kingcope

113 exploits Active since Dec 2004
EIP-2026-100966 EXPLOITDB text WORKING POC
FreeBSD OpenSSH 3.5p1 - Remote Command Execution
EIP-2026-100965 EXPLOITDB text WORKING POC
FreeBSD - 'ftpd / ProFTPd' Remote Command Execution
CVE-2009-0641 EXPLOITDB text WORKING POC
FreeBSD 7.x - RCE
sys_term.c in telnetd in FreeBSD 7.0-RELEASE and other 7.x versions deletes dangerous environment variables with a method that was valid only in older FreeBSD distributions, which might allow remote attackers to execute arbitrary code by passing a crafted environment variable from a telnet client, as demonstrated by an LD_PRELOAD value that references a malicious library.
CVE-2010-2693 EXPLOITDB c WORKING POC
FreeBSD <8.1-PRERELEASE - DoS
FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and gain privileges via the sendfile system call.
CVE-2006-6652 EXPLOITDB perl WORKING POC
NetBSD-current <20050914 - NetBSD libc - RCE
Buffer overflow in the glob implementation (glob.c) in libc in NetBSD-current before 20050914, NetBSD 2.* and 3.* before 20061203, and Apple Mac OS X before 2007-004, as used by the FTP daemon and tnftpd, allows remote authenticated users to execute arbitrary code via a long pathname that results from path expansion.
EIP-2026-100689 EXPLOITDB text WORKING POC
BSD - 'TelnetD' Remote Command Execution (2)
CVE-2005-3098 EXPLOITDB bash WORKING POC
Qualcomm qpopper <4.0.8 - Privilege Escalation
poppassd in Qualcomm qpopper 4.0.8 allows local users to modify arbitrary files and gain privileges via the -t (trace file) command line argument.
CVE-2009-4147 EXPLOITDB text WORKING POC
FreeBSD 7.1-8.0 - Privilege Escalation
The _rtld function in the Run-Time Link-Editor (rtld) in libexec/rtld-elf/rtld.c in FreeBSD 7.1 and 8.0 does not clear the (1) LD_LIBMAP, (2) LD_LIBRARY_PATH, (3) LD_LIBMAP_DISABLE, (4) LD_DEBUG, and (5) LD_ELF_HINTS_PATH environment variables, which allows local users to gain privileges by executing a setuid or setguid program with a modified variable containing an untrusted search path that points to a Trojan horse library, different vectors than CVE-2009-4146.
EIP-2026-100685 EXPLOITDB c WORKING POC
FreeBSD 4.x / < 5.4 - 'master.passwd' Disclosure
EIP-2026-100670 EXPLOITDB c WORKING POC
FreeBSD 8.0 - Local Forced Reboot (Denial of Service)
EIP-2026-100671 EXPLOITDB c WORKING POC
FreeBSD 8.0 / OpenBSD 4.x - 'ftpd' Null Pointer Dereference Denial of Service
CVE-2010-3187 EXPLOITDB c WORKING POC
IBM AIX <5.3 - RCE
Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows remote attackers to execute arbitrary code via a long NLST command.
CVE-2010-3187 EXPLOITDB perl WORKING POC
IBM AIX <5.3 - RCE
Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows remote attackers to execute arbitrary code via a long NLST command.