Sowhat

13 exploits Active since May 2004
CVE-2006-2101 EXPLOITDB text WRITEUP
Winiso - Path Traversal
Directory traversal vulnerability in WinISO 5.3 allows remote attackers to write arbitrary files via a .. (dot dot) in a filename in an ISO image.
CVE-2005-0731 EXPLOITDB text WRITEUP
PY Software Active Webcam - Denial of Service
PY Software Active Webcam WebServer (webcam.exe) 5.5 allows remote attackers to cause a denial of service (CPU consumption) via a direct request to Filelist.html.
CVE-2006-2102 EXPLOITDB text WRITEUP
Poweriso - Path Traversal
Directory traversal vulnerability in PowerISO 2.9 allows remote attackers to write arbitrary files via a .. (dot dot) in a filename in an ISO image.
CVE-2006-2100 EXPLOITDB text WRITEUP
Magic Iso Maker < 5.0_build_0166 - Path Traversal
Directory traversal vulnerability in Magic ISO 5.0 Build 0166 allows remote attackers to write arbitrary files via a .. (dot dot) in a filename in an ISO image.
CVE-2006-2099 EXPLOITDB text WRITEUP
EZB Systems Ultraiso - Path Traversal
Directory traversal vulnerability in UltraISO 8.0.0.1392 allows remote attackers to write arbitrary files via a .. (dot dot) in a filename in an ISO image.
CVE-2005-0277 EXPLOITDB c WORKING POC
3com 3cdaemon - Buffer Overflow
Buffer overflow in the FTP service in 3Com 3CDaemon 2.0 revision 10 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via (1) a long username in the USER command or (2) an FTP command that contains a long argument, such as cd, send, or ls.
CVE-2007-0161 EXPLOITDB text WORKING POC
HP all-in-one drivers - Privilege Escalation
The PML Driver HPZ12 (HPZipm12.exe) in the HP all-in-one drivers, as used by multiple HP products, uses insecure SERVICE_CHANGE_CONFIG DACL permissions, which allows local users to gain privileges and execute arbitrary programs, as demonstrated by modifying the binpath argument, a related issue to CVE-2006-0023.
CVE-2008-2111 EXPLOITDB text STUB
Yahoo Assistant < 3.6 - Resource Management Error
The ActiveX Control (yNotifier.dll) in Yahoo! Assistant 3.6 and earlier allows remote attackers to execute arbitrary code via unspecified vectors in the Ynoifier COM object that trigger memory corruption.
CVE-2005-3992 EXPLOITDB python WORKING POC
Wineggdropshell - Buffer Overflow
Multiple buffer overflows in WinEggDropShell remote access trojan (RAT) 1.7 allow remote attackers to execute arbitrary code via (1) a long GET request to the HTTP server, or a long (2) USER or (3) PASS command to the FTP server.
CVE-2005-2767 EXPLOITDB text WORKING POC
LeapFTP - Buffer Overflow
Buffer overflow in LeapFTP allows remote attackers to execute arbitrary code via a long Host string in a Site Queue (.lsq) file.
CVE-2005-3243 EXPLOITDB python WORKING POC
Ethereal - Buffer Overflow
Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow remote attackers to execute arbitrary code via unknown vectors in the (1) SLIMP3 and (2) AgentX dissector.
CVE-2004-2029 EXPLOITDB c WORKING POC
Trevor Hogan Bnbt - Denial of Service
The Util_DecodeHTTPAuth function in BNBT BitTorrent Tracker Beta 7.5 Release 2 and earlier allows remote attackers to cause a denial of service (crash) via a Basic Authorization HTTP request with a "A==" value.
CVE-2006-4384 EXPLOITDB text WRITEUP
Apple Quicktime < 7.1.2 - Buffer Overflow
Heap-based buffer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via the COLOR_64 chunk in a FLIC (FLC) movie.