Luigi Auriemma

568 exploits Active since Feb 2002
EIP-2026-118547 EXPLOITDB text WRITEUP
firefly media server (mt-daapd) 2.4.1 / svn 1699 - Multiple Vulnerabilities
CVE-2008-1403 EXPLOITDB text WRITEUP
BootManage TFTPD <1.99 - Buffer Overflow
Stack-based buffer overflow in the TFTP server in BootManage TFTPD 1.99 and earlier in BootManage Administrator 7.1 and earlier allows remote attackers to execute arbitrary code via a request with a long filename.
CVE-2007-6317 EXPLOITDB text WORKING POC
BarracudaDrive Web Server <3.8 - Path Traversal
Multiple directory traversal vulnerabilities in BarracudaDrive Web Server before 3.8 allow (1) remote attackers to read arbitrary files via certain ..\ (dot dot backslash) sequences in the URL path, or (2) remote authenticated users to delete arbitrary files or create arbitrary directories via a ..\ (dot dot backslash) sequence in the dir parameter to /drive/c/bdusers/USER/.
CVE-2004-1220 EXPLOITDB c WORKING POC
Battlefield 1942 and Vietnam - Denial of Service via Large numplayers Server Reply
Battlefield 1942 1.6.19 and earlier, and Battlefield Vietnam 1.2 and earlier, allows a remote master server to cause a denial of service (client crash) via a server reply that contains a large numplayers value, which triggers a null dereference.
EIP-2026-118312 EXPLOITDB text WRITEUP
Best Way GEM Engine - Multiple Vulnerabilities
CVE-2007-6379 EXPLOITDB text WORKING POC
BadBlue < 2.72b - Information Disclosure via Invalid Browse Parameter
BadBlue 2.72b and earlier allows remote attackers to obtain sensitive information via an invalid browse parameter, which reveals the installation path in an error message.
CVE-2005-3489 EXPLOITDB c WORKING POC
Asus Video Security Online < 3.5.0.0 - Buffer Overflow via Long Username/Password
Buffer overflow in Asus Video Security 3.5.0.0 and earlier, when using authorization, allows remote attackers to execute arbitrary code via a long username/password string.
CVE-2007-6377 EXPLOITDB perl WORKING POC
BadBlue < 2.72b - Remote Code Execution via PassThru Query String Overflow
Stack-based buffer overflow in the PassThru functionality in ext.dll in BadBlue 2.72b and earlier allows remote attackers to execute arbitrary code via a long query string.
CVE-2008-0364 EXPLOITDB text WRITEUP
BitTorrent < 6.0 and uTorrent < 1.7.5 - Buffer Overflow via Long Unicode Client Version String
Buffer overflow in (1) BitTorrent 6.0 and earlier; and (2) uTorrent 1.7.5 and earlier, and 1.8-alpha-7834 and earlier in the 1.8.x series; on Windows allows remote attackers to cause a denial of service (application crash) via a long Unicode string representing a client version identifier.
CVE-2011-1567 EXPLOITDB ruby WORKING POC
IGSSdataServer.exe <9.00.00.11063 - Buffer Overflow
Multiple stack-based buffer overflows in IGSSdataServer.exe 9.00.00.11063 and earlier in 7-Technologies Interactive Graphical SCADA System (IGSS) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted (1) ListAll, (2) Write File, (3) ReadFile, (4) Delete, (5) RenameFile, and (6) FileInfo commands in an 0xd opcode; (7) the Add, (8) ReadFile, (9) Write File, (10) Rename, (11) Delete, and (12) Add commands in an RMS report templates (0x7) opcode; and (13) 0x4 command in an STDREP request (0x8) opcode to TCP port 12401.
CVE-2011-1567 EXPLOITDB ruby WORKING POC
IGSSdataServer.exe <9.00.00.11063 - Buffer Overflow
Multiple stack-based buffer overflows in IGSSdataServer.exe 9.00.00.11063 and earlier in 7-Technologies Interactive Graphical SCADA System (IGSS) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted (1) ListAll, (2) Write File, (3) ReadFile, (4) Delete, (5) RenameFile, and (6) FileInfo commands in an 0xd opcode; (7) the Add, (8) ReadFile, (9) Write File, (10) Rename, (11) Delete, and (12) Add commands in an RMS report templates (0x7) opcode; and (13) 0x4 command in an STDREP request (0x8) opcode to TCP port 12401.
