Ussr Labs

43 exploits Active since Nov 1999
CVE-2000-0002 EXPLOITDB text WORKING POC
Zbsoft Zbserver - Buffer Overflow
Buffer overflow in ZBServer Pro 1.50 allows remote attackers to execute commands via a long GET request.
CVE-2000-1116 EXPLOITDB text WRITEUP
TransSoft Broker FTP Server <4.3.0.1 - Buffer Overflow
Buffer overflow in TransSoft Broker FTP Server before 4.3.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long command.
EIP-2026-118950 EXPLOITDB text WRITEUP
NetcPlus SmartServer3 3.5.1 - POP Buffer Overflow
CVE-2000-0567 EXPLOITDB perl WORKING POC
Microsoft Outlook - Buffer Overflow
Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability.
CVE-2000-0929 EXPLOITDB text WRITEUP
Microsoft Windows Media Player 7 - DoS
Microsoft Windows Media Player 7 allows attackers to cause a denial of service in RTF-enabled email clients via an embedded OCX control that is not closed properly, aka the "OCX Attachment" vulnerability.
CVE-2000-0567 EXPLOITDB text WRITEUP
Microsoft Outlook - Buffer Overflow
Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability.
CVE-2000-0129 EXPLOITDB text WORKING POC
Microsoft Windows 95 - Buffer Overflow
Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST command on a malformed .lnk file.
CVE-1999-0996 EXPLOITDB text WRITEUP
Infoseek Ultraseek Server - Buffer Overflow
Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request.
CVE-1999-1509 EXPLOITDB text WRITEUP
Etype Eserv - Path Traversal
Directory traversal vulnerability in Etype Eserv 2.50 web server allows a remote attacker to read any file in the file system via a .. (dot dot) in a URL.
CVE-2000-0734 EXPLOITDB text WRITEUP
Eeye Digital Security Iris - Denial of Service
eEye IRIS 1.01 beta allows remote attackers to cause a denial of service via a large number of UDP connections.
CVE-2000-0571 EXPLOITDB perl WORKING POC
West Street Software Localweb HTTP Server - Denial of Service
LocalWEB HTTP server 1.2.0 allows remote attackers to cause a denial of service via a long GET request.
CVE-2000-0075 EXPLOITDB text WRITEUP
Nosque Msgcore - Denial of Service
Super Mail Transfer Package (SMTP), later called MsgCore, has a memory leak which allows remote attackers to cause a denial of service by repeating multiple HELO, MAIL FROM, RCPT TO, and DATA commands in the same session.
CVE-2000-0272 EXPLOITDB text WRITEUP
Realnetworks Realserver - Denial of Service
RealNetworks RealServer allows remote attackers to cause a denial of service by sending malformed input to the server at port 7070.
CVE-1999-1539 EXPLOITDB text WRITEUP
QPC Software Qvt Net - Buffer Overflow
Buffer overflow in FTP server in QPC Software's QVT/Term Plus versions 4.2d and 4.3 and QVT/Net 4.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long (1) user name or (2) password.
CVE-2000-1002 EXPLOITDB perl WORKING POC
CommuniGate Pro 3.3.2 - Info Disclosure
POP3 daemon in Stalker CommuniGate Pro 3.3.2 generates different error messages for invalid usernames versus invalid passwords, which allows remote attackers to determine valid email addresses on the server for SPAM attacks.
CVE-2000-0166 EXPLOITDB text WRITEUP
Interaccess Telnetd Server - Buffer Overflow
Buffer overflow in the InterAccess telnet server TelnetD allows remote attackers to execute commands via a long login name.
CVE-2000-0212 EXPLOITDB text WRITEUP
Pragma Systems Interaccess Telnetd Server - Denial of Service
InterAccess TelnetD Server 4.0 allows remote attackers to conduct a denial of service via malformed terminal client configuration information.
CVE-2000-0232 EXPLOITDB text WRITEUP
Microsoft Terminal Server - Denial of Service
Microsoft TCP/IP Printing Services, aka Print Services for Unix, allows an attacker to cause a denial of service via a malformed TCP/IP print request.
CVE-2000-0056 EXPLOITDB text WRITEUP
Ipswitch Imail - Denial of Service
IMail IMONITOR status.cgi CGI script allows remote attackers to cause a denial of service with many calls to status.cgi.
CVE-1999-0991 EXPLOITDB text WORKING POC
Goodtech Telnet Server NT - Buffer Overflow
Buffer overflow in GoodTech Telnet Server NT allows remote users to cause a denial of service via a long login name.
CVE-2000-0991 EXPLOITDB text WRITEUP
Hilgraeve, Inc. HyperTerminal < - RCE
Buffer overflow in Hilgraeve, Inc. HyperTerminal client on Windows 98, ME, and 2000 allows remote attackers to execute arbitrary commands via a long telnet URL, aka the "HyperTerminal Buffer Overflow" vulnerability.
CVE-2000-0484 EXPLOITDB python WORKING POC
MAX Feoktistov Small HTTP Server - Denial of Service
Small HTTP Server ver 3.06 contains a memory corruption bug causing a memory overflow. The overflowed buffer crashes into a Structured Exception Handler resulting in a Denial of Service.
CVE-2000-0014 EXPLOITDB text WORKING POC
Michael Lamont Savant Webserver - Denial of Service
Denial of service in Savant web server via a null character in the requested URL.
CVE-2000-0408 EXPLOITDB text WRITEUP
Microsoft Internet Information Server - Denial of Service
IIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that appears to contain a large number of file extensions, aka the "Malformed Extension Data in URL" vulnerability.
CVE-1999-0844 EXPLOITDB text WRITEUP
Deerfield Mdaemon - Denial of Service
Denial of service in MDaemon WorldClient and WebConfig services via a long URL.