UNYUN

42 exploits Active since Feb 1997
CVE-1999-0873 EXPLOITDB c WORKING POC
Skyfull - Buffer Overflow via MAIL FROM Command
Buffer overflow in Skyfull mail server via MAIL FROM command.
EIP-2026-119114 EXPLOITDB c WORKING POC
SapporoWorks Black JumboDog 2.6.4/2.6.5 - HTTP Proxy Buffer Overflow
CVE-2002-0207 EXPLOITDB c WORKING POC
RealOne Player < 8.0 - Buffer Overflow via Header Length Mismatch
Buffer overflow in Real Networks RealPlayer 8.0 and earlier allows remote attackers to execute arbitrary code via a header length value that exceeds the actual length of the header.
CVE-2002-1014 EXPLOITDB c WORKING POC
RealJukebox 2 and RealOne Player - Buffer Overflow via RFS Skin File
Buffer overflow in RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary code via an RFS skin file whose skin.ini contains a long value in a CONTROLnImage argument, such as CONTROL1Image.
CVE-1999-0915 EXPLOITDB text WRITEUP
URL Live! - Unauthenticated Path Traversal via Dot-Dot Attack
URL Live! web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.
CVE-1999-0951 EXPLOITDB c WORKING POC
omnihttpd - Buffer Overflow in imagemap.exe
Buffer overflow in OmniHTTPd CGI program imagemap.exe allows remote attackers to execute commands.
EIP-2026-118949 EXPLOITDB c WORKING POC
NetcPlus SmartServer 3.5.1 - SMTP Buffer Overflow
CVE-1999-0671 EXPLOITDB c WORKING POC
ToxSoft NextFTP - Buffer Overflow via CWD Command
Buffer overflow in ToxSoft NextFTP client through CWD command.
CVE-2000-0592 EXPLOITDB c WORKING POC
sapporoworks_winproxy 2.0-2.0.1 - Remote Code Execution via Long POP3 Commands
Buffer overflows in POP3 service in WinProxy 2.0 and 2.0.1 allow remote attackers to execute arbitrary commands via long USER, PASS, LIST, RETR, or DELE commands.
CVE-2000-0330 EXPLOITDB c WORKING POC
Windows 95 and 98 - Remote Code Execution via Long File Name String
The networking software in Windows 95 and Windows 98 allows remote attackers to execute commands via a long file name string, aka the "File Access URL" vulnerability.
CVE-2000-0330 EXPLOITDB c WORKING POC
Windows 95 and 98 - Remote Code Execution via Long File Name String
The networking software in Windows 95 and Windows 98 allows remote attackers to execute commands via a long file name string, aka the "File Access URL" vulnerability.
EIP-2026-118691 EXPLOITDB c WORKING POC
International TeleCommunications WebBBS 2.13 - login & Password Buffer Overflow
CVE-1999-1531 EXPLOITDB c WORKING POC
IBM HomePagePrint 1.0.7 - Buffer Overflow via Long IMG_SRC HTML Tag
Buffer overflow in IBM HomePagePrint 1.0.7 for Windows98J allows a malicious Web site to execute arbitrary code on a viewer's system via a long IMG_SRC HTML tag.
CVE-1999-1521 EXPLOITDB c WORKING POC
Computalynx CMail 2.3 SP2 and 2.4 - Remote Code Execution via MAIL FROM Command Buffer Overflow
Computalynx CMail 2.4 and CMail 2.3 SP2 SMTP servers are vulnerable to a buffer overflow attack in the MAIL FROM command that may allow a remote attacker to execute arbitrary code on the server.
CVE-1999-0673 EXPLOITDB c WORKING POC
ALMail32 - Buffer Overflow via From or To Header
Buffer overflow in ALMail32 POP3 client via From: or To: headers.
CVE-1999-0759 EXPLOITDB c WORKING POC
FuseMAIL - Buffer Overflow via Long USER and PASS Commands
Buffer overflow in FuseMAIL POP service via long USER and PASS commands.
CVE-2000-0133 EXPLOITDB c WORKING POC
Tiny FTPd < 0.52 - Buffer Overflow via STOR/RNTO/MKD/XMKD/RMD/XRMD/APPE/SIZE/RNFR Commands
Buffer overflows in Tiny FTPd 0.52 beta3 FTP server allows users to execute commands via the STOR, RNTO, MKD, XMKD, RMD, XRMD, APPE, SIZE, and RNFR commands.
CVE-1999-0672 EXPLOITDB c WORKING POC
Fujitsu Chocoa - Buffer Overflow via IRC Channel Topic
Buffer overflow in Fujitsu Chocoa IRC client via IRC channel topics.
CVE-2002-0252 EXPLOITDB c WORKING POC
Apple QuickTime 5.01-5.02 - Remote Code Execution via Long Content-Type MIME Header
Buffer overflow in Apple QuickTime Player 5.01 and 5.02 allows remote web servers to execute arbitrary code via a response containing a long Content-Type MIME header.
CVE-1999-1007 EXPLOITDB c WORKING POC
VDO Live Player - Remote Code Execution via Malformed .vdo File
Buffer overflow in VDO Live Player allows remote attackers to execute commands on the VDO client via a malformed .vdo file.
CVE-1999-0946 EXPLOITDB c WORKING POC
Yamaha MidiPlug - Buffer Overflow via EMBED Tag Text Variable
Buffer overflow in Yamaha MidiPlug via a Text variable in an EMBED tag.
CVE-1999-1190 EXPLOITDB c WORKING POC
Admiral Systems EmailClub 1.05 - RCE
Buffer overflow in POP3 server of Admiral Systems EmailClub 1.05 allows remote attackers to execute arbitrary commands via a long "From" header in an e-mail message.
CVE-1999-0947 EXPLOITDB text WORKING POC
an-httpd - Remote Command Execution via Example CGI Scripts
AN-HTTPd provides example CGI scripts test.bat, input.bat, input2.bat, and envout.bat, which allow remote attackers to execute commands via shell metacharacters.
EIP-2026-118260 EXPLOITDB c WORKING POC
Antelope Software W4-Server 2.6 a/Win32 - 'Cgitest.exe' Remote Buffer Overflow
CVE-2001-0198 EXPLOITDB c++ WORKING POC
QuickTime Player plugin 4.1.2 - Buffer Overflow via EMBED Tag HREF Parameter
Buffer overflow in QuickTime Player plugin 4.1.2 (Japanese) allows remote attackers to execute arbitrary commands via a long HREF parameter in an EMBED tag.