SkD

23 exploits Active since Feb 2006
CVE-2006-0564 EXPLOITDB perl WORKING POC
Microsoft HTML Help Workshop 4.74.8702.0 - Stack-based Buffer Overflow via Long Contents File Field
Stack-based buffer overflow in Microsoft HTML Help Workshop 4.74.8702.0, and possibly earlier versions, and as included in the Microsoft HTML Help 1.4 SDK, allows context-dependent attackers to execute arbitrary code via a .hhp file with a long Contents file field.
CVE-2009-1257 EXPLOITDB perl WORKING POC
Magic ISO Maker 5.5 build 0274 - Heap-Based Buffer Overflow via Crafted CCD File
Heap-based buffer overflow in Magic ISO Maker 5.5 build 0274 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted CCD file.
CVE-2009-0184 METASPLOIT ruby WORKING POC
Free Download Manager <3.0.844 - RCE
Multiple buffer overflows in the torrent parsing implementation in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allow remote attackers to execute arbitrary code via (1) a long file name within a torrent file, (2) a long tracker URL in a torrent file, or (3) a long comment in a torrent file.
CVE-2010-0033 METASPLOIT ruby WORKING POC
Microsoft PowerPoint 2003 SP3 - Remote Code Execution via Crafted PowerPoint Document
Stack-based buffer overflow in Microsoft Office PowerPoint 2003 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint Viewer TextBytesAtom Record Stack Overflow Vulnerability."
CVE-2008-5036 METASPLOIT ruby WORKING POC
VLC media player 0.9.x - Stack-based Buffer Overflow via RealText Subtitle Parsing
Stack-based buffer overflow in VideoLAN VLC media player 0.9.x before 0.9.6 might allow user-assisted attackers to execute arbitrary code via an an invalid RealText (rt) subtitle file, related to the ParseRealText function in modules/demux/subtitle.c. NOTE: this issue was SPLIT from CVE-2008-5032 on 20081110.
EIP-2026-119270 EXPLOITDB perl WORKING POC
WFTPD Explorer Pro 1.0 - Remote Heap Overflow
CVE-2006-4948 EXPLOITDB perl WORKING POC
ProSysInfo TFTP Server TFTPDWIN <0.4.2 - Buffer Overflow
Stack-based buffer overflow in tftpd.exe in ProSysInfo TFTP Server TFTPDWIN 0.4.2 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a long file name. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
CVE-2008-4449 EXPLOITDB perl WORKING POC
mIRC 6.34 - Remote Code Execution via Long Hostname in PRIVMSG
Stack-based buffer overflow in mIRC 6.34 allows remote attackers to execute arbitrary code via a long hostname in a PRIVMSG message.
CVE-2008-5036 EXPLOITDB perl WORKING POC
VLC media player 0.9.x - Stack-based Buffer Overflow via RealText Subtitle Parsing
Stack-based buffer overflow in VideoLAN VLC media player 0.9.x before 0.9.6 might allow user-assisted attackers to execute arbitrary code via an an invalid RealText (rt) subtitle file, related to the ParseRealText function in modules/demux/subtitle.c. NOTE: this issue was SPLIT from CVE-2008-5032 on 20081110.
CVE-2009-1260 EXPLOITDB perl WORKING POC
UltraISO < 9.3.3 - Stack-Based Buffer Overflow via Crafted CCD or IMG File
Multiple stack-based buffer overflows in UltraISO 9.3.3.2685 and earlier allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted (1) CCD or (2) IMG file.
CVE-2008-5036 EXPLOITDB ruby WORKING POC
VLC media player 0.9.x - Stack-based Buffer Overflow via RealText Subtitle Parsing
Stack-based buffer overflow in VideoLAN VLC media player 0.9.x before 0.9.6 might allow user-assisted attackers to execute arbitrary code via an an invalid RealText (rt) subtitle file, related to the ParseRealText function in modules/demux/subtitle.c. NOTE: this issue was SPLIT from CVE-2008-5032 on 20081110.
CVE-2009-0182 EXPLOITDB HIGH perl WORKING POC
VUPlayer < 2.49 - Buffer Overflow via Long URL in .pls File
Buffer overflow in VUPlayer 2.49 and earlier allows user-assisted attackers to execute arbitrary code via a long URL in a File line in a .pls file, as demonstrated by an http URL on a File1 line.
CVSS 8.8
EIP-2026-118106 EXPLOITDB perl WORKING POC
Winamp 5.541 - Skin Universal Buffer Overflow
EIP-2026-118254 EXPLOITDB perl WORKING POC
Amaya Web Browser 11.0.1 (Windows Vista) - Remote Buffer Overflow
CVE-2009-0133 EXPLOITDB perl WORKING POC
Microsoft HTML Help Workshop <4.74 - Buffer Overflow
Buffer overflow in Microsoft HTML Help Workshop 4.74 and earlier allows context-dependent attackers to execute arbitrary code via a .hhp file with a long "Index file" field, possibly a related issue to CVE-2006-0564.
EIP-2026-117759 EXPLOITDB perl WORKING POC
PEiD 0.92 - '.PE' File Universal Buffer Overflow
CVE-2010-0033 EXPLOITDB ruby WORKING POC
Microsoft PowerPoint 2003 SP3 - Remote Code Execution via Crafted PowerPoint Document
Stack-based buffer overflow in Microsoft Office PowerPoint 2003 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint Viewer TextBytesAtom Record Stack Overflow Vulnerability."
CVE-2008-5405 EXPLOITDB perl WORKING POC
Cain & Abel <4.9.24 - Buffer Overflow
Stack-based buffer overflow in the RDP protocol password decoder in Cain & Abel 4.9.23 and 4.9.24, and possibly earlier, allows remote attackers to execute arbitrary code via an RDP file containing a long string.
CVE-2009-0184 EXPLOITDB ruby WORKING POC
Free Download Manager <3.0.844 - RCE
Multiple buffer overflows in the torrent parsing implementation in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allow remote attackers to execute arbitrary code via (1) a long file name within a torrent file, (2) a long tracker URL in a torrent file, or (3) a long comment in a torrent file.
EIP-2026-117190 EXPLOITDB perl WORKING POC
Free Download Manager 3.0 Build 844 - '.torrent' Local Buffer Overflow
CVE-2009-0837 EXPLOITDB perl WORKING POC
Foxit Reader <3.0 Build 1506 - Buffer Overflow
Stack-based buffer overflow in Foxit Reader 3.0 before Build 1506, including 1120 and 1301, allows remote attackers to execute arbitrary code via a long (1) relative path or (2) absolute path in the filename argument in an action, as demonstrated by the "Open/Execute a file" action.
CVE-2008-3877 EXPLOITDB perl WORKING POC
Acoustica Mixcraft <4.2 - Buffer Overflow
Stack-based buffer overflow in Acoustica Mixcraft 4.1 Build 96 and 4.2 Build 98 allows user-assisted attackers to execute arbitrary code via a crafted .mx4 file. NOTE: it was later reported that version 3 is also affected.
CVE-2009-0833 EXPLOITDB perl WORKING POC
Winamp 5.541 - gen_msn.dll Buffer Overflow
Heap-based buffer overflow in gen_msn.dll in the gen_msn plugin 0.31 for Winamp 5.541 allows remote attackers to execute arbitrary code via a playlist (.pls) file with a long URL in the File1 field. NOTE: some of these details are obtained from third party information.