c0d3r

12 exploits Active since Aug 2004
CVE-2006-5961 EXPLOITDB c WORKING POC
Mercury Mail Transport System 4.01b - Buffer Overflow
Buffer overflow in Mercury Mail Transport System 4.01b for Windows has unknown impact and attack vectors, as originally reported in a GLEG VulnDisco pack. NOTE: the provenance of this information is unknown; the details are obtained from third party information. The original researcher is reliable.
CVE-2005-1173 EXPLOITDB c WORKING POC
PMSoftware Simple Web Server 1.0 - RCE
Buffer overflow in PMSoftware Simple Web Server 1.0 allows remote attackers to execute arbitrary code via a long GET request.
CVE-2007-1373 EXPLOITDB c WORKING POC
Mercury Mail Transport System < 4.01b - Remote Code Execution via Long LOGIN Command
Stack-based buffer overflow in Mercury/32 (aka Mercury Mail Transport System) 4.01b and earlier allows remote attackers to execute arbitrary code via a long LOGIN command. NOTE: this might be the same issue as CVE-2006-5961.
CVE-2005-0634 EXPLOITDB c WORKING POC
Golden FTP Server 1.92 - Remote Code Execution via Long USER Command
Buffer overflow in Golden FTP Server 1.92 allows remote attackers to execute arbitrary code via a long USER command.
CVE-2005-4620 EXPLOITDB c WORKING POC
WinRAR 3.50 - Local Buffer Overflow via Long Command-Line Argument
Buffer overflow in WinRAR 3.50 and earlier allows local users to execute arbitrary code via a long command-line argument. NOTE: because this program executes with the privileges of the invoking user, and because remote programs do not normally have the ability to specify a command-line argument for this program, there may not be a typical attack vector for the issue that crosses privilege boundaries. Therefore this may not be a vulnerability.
CVE-2005-0277 EXPLOITDB c WORKING POC
3Com 3CDaemon 2.0 revision 10 - Buffer Overflow via Long FTP Command Argument
Buffer overflow in the FTP service in 3Com 3CDaemon 2.0 revision 10 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via (1) a long username in the USER command or (2) an FTP command that contains a long argument, such as cd, send, or ls.
CVE-2005-2210 EXPLOITDB c WORKING POC
Internet Download Manager 4.05 - Stack-based Buffer Overflow via Long URL
Stack-based buffer overflow in Internet Download Manager 4.05 allows remote attackers to execute arbitrary code via a long URL.
EIP-2026-114928 EXPLOITDB c WORKING POC
ArGoSoft FTP Server 1.4.2.8 - Denial of Service
EIP-2026-104634 EXPLOITDB c WORKING POC
iWebNegar 1.1 - Configuration Nullification Denial of Service
CVE-2006-2022 EXPLOITDB c WORKING POC
Fenice < 1.10 - Remote Code Execution via RTSP URL Parsing Buffer Overflow
Buffer overflow in the parse_url function in the RTSP module (rtsp/parse_url.c) in Fenice 1.10 and earlier allows remote attackers to execute arbitrary code via a long URL.
CVE-2004-0548 EXPLOITDB c WORKING POC
Aspell - Stack-Based Buffer Overflow via Wordlist Compression
Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the (1) "c" compress option or (2) "d" decompress option.
CVE-2005-1412 EXPLOITDB text WRITEUP
Ecomm Professional Guestbook <3.x - SQL Injection
SQL injection vulnerability in verify.asp for Ecomm Professional Guestbook 3.x allows remote attackers to execute arbitrary SQL commands via the AdminPWD parameter.