Mohammad Reza Espargham

16 exploits Active since Nov 2014
CVE-2014-6332 EXPLOITDB HIGH php WORKING POC
Microsoft Windows - RCE
OleAut32.dll in OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted web site, as demonstrated by an array-redimensioning attempt that triggers improper handling of a size value in the SafeArrayDimen function, aka "Windows OLE Automation Array Remote Code Execution Vulnerability."
CVSS 8.8
CVE-2014-6332 EXPLOITDB HIGH php WORKING POC
Microsoft Windows - RCE
OleAut32.dll in OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted web site, as demonstrated by an array-redimensioning attempt that triggers improper handling of a size value in the SafeArrayDimen function, aka "Windows OLE Automation Array Remote Code Execution Vulnerability."
CVSS 8.8
CVE-2014-6332 EXPLOITDB HIGH php WORKING POC
Microsoft Windows - RCE
OleAut32.dll in OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted web site, as demonstrated by an array-redimensioning attempt that triggers improper handling of a size value in the SafeArrayDimen function, aka "Windows OLE Automation Array Remote Code Execution Vulnerability."
CVSS 8.8
EIP-2026-117744 EXPLOITDB text WORKING POC
Parallels Desktop - Virtual Machine Escape
EIP-2026-115443 EXPLOITDB python WORKING POC
Internet Download Manager - Find Download Crash (PoC)
EIP-2026-115442 EXPLOITDB python WORKING POC
Internet Download Manager - '.ief' Crash (PoC)
EIP-2026-115515 EXPLOITDB python WORKING POC
KeePass Password Safe Classic 1.29 - Crash (PoC)
EIP-2026-115606 EXPLOITDB perl WORKING POC
MediaInfo 0.7.61 - Crash (PoC)
EIP-2026-115742 EXPLOITDB perl WORKING POC
Microsoft Office 2007 - 'msxml5.dll' Crash (PoC)
CVE-2015-7808 EXPLOITDB perl WORKING POC
vBulletin 5 Connect <5.1.9 - Code Injection
The vB_Api_Hook::decodeArguments method in vBulletin 5 Connect 5.1.2 through 5.1.9 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object in the arguments parameter to ajax/api/hook/decodeArguments.
EIP-2026-104555 EXPLOITDB php WORKING POC
Apple Mac OSX 10.10.3 (Yosemite) Safari 8.0.x - Crash (PoC)
EIP-2026-102567 EXPLOITDB perl WORKING POC
Brasero - Crash (PoC)
EIP-2026-102162 EXPLOITDB python WORKING POC
Image Transfer IOS - Remote Crash (PoC)
EIP-2026-102190 EXPLOITDB perl WORKING POC
Viber 4.2.0 - Non-Printable Characters Handling Denial of Service
EIP-2026-102187 EXPLOITDB text WORKING POC
Telegram 3.2 - Input Length Handling Crash (PoC)
EIP-2026-100987 EXPLOITDB text WORKING POC
Apple watchOS 2 - Crash (PoC)