Thomas Pollet

15 exploits Active since Feb 2006
CVE-2007-5759 EXPLOITDB python WORKING POC
Rejected
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-6335. Reason: This candidate is a duplicate of CVE-2007-6335. Notes: All CVE users should reference CVE-2007-6335 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
CVE-2007-2711 EXPLOITDB python WORKING POC
TinyIdentD < 2.2 - Remote Code Execution via Long String to TCP Port 113
Stack-based buffer overflow in TinyIdentD 2.2 and earlier allows remote attackers to execute arbitrary code via a long string to TCP port 113.
EIP-2026-118662 EXPLOITDB html WORKING POC
Hummingbird HostExplorer 6.2/8.0 - ActiveX Control 'PlainTextPassword()' Remote Buffer Overflow
CVE-2007-2888 EXPLOITDB python WORKING POC
UltraISO <8.6.2.2011 - Buffer Overflow
Stack-based buffer overflow in UltraISO 8.6.2.2011 and earlier allows user-assisted remote attackers to execute arbitrary code via a long FILE string (filename) in a .cue file, a related issue to CVE-2007-2761. NOTE: some details are obtained from third party information.
CVE-2006-7065 EXPLOITDB text WRITEUP
Microsoft IE - Denial of Service
Microsoft Internet Explorer allows remote attackers to cause a denial of service (crash) via an IFRAME with a certain XML file and XSL stylesheet that triggers a crash in mshtml.dll when a refresh is called, probably a null pointer dereference.
CVE-2008-4729 EXPLOITDB html WORKING POC
Hummingbird Exceed < 13.0 - Stack-Based Buffer Overflow via PlainTextPassword Property
Stack-based buffer overflow in Hummingbird.XWebHostCtrl.1 ActiveX control (hclxweb.dll) in Hummingbird Xweb ActiveX Control 13.0 and earlier allows remote attackers to execute arbitrary code via a long PlainTextPassword property. NOTE: code execution might not be possible in 13.0.
CVE-2007-2434 EXPLOITDB text WORKING POC
Aventail Connect 4.1.2.13 - Buffer Overflow
Buffer overflow in asnsp.dll in Aventail Connect 4.1.2.13 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a malformed DNS query.
CVE-2008-1965 EXPLOITDB text WORKING POC
IBM Lotus Expeditor Client for Desktop <6.1.2 - Command Injection
Argument injection vulnerability in the cai: URI handler in rcplauncher in IBM Lotus Expeditor Client for Desktop 6.1.1 and 6.1.2, as used by Lotus Symphony and possibly other products, allows remote attackers to execute arbitrary code by injecting a -launcher option via a cai: URI, as demonstrated by a reference to a UNC share pathname.
CVE-2006-0933 EXPLOITDB text WRITEUP
PHPX 3.5.9 - Cross-Site Scripting via XCode URL Tag
Cross-site scripting (XSS) vulnerability in PHPX 3.5.9 allows remote attackers to inject arbitrary web script or HTML via a javascript URI in a url XCode tag in a posted message. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2006-4563 EXPLOITDB text WRITEUP
MyHeadlines < 4.3.1 - Cross-Site Scripting via myh_op Parameter
Cross-site scripting (XSS) vulnerability in the MyHeadlines before 4.3.2 module for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the myh_op parameter to modules.php.
EIP-2026-110451 EXPLOITDB text WORKING POC
Palo Alto Networks Pan-OS 5.0.8 - Multiple Vulnerabilities
CVE-2013-2131 EXPLOITDB c WORKING POC
rrdtool 1.4.7 - Denial of Service via Format String Specifiers in rrdtool.graph
Format string vulnerability in the rrdtool module 1.4.7 for Python, as used in Zenoss, allows context-dependent attackers to cause a denial of service (crash) via format string specifiers to the rrdtool.graph function.
CVE-2007-6335 EXPLOITDB python WORKING POC
ClamAV < 0.92 - Remote Code Execution via MEW Packed PE File
Integer overflow in libclamav in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow.
CVE-2014-2851 EXPLOITDB c WORKING POC
Linux Kernel < 3.14.1 - Use-After-Free in ping_init_sock
Integer overflow in the ping_init_sock function in net/ipv4/ping.c in the Linux kernel through 3.14.1 allows local users to cause a denial of service (use-after-free and system crash) or possibly gain privileges via a crafted application that leverages an improperly managed reference counter.
CVE-2006-4254 EXPLOITDB python WORKING POC
IBM AIX <5.3.0 - Privilege Escalation
Unspecified vulnerability in setlocale in IBM AIX 5.1.0 through 5.3.0 allows local users to gain privileges via unspecified vectors.