Reed Arvin

19 exploits Active since Jul 2001
CVE-2004-1135 METASPLOIT ruby WORKING POC
WS_FTP Server 5.03 2004.10.14 - Denial of Service via Long SITE, XMKD, MKD, or RNFR Commands
Multiple buffer overflows in WS_FTP Server 5.03 2004.10.14 allow remote attackers to cause a denial of service (service crash) via long (1) SITE, (2) XMKD, (3) MKD, and (4) RNFR commands.
CVE-2004-1533 EXPLOITDB perl WORKING POC
DMS POP3 1.5.3.27 - Denial of Service via Long Username or Password
Buffer overflow in pop3svr.exe for DMS POP3 1.5.3.27 and earlier allows remote attackers to cause a denial of service (service crash) via a long (1) username or (2) password.
CVE-2004-1135 EXPLOITDB ruby WORKING POC
WS_FTP Server 5.03 2004.10.14 - Denial of Service via Long SITE, XMKD, MKD, or RNFR Commands
Multiple buffer overflows in WS_FTP Server 5.03 2004.10.14 allow remote attackers to cause a denial of service (service crash) via long (1) SITE, (2) XMKD, (3) MKD, and (4) RNFR commands.
EIP-2026-117438 EXPLOITDB text WORKING POC
Mailtraq 2.x - Administration Console Privilege Escalation
CVE-2005-4505 EXPLOITDB c WORKING POC
McAfee VirusScan Enterprise 8.0i-CMA 3.5 - Privilege Escalation
Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attempts to execute EntVUtil.EXE under an unquoted "Program Files" path.
CVE-2005-1372 EXPLOITDB c WORKING POC
BakBone NetVault 7.1 - Privilege Escalation
nvstatsmngr.exe process in BakBone NetVault 7.1 does not properly drop privileges before opening files, which allows local users to gain privileges via the Help menu.
CVE-2005-1371 EXPLOITDB c++ WORKING POC
BulletProof FTP Server 2.4.0.31 - Privilege Escalation
BPFTPServer service in BulletProof FTP Server 2.4.0.31 does not properly drop privileges before opening files through the Help menu, which allows local users to gain privileges.
EIP-2026-116777 EXPLOITDB c WORKING POC
Altiris Client 6.0.88 - Service Privilege Escalation
CVE-2005-1590 EXPLOITDB text WORKING POC
ACLIENT.EXE 6.0.88 - Privilege Escalation
The Altiris Client Service for Windows (ACLIENT.EXE) 6.0.88 allows local users to disable password protection and access the administrative interface by finding and showing the "Altiris Client Service" hidden window, disabling the password protection, disabling the "Hide client tray icon box" option, then opening the AClient tray icon and using the View Log File option, a different vulnerability than CVE-2004-2070.
CVE-2004-2513 EXPLOITDB perl WORKING POC
Mercury (Pegasus) Mail 4.01 - Remote Code Execution via IMAP SELECT Command
Buffer overflow in the IMAP service of Mercury (Pegasus) Mail 4.01 allows remote attackers to execute arbitrary code via a long SELECT command.
EIP-2026-115335 EXPLOITDB perl WORKING POC
Golden FTP Server Pro 2.52 - 'USER' Remote Buffer Overflow
CVE-2005-1931 EXPLOITDB perl WORKING POC
GoodTech SMTP Server 5.14 - Denial of Service via RCPT TO Command
GoodTech SMTP Server 5.14 allows remote attackers to cause a denial of service (application crash) via a RCPT TO command with an invalid argument, as demonstrated using an "A" character.
CVE-2005-2083 EXPLOITDB perl WORKING POC
IA eMailServer Corporate Edition 5.2.2 build 1051 - Denial of Service via IMAP4 LIST Command Format String
Format string vulnerability in IMAP4 in IA eMailServer Corporate Edition 5.2.2 build 1051 allows remote attackers to cause a denial of service (application crash) via a LIST command with format string specifiers as the second argument.
CVE-2005-2085 EXPLOITDB perl WORKING POC
Inframail Advantage Server Edition 6.0-6.7 - Denial of Service via Long SMTP FROM Field or FTP NLST Command
Buffer overflow in Inframail Advantage Server Edition 6.0 through 6.7 allows remote attackers to cause a denial of service (process crash) via a long (1) SMTP FROM field or possibly (2) FTP NLST command.
CVE-2005-2085 EXPLOITDB perl WORKING POC
Inframail Advantage Server Edition 6.0-6.7 - Denial of Service via Long SMTP FROM Field or FTP NLST Command
Buffer overflow in Inframail Advantage Server Edition 6.0 through 6.7 allows remote attackers to cause a denial of service (process crash) via a long (1) SMTP FROM field or possibly (2) FTP NLST command.
CVE-2001-1021 EXPLOITDB perl WORKING POC
WS_FTP Server 2.02 - Remote Code Execution via Long Arguments to Multiple FTP Commands
Buffer overflows in WS_FTP 2.02 allow remote attackers to execute arbitrary code via long arguments to (1) DELE, (2) MDTM, (3) MLST, (4) MKD, (5) RMD, (6) RNFR, (7) RNTO, (8) SIZE, (9) STAT, (10) XMKD, or (11) XRMD.
CVE-2005-2472 EXPLOITDB perl WORKING POC
BusinessMail 4.60.00 - Denial of Service via Long SMTP HELO or MAIL FROM Command
Multiple buffer overflows in BusinessMail 4.60.00 allow remote attackers to cause a denial of service (application crash) via a long string to SMTP (1) HELO or (2) MAIL FROM commands.
CVE-2005-2426 EXPLOITDB perl WORKING POC
ftpshell_server 3.38 - Authenticated Denial of Service via Repeated Connection Without QUIT
FTPshell Server 3.38 allows remote authenticated users to cause a denial of service (application crash) by multiple connections and disconnections without using the QUIT command.
CVE-2005-2472 EXPLOITDB c WORKING POC
BusinessMail 4.60.00 - Denial of Service via Long SMTP HELO or MAIL FROM Command
Multiple buffer overflows in BusinessMail 4.60.00 allow remote attackers to cause a denial of service (application crash) via a long string to SMTP (1) HELO or (2) MAIL FROM commands.