TheLeader

20 exploits Active since Dec 2002
CVE-2010-3143 EXPLOITDB c WORKING POC
Microsoft Windows Contacts - Untrusted Search Path and DLL Hijacking via Trojan Horse wab32res.dll
Untrusted search path vulnerability in Microsoft Windows Contacts allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wab32res.dll that is located in the same folder as a .contact, .group, .p7c, .vcf, or .wab file. NOTE: the codebase for this product may overlap the codebase for the product referenced in CVE-2010-3147.
CVE-2010-3141 EXPLOITDB c WORKING POC
Microsoft PowerPoint 2010 - DLL Hijacking via Untrusted Search Path
Untrusted search path vulnerability in Microsoft PowerPoint 2010 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse pptimpconv.dll that is located in the same folder as a .odp, .pot, .potm, .potx, .ppa, .pps, .ppsm, .ppsx, .ppt, .pptm, .pptx, .pwz, .sldm, or .sldx file.
CVE-2002-2268 METASPLOIT ruby WORKING POC
Webster HTTP Server - Remote Code Execution via Long URL
Buffer overflow in Webster HTTP Server allows remote attackers to execute arbitrary code via a long URL.
CVE-2010-5301 EXPLOITDB python WORKING POC
Kolibri 2.0 - Remote Code Execution via Long URI in HEAD Request
Stack-based buffer overflow in Kolibri 2.0 allows remote attackers to execute arbitrary code via a long URI in a HEAD request.
CVE-2002-2268 EXPLOITDB ruby WORKING POC
Webster HTTP Server - Remote Code Execution via Long URL
Buffer overflow in Webster HTTP Server allows remote attackers to execute arbitrary code via a long URL.
EIP-2026-118638 EXPLOITDB php WORKING POC
Home FTP Server 1.11.1.149 - 'RETR'/'DELE'/'RMD' Directory Traversal
CVE-2010-3133 EXPLOITDB c WORKING POC
Wireshark 0.8.4-1.0.15 and 1.2.0-1.2.10 - Untrusted Search Path DLL Hijacking via Trojan Horse DLL
Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 through 1.2.10 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse airpcap.dll, and possibly other DLLs, that is located in the same folder as a file that automatically launches Wireshark.
CVE-2010-3129 EXPLOITDB c WORKING POC
uTorrent <= 2.0.3 - DLL Hijacking via Trojan Horse DLL in Torrent File Directory
Untrusted search path vulnerability in uTorrent 2.0.3 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse plugin_dll.dll, userenv.dll, shfolder.dll, dnsapi.dll, dwmapi.dll, iphlpapi.dll, dhcpcsvc.dll, dhcpcsvc6.dll, or rpcrtremote.dll that is located in the same folder as a .torrent or .btsearch file.
CVE-2010-5227 EXPLOITDB c WORKING POC
Opera <10.62 - Privilege Escalation
Untrusted search path vulnerability in Opera before 10.62 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .htm, .mht, .mhtml, .xht, .xhtm, or .xhtl file. NOTE: some of these details are obtained from third party information.
CVE-2010-3142 EXPLOITDB c WORKING POC
Microsoft Office PowerPoint 2007 - RCE
Untrusted search path vulnerability in Microsoft Office PowerPoint 2007 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse rpawinet.dll that is located in the same folder as a .odp, .pothtml, .potm, .potx, .ppa, .ppam, .pps, .ppt, .ppthtml, .pptm, .pptxml, .pwz, .sldm, .sldx, and .thmx file.
CVE-2010-3147 EXPLOITDB c WORKING POC
Windows Address Book <6.00.2900.5512 - Privilege Escalation
Untrusted search path vulnerability in wab.exe 6.00.2900.5512 in Windows Address Book in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows local users to gain privileges via a Trojan horse wab32res.dll file in the current working directory, as demonstrated by a directory that contains a Windows Address Book (WAB), VCF (aka vCard), or P7C file, aka "Insecure Library Loading Vulnerability." NOTE: the codebase for this product may overlap the codebase for the product referenced in CVE-2010-3143.
EIP-2026-117569 EXPLOITDB c WORKING POC
Microsoft Windows Live Email - 'dwmapi.dll' DLL Hijacking
CVE-2010-3967 EXPLOITDB c WORKING POC
Microsoft Windows Movie Maker 2.6 - Privilege Escalation
Untrusted search path vulnerability in Microsoft Windows Movie Maker (WMM) 2.6 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a Movie Maker (MSWMM) file, aka "Insecure Library Loading Vulnerability."
EIP-2026-117769 EXPLOITDB php WORKING POC
PHP 6.0 Dev - 'str_transliterate()' Local Buffer Overflow
CVE-2009-1045 EXPLOITDB perl WORKING POC
VLC Media Player 0.9.8a - Denial of Service via Long Input Argument in requests/status.xml
requests/status.xml in VLC 0.9.8a allows remote attackers to cause a denial of service (stack consumption and crash) via a long input argument in an in_play action.
EIP-2026-115801 EXPLOITDB python WORKING POC
Microsoft Windows Live Messenger 14.0.8117 - Animation Remote Denial of Service
EIP-2026-115169 EXPLOITDB perl WORKING POC
dTunes 2.72 - Filename Processing Local Format String (PoC)
EIP-2026-114915 EXPLOITDB html WORKING POC
Apple iPhone 2.2.1/3.x - MobileSafari Crash + Reboot (Denial of Service)
EIP-2026-114404 EXPLOITDB text WRITEUP
XAMPP 1.7.3 - Multiple Vulnerabilities
EIP-2026-100985 EXPLOITDB php WORKING POC
Apple iOS Safari - body alink Remote Crash