CVE-2013-0657 EXPLOITDB ruby WORKING POC
Schneider Electric IGSS <10 - Buffer Overflow
Stack-based buffer overflow in Schneider Electric Interactive Graphical SCADA System (IGSS) 10 and earlier allows remote attackers to execute arbitrary code by sending TCP port-12397 data that does not comply with a protocol.
CVE-2011-1568 EXPLOITDB text WORKING POC
7-Technologies IGSS <9.00.00.11074 - RCE
Format string vulnerability in the logText function in shmemmgr9.dll in IGSSdataServer.exe 9.00.00.11074, and 9.00.00.11063 and earlier, in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated using the RMS Reports Delete command, related to the logging of messages to GSST.LOG. NOTE: some of these details are obtained from third party information.
CVE-2004-0964 EXPLOITDB c WORKING POC
Zinf <2.2.1 - Remote Code Execution
Buffer overflow in Zinf 2.2.1 on Windows, and other older versions for Linux, allows remote attackers or local users to execute arbitrary code via certain values in a .pls file.
EIP-2026-118223 EXPLOITDB text WRITEUP
Abyss Web Server 1.0/1.1 - Authentication Bypass
CVE-2008-1620 EXPLOITDB text WORKING POC
2X TFTP service <3.2.0.0 - Path Traversal
Directory traversal vulnerability in 2X TFTP service (TFTPd.exe) 3.2.0.0 and earlier in 2X ThinClientServer 5.0_sp1-r3497 and earlier allows remote attackers to read or overwrite arbitrary files via a ... (dot dot dot) in the filename.
CVE-2008-1411 EXPLOITDB text WRITEUP
Acronis Snap Deploy <2.0.0.1076 - DoS
The PXE Server (pxesrv.exe) in Acronis Snap Deploy 2.0.0.1076 and earlier allows remote attackers to cause a denial of service (crash) via an incomplete TFTP request, which triggers a NULL pointer dereference.
CVE-2006-4046 EXPLOITDB c WORKING POC
Open Cubic Player < 0.1.10_rc5 - Remote Code Execution via Crafted .S3M, .IT, .ULT, or .AMS File
Multiple stack-based buffer overflows in Open Cubic Player 2.6.0pre6 and earlier for Windows, and 0.1.10_rc5 and earlier on Linux/BSD, allow remote attackers to execute arbitrary code via (1) a large .S3M file handled by the mpLoadS3M function, (2) a crafted .IT file handled by the itplayerclass::module::load function, (3) a crafted .ULT file handled by the mpLoadULT function, or (4) a crafted .AMS file handled by the mpLoadAMS function.
EIP-2026-117490 EXPLOITDB text WRITEUP
Microsoft Fax - Cover Page Editor 5.2.3790.3959 Double-Free Memory Corruption
EIP-2026-117494 EXPLOITDB text WRITEUP
Microsoft HTML Help 6.1 - Local Stack Overflow
CVE-2006-3814 EXPLOITDB c WORKING POC
cheese_tracker < 0.9.9 - Buffer Overflow in Loader_XM::load_instrument_internal
Buffer overflow in the Loader_XM::load_instrument_internal function in loader_xm.cpp for Cheese Tracker 0.9.9 and earlier allows user-assisted attackers to execute arbitrary code via a crafted file with a large amount of extra data.
CVE-2011-3494 EXPLOITDB ruby WORKING POC
eSignal < 10.6.2425 - Stack-Based and Heap-Based Buffer Overflow via Long StyleTemplate or FaceName Field
WinSig.exe in eSignal 10.6.2425 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a long StyleTemplate element in a QUO, SUM or POR file, which triggers a stack-based buffer overflow, or (2) a long Font->FaceName field (aka FaceName element), which triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
CVE-2004-0345 EXPLOITDB c WORKING POC
Red Faction <= 1.20 - Remote Code Execution via Long Server Name
Buffer overflow in Red Faction client 1.20 and earlier allows remote servers to execute arbitrary code via a long server name.
EIP-2026-116193 EXPLOITDB text WRITEUP
Rocket Software UniData 7.2.7.3806 - Denial of Service
CVE-2011-3489 EXPLOITDB text WORKING POC
Rockwell RSLogix < 19 - Denial of Service via Crafted RNA Packet
RnaUtility.dll in RsvcHost.exe 2.30.0.23 in Rockwell RSLogix 19 and earlier allows remote attackers to cause a denial of service (crash) via a crafted rna packet with a long string to TCP port 4446 that triggers (1) "a memset zero overflow" or (2) an out-of-bounds read, related to improper handling of a 32-bit size field.