Luigi Auriemma

568 exploits Active since Feb 2002
CVE-2012-2288 EXPLOITDB ruby WORKING POC
EMC NetWorker 7.6.3-7.6.4 and 8.0 - Remote Code Execution via nsrd RPC Service Format String
Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4.1, and 8.0 before 8.0.0.1, allows remote attackers to execute arbitrary code via format string specifiers in a message.
EIP-2026-118432 EXPLOITDB text WRITEUP
DivX Player 2.6 - '.Skin' File Directory Traversal
EIP-2026-118526 EXPLOITDB text WRITEUP
ExpressView Browser Plugin 6.5.0.3330 - Multiple Integer Overflow / Remote Code Execution Vulnerabilities
CVE-2004-1561 EXPLOITDB c WORKING POC
Icecast <= 2.0.1 - Remote Code Execution via HTTP Header Overflow
Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a large number of headers.
CVE-2010-4142 EXPLOITDB ruby WORKING POC
DATAC RealWin <= 2.0 Build 6.1.8.10 - Stack-Based Buffer Overflow via Long SCPC Packet
Multiple stack-based buffer overflows in DATAC RealWin 2.0 Build 6.1.8.10 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) SCPC_INITIALIZE, (2) SCPC_INITIALIZE_RF, or (3) SCPC_TXTEVENT packet. NOTE: it was later reported that 1.06 is also affected by one of these requests.
EIP-2026-118401 EXPLOITDB text WRITEUP
dcam webcam server personal Web server 8.2.5 - Directory Traversal
CVE-2010-2627 EXPLOITDB text WORKING POC
Battlefield 2 < 2.1.50 and Battlefield 2142 < 1.10.48.0 - Path Traversal via Logo and Map Download URLs
Multiple directory traversal vulnerabilities in the Refractor 2 engine, as used in Battlefield 2 1.50 (1.5.3153-802.0) and earlier, and Battlefield 2142 (1.10.48.0) and earlier, allow remote servers to overwrite arbitrary files on the client via "..\" (dot dot backslash) sequences in URLs for the (1) sponsor or (2) community logos, and other URLs related to (3) DemoDownloadURL, (4) DemoIndexURL and (5) CustomMapsURL.
EIP-2026-118518 EXPLOITDB text WRITEUP
Enemy Territory: Quake Wars 1.5.12642.33243 - Remote Buffer Overflow
CVE-2011-3493 EXPLOITDB python WORKING POC
Cogent DataHub <7.1.1.63 - Buffer Overflow
Multiple stack-based buffer overflows in the DH_OneSecondTick function in Cogent DataHub 7.1.1.63 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long (1) domain, (2) report_domain, (3) register_datahub, or (4) slave commands.
CVE-2011-3492 EXPLOITDB ruby WORKING POC
Azeotech DAQFactory <5.85.1853 - Buffer Overflow
Stack-based buffer overflow in Azeotech DAQFactory 5.85 build 1853 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted NETB packet to UDP port 20034.
EIP-2026-118672 EXPLOITDB ruby WORKING POC
Iconics GENESIS32 9.21.201.01 - Integer Overflow (Metasploit)
EIP-2026-118398 EXPLOITDB ruby WORKING POC
DATAC RealWin SCADA Server 2 - On_FC_CONNECT_FCS_a_FILE Buffer Overflow (Metasploit)
CVE-2012-2020 EXPLOITDB ruby WORKING POC
HP Operations Agent <11.03.12 - RCE
Unspecified vulnerability in HP Operations Agent before 11.03.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1326.
CVE-2010-4142 EXPLOITDB ruby WORKING POC
DATAC RealWin <= 2.0 Build 6.1.8.10 - Stack-Based Buffer Overflow via Long SCPC Packet
Multiple stack-based buffer overflows in DATAC RealWin 2.0 Build 6.1.8.10 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) SCPC_INITIALIZE, (2) SCPC_INITIALIZE_RF, or (3) SCPC_TXTEVENT packet. NOTE: it was later reported that 1.06 is also affected by one of these requests.
EIP-2026-118651 EXPLOITDB text WRITEUP
HTTP File Server 2.2 - Security Bypass / Denial of Service
CVE-2010-4142 EXPLOITDB ruby WORKING POC
DATAC RealWin <= 2.0 Build 6.1.8.10 - Stack-Based Buffer Overflow via Long SCPC Packet
Multiple stack-based buffer overflows in DATAC RealWin 2.0 Build 6.1.8.10 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) SCPC_INITIALIZE, (2) SCPC_INITIALIZE_RF, or (3) SCPC_TXTEVENT packet. NOTE: it was later reported that 1.06 is also affected by one of these requests.
CVE-2012-2019 EXPLOITDB ruby WORKING POC
HP Operations Agent <11.03.12 - RCE
Unspecified vulnerability in HP Operations Agent before 11.03.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1325.
EIP-2026-118532 EXPLOITDB ruby WORKING POC
FactoryLink - 'vrn.exe' Opcode 9 Buffer Overflow (Metasploit)
EIP-2026-118610 EXPLOITDB text WRITEUP
GoAhead Web Server 2.1.x - Directory Management Policy Bypass
EIP-2026-118627 EXPLOITDB text WRITEUP
Half-Life 1.1 - Invalid Command Error Response Format String
CVE-2002-1603 EXPLOITDB text WRITEUP
GoAhead Web Server <2.1.7 - Info Disclosure
GoAhead Web Server 2.1.7 and earlier allows remote attackers to obtain the source code of ASP files via a URL terminated with a /, \, %2f (encoded /), %20 (encoded space), or %00 (encoded null) character, which returns the ASP source code unparsed.
CVE-2007-5256 EXPLOITDB perl WORKING POC
FSD 2.052 d9 and earlier - Remote Code Execution via Long HELP Command
Multiple stack-based buffer overflows in FSD 2.052 d9 and earlier, and FSFDT FSD 3.000 d9 and earlier, allow (1) remote attackers to execute arbitrary code via a long HELP command on TCP port 3010 to the sysuser::exechelp function in sysuser.cc and (2) remote authenticated users to execute arbitrary code via long commands on TCP port 6809 to the servinterface::sendmulticast function in servinterface.cc, as demonstrated by a PIcallsign command.
EIP-2026-118547 EXPLOITDB text WRITEUP
firefly media server (mt-daapd) 2.4.1 / svn 1699 - Multiple Vulnerabilities
EIP-2026-118550 EXPLOITDB ruby WORKING POC
FlexNet License Server Manager - lmgrd Buffer Overflow (Metasploit)
EIP-2026-118600 EXPLOITDB text SUSPICIOUS
GameCore 2.5 - 'GameID' Integer Overflow