fl0 fl0w

57 exploits Active since Dec 2006
CVE-2010-3227 EXPLOITDB c WORKING POC
Microsoft MFC Library - Buffer Overflow
Stack-based buffer overflow in the UpdateFrameTitleForDocument method in the CFrameWnd class in mfc42.dll in the Microsoft Foundation Class (MFC) Library in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows context-dependent attackers to execute arbitrary code via a long window title that this library attempts to create at the request of an application, as demonstrated by the Trident PowerZip 7.2 Build 4010 application, aka "Windows MFC Document Title Updating Buffer Overflow Vulnerability."
CVE-2009-1058 EXPLOITDB c WORKING POC
ZipGenius - Stack-Based Buffer Overflow via Crafted ZIP File
Stack-based buffer overflow in ZipGenius might allow remote attackers to execute arbitrary code via a crafted .zip file that triggers an SEH overwrite. NOTE: it is possible that this overlaps CVE-2005-3317. NOTE: CVE has not investigated whether the specified file.zip file can be used for exploitation of this product.
CVE-2009-1057 EXPLOITDB c WORKING POC
MicroSmarts ZipItFast! 3.0 - Remote Code Execution via Crafted ZIP File
MicroSmarts Enterprise ZipItFast! 3.0 allows remote attackers to execute arbitrary code via a crafted .zip file that triggers memory corruption, related to a "format string buffer overflow." NOTE: CVE has not investigated whether the specified file.zip file can be used for exploitation of this product.
CVE-2009-1028 EXPLOITDB c WORKING POC
ediSys eZip Wizard 3.0 - Stack-Based Buffer Overflow via Crafted ZIP File
Stack-based buffer overflow in ediSys eZip Wizard 3.0 allows remote attackers to execute arbitrary code via a crafted .zip file.
CVE-2006-6665 METASPLOIT ruby WORKING POC
Astonsoft DeepBurner Pro & Free <1.8.0 - RCE
Buffer overflow in Astonsoft DeepBurner Pro and Free 1.8.0 and earlier allows user-assisted remote attackers to execute arbitrary code via a long file name tag in a dbr file.
CVE-2009-1028 METASPLOIT ruby WORKING POC
ediSys eZip Wizard 3.0 - Stack-Based Buffer Overflow via Crafted ZIP File
Stack-based buffer overflow in ediSys eZip Wizard 3.0 allows remote attackers to execute arbitrary code via a crafted .zip file.
CVE-2009-0546 METASPLOIT ruby WORKING POC
NewsGator FeedDemon <2.7 - Buffer Overflow
Stack-based buffer overflow in NewsGator FeedDemon 2.7 and earlier allows user-assisted remote attackers to execute arbitrary code via a long text attribute in an outline element in a .opml file.
EIP-2026-119530 EXPLOITDB c WORKING POC
HTMLDOC 1.9.x-r1629 (Windows x86) - '.html' Local Buffer Overflow
EIP-2026-119554 EXPLOITDB c WORKING POC
RadASM - '.rap' file Local Buffer Overflow
CVE-2007-4370 EXPLOITDB c WORKING POC
Racer 0.5.3 beta 5 - Buffer Overflow
Multiple buffer overflows in the (1) client and (2) server in Racer 0.5.3 beta 5 allow remote attackers to execute arbitrary code via a long string to UDP port 26000.
EIP-2026-119207 EXPLOITDB c WORKING POC
TeamViewer 5.0.8232 - Remote Buffer Overflow
CVE-2008-3957 EXPLOITDB c++ WORKING POC
Microsoft Windows Image Acquisition Logger ActiveX - RCE
The Microsoft Windows Image Acquisition Logger ActiveX control allows remote attackers to force the download of arbitrary files onto a client system via a URL in the first argument to the Open method, in conjunction with a full destination pathname in the first argument to the Save method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2007-0949 EXPLOITDB c WORKING POC
iTinySoft Studio Total Video Player <1.03 - Buffer Overflow
Stack-based buffer overflow in iTinySoft Studio Total Video Player 1.03, and possibly earlier, allows remote attackers to execute arbitrary code via a M3U playlist file that contains a long file name. NOTE: it was later reported that 1.20 and 1.30 are also affected.
CVE-2007-0949 EXPLOITDB c++ WORKING POC
iTinySoft Studio Total Video Player <1.03 - Buffer Overflow
Stack-based buffer overflow in iTinySoft Studio Total Video Player 1.03, and possibly earlier, allows remote attackers to execute arbitrary code via a M3U playlist file that contains a long file name. NOTE: it was later reported that 1.20 and 1.30 are also affected.
EIP-2026-118104 EXPLOITDB c WORKING POC
Winamp 5.05 < 5.13 - '.ini' Local Stack Buffer Overflow
EIP-2026-118064 EXPLOITDB c++ WORKING POC
VirtualDJ Trial 6.0.6 'New Year Edition' - '.m3u' Local Overflow
CVE-2008-4779 EXPLOITDB c++ WORKING POC
Tguzip - Memory Corruption
Stack-based buffer overflow in TUGzip 3.5.0.0 allows remote attackers to denial of service (crash) or execute arbitrary code via a long filename in a .zip file.
EIP-2026-118039 EXPLOITDB c WORKING POC
UltraISO 9.3.6.2750 - Local Buffer Overflow
EIP-2026-118324 EXPLOITDB c++ WORKING POC
BlazeVideo HDTV Player 3.5 - '.PLF' File Stack Buffer Overflow
CVE-2010-0364 EXPLOITDB c WORKING POC
VideoLAN VLC Media Player 0.8.6 - Stack-Based Buffer Overflow via Crafted Advanced SubStation Alpha Subtitle
Stack-based buffer overflow in VideoLAN VLC Media Player 0.8.6 allows user-assisted remote attackers to execute arbitrary code via an ogg file with a crafted Advanced SubStation Alpha Subtitle (.ass) file, probably involving the Dialogue field.
CVE-2009-3338 EXPLOITDB c++ WORKING POC
EffectMatrix Magic Morph 1.95b - Stack-Based Buffer Overflow via .mor File
Stack-based buffer overflow in EffectMatrix (E.M.) Magic Morph 1.95b allows remote attackers to execute arbitrary code via a long string in a .mor file.
EIP-2026-117382 EXPLOITDB c WORKING POC
Kingsoft Writer 2010 - Local Stack Buffer Overflow
CVE-2007-2192 EXPLOITDB c WORKING POC
Photofiltre Studio 8.1.1 - Buffer Overflow via Crafted TIFF File
Buffer overflow in Photofiltre Studio 8.1.1 allows user-assisted remote attackers to execute arbitrary code via a crafted .tif file.
EIP-2026-117458 EXPLOITDB c WORKING POC
Mediacoder 0.7.3.4605 - Local Buffer Overflow
EIP-2026-117610 EXPLOITDB c WORKING POC
Mini-stream Ripper 3.1.2.1 - Local Buffer Overflow (DEP Bypass)