) joining with a long ID attribute or non-trailing ' characters, which causes a <none> name to be assigned, and then disconnecting, or (3) a long CDATA message attribute, which prevents closing tags from being added to the string.
EIP-2026-103476 EXPLOITDB text SUSPICIOUS
GetWare Web Server Component - Content-Length Value Remote Denial of Service
EIP-2026-103475 EXPLOITDB text WRITEUP
Gearbox Software Halo Game 1.x - Client Remote Denial of Service
CVE-2008-0151 EXPLOITDB text WRITEUP
Foxit WAC Server 2.1.0.910 and earlier - Heap-Based Buffer Overflow via Telnet Request
Heap-based buffer overflow in Foxit WAC Server 2.1.0.910, 2.0 Build 3503, and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a Telnet request with long options.
CVE-2008-7031 EXPLOITDB text WRITEUP
Foxit Remote Access Server 2.0 Build 3503 - Heap-Based Buffer Overflow via Long SSH Packets
Heap-based buffer overflow in Foxit Remote Access Server (aka WAC Server) 2.0 Build 3503 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long SSH packets, a different vulnerability than CVE-2008-0151.
EIP-2026-103470 EXPLOITDB text WORKING POC
FlexNet License Server Manager - Stack Overflow In lmgrd
EIP-2026-103467 EXPLOITDB text WRITEUP
Firefly Studios Stronghold 2 - Remote Denial of Service
CVE-2006-4024 EXPLOITDB c WORKING POC
Festalon 0.5.0-0.5.5 - Denial of Service and Possible Remote Code Execution via Negative LoadAddr in HES File
The FESTAHES_Load function in pce/hes.c in Festalon 0.5.0 through 0.5.5 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a negative LoadAddr value in a HES file, which is used as an offset in a memcpy operation and leads to a buffer underflow.
CVE-2004-1805 EXPLOITDB text WRITEUP
Unreal Engine 436 - Format String Vulnerability via Class Name Specifiers
Format string vulnerability in games using the Epic Games Unreal Engine 436 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in class names.
CVE-2007-4442 EXPLOITDB text WRITEUP
Unreal Engine - Denial of Service via Long GIF Filename Request
Stack-based buffer overflow in the logging function in the Unreal engine, possibly 2003 and 2004, as used in the internal web server, allows remote attackers to cause a denial of service (application crash) via a request for a long .gif filename in the images/ directory, related to conversion from Unicode to ASCII.
CVE-2006-1194 EXPLOITDB c WORKING POC
ENet library < jul_2005 - Denial of Service via Large Command Length Packet
Integer signedness error in the enet_protocol_handle_incoming_commands function in protocol.c for ENet library CVS version Jul 2005 and earlier, as used in products including (1) Cube, (2) Sauerbraten, and (3) Duke3d_w32, allows remote attackers to cause a denial of service (application crash) via a packet with a large command length value, which leads to an invalid memory access.
EIP-2026-103458 EXPLOITDB text WORKING POC
EMC NetWorker 7.6 sp3 - Denial of Service
CVE-2008-6195 EXPLOITDB text WRITEUP
LANDesk Management Suite < 8.80.1.1 - Unauthenticated Path Traversal via PXE TFTP Service
Directory traversal vulnerability in the PXE TFTP Service (PXEMTFTP.exe) in LANDesk Management Suite (LDMS) 8.80.1.1 and earlier allows remote attackers to read arbitrary files via a subdirectory name followed by ".." sequences, a different vulnerability than CVE-2008-1643.
CVE-2008-0096 EXPLOITDB text WRITEUP
Georgia SoftWorks SSH2 Server < 7.01.0003 - Remote Code Execution via Long Username or Password
Multiple buffer overflows in Georgia SoftWorks SSH2 Server (GSW_SSHD) 7.01.0003 and earlier allow remote attackers to execute arbitrary code via a (1) a long username, which triggers an overflow in the log function; or (2) a long password.
CVE-2007-4642 EXPLOITDB text WRITEUP
Doomsday 1.9.0-beta5.1 - Buffer Overflow
Multiple buffer overflows in Doomsday (aka deng) 1.9.0-beta5.1 and earlier allow remote attackers to execute arbitrary code via a long chat (PKT_CHAT) message that is not properly handled by the (1) D_NetPlayerEvent function in d_net.c or the (2) Msg_Write function in net_msg.c, or (3) many commands that are not properly handled by the NetSv_ReadCommands function in d_netsv.c; or (4) cause a denial of service (daemon crash) via a chat (PKT_CHAT) message without a final '\0' character.
CVE-2006-4006 EXPLOITDB c WORKING POC
BomberClone <= 0.11.6 - Exposure of Sensitive Information via Packet Data Size Mismanagement
The do_gameinfo function in BomberClone 0.11.6 and earlier, and possibly other functions, does not reset the packet data size, which causes the send_pkg function (packets.c) to use this data size when sending a reply, and allows remote attackers to read portions of server memory.
CVE-2008-1482 EXPLOITDB c WORKING POC
xine-lib <= 1.1.11 - Heap-Based Buffer Overflow via Crafted Media Files
Multiple integer overflows in xine-lib 1.1.11 and earlier allow remote attackers to trigger heap-based buffer overflows and possibly execute arbitrary code via (1) a crafted .FLV file, which triggers an overflow in demuxers/demux_flv.c; (2) a crafted .MOV file, which triggers an overflow in demuxers/demux_qt.c; (3) a crafted .RM file, which triggers an overflow in demuxers/demux_real.c; (4) a crafted .MVE file, which triggers an overflow in demuxers/demux_wc3movie.c; (5) a crafted .MKV file, which triggers an overflow in demuxers/ebml.c; or (6) a crafted .CAK file, which triggers an overflow in demuxers/demux_film.c.
CVE-2006-3581 EXPLOITDB c WORKING POC
Audacious AdPlug < 2.0 - Stack-Based Buffer Overflow via Large DTM or S3M Files
Multiple stack-based buffer overflows in Audacious AdPlug 2.0 and earlier allow remote user-assisted attackers to execute arbitrary code via large (1) DTM and (2) S3M files.
CVE-2012-6083 EXPLOITDB HIGH text WRITEUP
freeciv < 2.3.3 - Denial of Service via Crafted Packet
Freeciv before 2.3.3 allows remote attackers to cause a denial of service via a crafted packet.
CVSS 7.5
CVE-2007-6731 EXPLOITDB c WORKING POC
Extended Module Player < 2.5.1 - Remote Code Execution via OXM File Negative Value Bypass
Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm functions in misc/oxm.c, leading to a buffer overflow.
CVE-2007-6609 EXPLOITDB text WORKING POC
CoolPlayer 217 - Stack-Based Buffer Overflow via OGG Vorbis Tag Parsing
Multiple stack-based buffer overflows in the CPLI_ReadTag_OGG function in CPI_PlaylistItem.c in CoolPlayer 217 and earlier allow user-assisted remote attackers to execute arbitrary code via a long (1) cTag or (2) cValue field in an OGG Vorbis file.