ilja van sprundel

7 exploits Active since Mar 2005
CVE-2007-1397 EXPLOITDB perl WORKING POC
fish - Stack-Based Buffer Overflow in ExtractRnick and decrypt_topic_332 Functions
Multiple stack-based buffer overflows in the (1) ExtractRnick and (2) decrypt_topic_332 functions in FiSH allow remote attackers to execute arbitrary code via long strings.
CVE-2010-1174 EXPLOITDB python WORKING POC
Cisco TFTP Server 1.1 - Denial of Service via Crafted TFTP Packet
Cisco TFTP Server 1.1 allows remote attackers to cause a denial of service (daemon crash) via a crafted (1) read (aka RRQ) or (2) write (aka WRQ) request, or other TFTP packet. NOTE: some of these details are obtained from third party information.
CVE-2006-5836 EXPLOITDB c WORKING POC
Darwin Kernel 8.8.1 - Denial of Service via fpathconf Syscall
The fpathconf syscall function in bsd/kern/kern_descrip.c in the Darwin kernel (XNU) 8.8.1 in Apple Mac OS X allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code via a file descriptor with an unrecognized file type.
CVE-2008-5314 EXPLOITDB c WORKING POC
ClamAV < 0.94.2 - Denial of Service via Crafted JPEG File
Stack consumption vulnerability in libclamav/special.c in ClamAV before 0.94.2 allows remote attackers to cause a denial of service (daemon crash) via a crafted JPEG file, related to the cli_check_jpeg_exploit, jpeg_check_photoshop, and jpeg_check_photoshop_8bim functions.
CVE-2008-4437 EXPLOITDB xml WORKING POC
Bugzilla < 2.22.5 and 3.x < 3.0.5 - Path Traversal via XML Import Data Element
Directory traversal vulnerability in importxml.pl in Bugzilla before 2.22.5, and 3.x before 3.0.5, when --attach_path is enabled, allows remote attackers to read arbitrary files via an XML file with a .. (dot dot) in the data element.
CVE-2005-0750 EXPLOITDB c STUB
Linux Kernel <2.6.11.5 - Privilege Escalation
The bluez_sock_create function in the Bluetooth stack for Linux kernel 2.4.6 through 2.4.30-rc1 and 2.6 through 2.6.11.5 allows local users to gain privileges via (1) socket or (2) socketpair call with a negative protocol value.
CVE-2007-0085 EXPLOITDB c WORKING POC
OpenBSD 3.9-4.0 - Local Privilege Escalation via VGA PCI Driver NULL Pointer Dereference
Unspecified vulnerability in sys/dev/pci/vga_pci.c in the VGA graphics driver for wscons in OpenBSD 3.9 and 4.0, when the kernel is compiled with the PCIAGP option and a non-AGP device is being used, allows local users to gain privileges via unspecified vectors, possibly related to agp_ioctl NULL pointer reference.