Sowhat

13 exploits Active since May 2004
CVE-2006-2101 EXPLOITDB text WRITEUP
WinISO 5.3 - Directory Traversal and Arbitrary File Write via ISO Image Filename
Directory traversal vulnerability in WinISO 5.3 allows remote attackers to write arbitrary files via a .. (dot dot) in a filename in an ISO image.
CVE-2005-0731 EXPLOITDB text WRITEUP
PY Software Active Webcam WebServer 5.5 - Denial of Service via Filelist.html Request
PY Software Active Webcam WebServer (webcam.exe) 5.5 allows remote attackers to cause a denial of service (CPU consumption) via a direct request to Filelist.html.
CVE-2006-2102 EXPLOITDB text WRITEUP
PowerISO 2.9 - Directory Traversal and Arbitrary File Write via ISO Image Filename
Directory traversal vulnerability in PowerISO 2.9 allows remote attackers to write arbitrary files via a .. (dot dot) in a filename in an ISO image.
CVE-2006-2100 EXPLOITDB text WRITEUP
Magic ISO Maker < 5.0_build_0166 - Directory Traversal and Arbitrary File Write via ISO Image Filename
Directory traversal vulnerability in Magic ISO 5.0 Build 0166 allows remote attackers to write arbitrary files via a .. (dot dot) in a filename in an ISO image.
CVE-2006-2099 EXPLOITDB text WRITEUP
UltraISO 8.0.0.1392 - Directory Traversal and Arbitrary File Write via ISO Image Filename
Directory traversal vulnerability in UltraISO 8.0.0.1392 allows remote attackers to write arbitrary files via a .. (dot dot) in a filename in an ISO image.
CVE-2005-0277 EXPLOITDB c WORKING POC
3Com 3CDaemon 2.0 revision 10 - Buffer Overflow via Long FTP Command Argument
Buffer overflow in the FTP service in 3Com 3CDaemon 2.0 revision 10 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via (1) a long username in the USER command or (2) an FTP command that contains a long argument, such as cd, send, or ls.
CVE-2007-0161 EXPLOITDB text WORKING POC
HP all-in-one drivers - Privilege Escalation
The PML Driver HPZ12 (HPZipm12.exe) in the HP all-in-one drivers, as used by multiple HP products, uses insecure SERVICE_CHANGE_CONFIG DACL permissions, which allows local users to gain privileges and execute arbitrary programs, as demonstrated by modifying the binpath argument, a related issue to CVE-2006-0023.
CVE-2008-2111 EXPLOITDB text STUB
Yahoo! Assistant < 3.6 - Remote Code Execution via Ynoifier COM Object
The ActiveX Control (yNotifier.dll) in Yahoo! Assistant 3.6 and earlier allows remote attackers to execute arbitrary code via unspecified vectors in the Ynoifier COM object that trigger memory corruption.
CVE-2005-3992 EXPLOITDB python WORKING POC
WinEggDropShell 1.7 - Remote Code Execution via Long HTTP GET or FTP USER/PASS Commands
Multiple buffer overflows in WinEggDropShell remote access trojan (RAT) 1.7 allow remote attackers to execute arbitrary code via (1) a long GET request to the HTTP server, or a long (2) USER or (3) PASS command to the FTP server.
CVE-2005-2767 EXPLOITDB text WORKING POC
LeapFTP - Buffer Overflow via Long Host String in Site Queue File
Buffer overflow in LeapFTP allows remote attackers to execute arbitrary code via a long Host string in a Site Queue (.lsq) file.
CVE-2005-3243 EXPLOITDB python WORKING POC
Ethereal <= 0.10.12 - Remote Code Execution via SLIMP3 and AgentX Dissector Buffer Overflow
Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow remote attackers to execute arbitrary code via unknown vectors in the (1) SLIMP3 and (2) AgentX dissector.
CVE-2004-2029 EXPLOITDB c WORKING POC
BNBT BitTorrent Tracker Beta 7.5 Release 2 - Denial of Service via Basic Authorization HTTP Request
The Util_DecodeHTTPAuth function in BNBT BitTorrent Tracker Beta 7.5 Release 2 and earlier allows remote attackers to cause a denial of service (crash) via a Basic Authorization HTTP request with a "A==" value.
CVE-2006-4384 EXPLOITDB text WRITEUP
Apple QuickTime < 7.1.3 - Remote Code Execution via FLIC COLOR_64 Chunk
Heap-based buffer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via the COLOR_64 chunk in a FLIC (FLC) movie.