mr_me

214 exploits Active since Dec 2002
CVE-2011-3492 EXPLOITDB ruby WORKING POC
Azeotech DAQFactory <5.85.1853 - Buffer Overflow
Stack-based buffer overflow in Azeotech DAQFactory 5.85 build 1853 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted NETB packet to UDP port 20034.
CVE-2011-3493 EXPLOITDB python WORKING POC
Cogent DataHub <7.1.1.63 - Buffer Overflow
Multiple stack-based buffer overflows in the DH_OneSecondTick function in Cogent DataHub 7.1.1.63 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long (1) domain, (2) report_domain, (3) register_datahub, or (4) slave commands.
CVE-2017-8982 EXPLOITDB HIGH ruby WORKING POC
HPE Intelligent Management Center PLAT 7.3 E0504P4 - Remote Authentication Restriction Bypass
A Remote Authentication Restriction Bypass vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0504P4 was found.
CVSS 7.5
EIP-2026-118315 EXPLOITDB python WORKING POC
Bigant Messenger 2.52 - 'AntCore.dll RegisterCom()' Remote Heap Overflow
EIP-2026-117895 EXPLOITDB python WORKING POC
SAP Player 0.9 - '.pla' Universal Local Buffer Overflow (SEH)
CVE-2011-4535 EXPLOITDB php WORKING POC
TurboPower Abbrevia < 3.05 - Buffer Overflow via Crafted ZIP File
Buffer overflow in TurboPower Abbrevia before 4.0, as used in ScadaTEC ScadaPhone 5.3.11.1230 and earlier, ScadaTEC ModbusTagServer 4.1.1.81 and earlier, and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ZIP file.
CVE-2011-4535 EXPLOITDB ruby WORKING POC
TurboPower Abbrevia < 3.05 - Buffer Overflow via Crafted ZIP File
Buffer overflow in TurboPower Abbrevia before 4.0, as used in ScadaTEC ScadaPhone 5.3.11.1230 and earlier, ScadaTEC ModbusTagServer 4.1.1.81 and earlier, and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ZIP file.
CVE-2009-4097 EXPLOITDB python WORKING POC
Serenity Audio Player <3.2.3 - Buffer Overflow
Stack-based buffer overflow in the MplayInputFile function in Serenity Audio Player 3.2.3 and earlier allows remote attackers to execute arbitrary code via a long URL in an M3U file. NOTE: some of these details are obtained from third party information.
EIP-2026-117976 EXPLOITDB c WORKING POC
SureThing CD Labeler - '.m3u/.pls' Unicode Stack Overflow
CVE-2008-4779 EXPLOITDB ruby WORKING POC
Tguzip - Memory Corruption
Stack-based buffer overflow in TUGzip 3.5.0.0 allows remote attackers to denial of service (crash) or execute arbitrary code via a long filename in a .zip file.
CVE-2011-2386 EXPLOITDB ruby WORKING POC
VisiWave Site Survey < 2.1.9 - Remote Code Execution via Invalid Type Property in VWS/VWR Files
VisiWaveReport.exe in AZO Technologies, Inc. VisiWave Site Survey before 2.1.9 allows user-assisted remote attackers to execute arbitrary code via a (1) vws and (2) vwr file with an invalid Type property, which triggers an untrusted pointer dereference.
EIP-2026-118079 EXPLOITDB python WORKING POC
VUPlayer 2.49 - '.m3u' File Universal Buffer Overflow (DEP Bypass) (1)
EIP-2026-118081 EXPLOITDB python WORKING POC
VUPlayer 2.49 - '.m3u' Universal Buffer Overflow
EIP-2026-118200 EXPLOITDB php WORKING POC
Zip Unzip 6.0 - '.zip' Local Stack Buffer Overflow
CVE-2010-1597 EXPLOITDB python WORKING POC
ZipGenius 6.3.1.2552 - Stack-Based Buffer Overflow via Long Filename in ZIP Entry
Stack-based buffer overflow in zgtips.dll in ZipGenius 6.3.1.2552 allows user-assisted remote attackers to execute arbitrary code via a ZIP file containing an entry with a long filename.
EIP-2026-118203 EXPLOITDB python WORKING POC
ZippHo 3.0.6 - '.zip' Local Stack Buffer Overflow
EIP-2026-118230 EXPLOITDB ruby WORKING POC
Actfax FTP Server 4.27 - 'USER' Stack Buffer Overflow (Metasploit)
CVE-2011-2110 EXPLOITDB ruby WORKING POC
Adobe Flash Player <10.3.181.26-10.3.185.23 - RCE
Adobe Flash Player before 10.3.181.26 on Windows, Mac OS X, Linux, and Solaris, and 10.3.185.23 and earlier on Android, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in June 2011.
EIP-2026-118263 EXPLOITDB html WORKING POC
AoA Audio Extractor 2.x - ActiveX ROP
CVE-2008-2683 EXPLOITDB ruby WORKING POC
Black Ice Barcode SDK - Arbitrary File Write via BIDIB.BIDIBCtrl.1 DownloadImageFileURL Method
The BIDIB.BIDIBCtrl.1 ActiveX control in BIDIB.ocx 10.9.3.0 in Black Ice Barcode SDK 5.01 allows remote attackers to force the download and storage of arbitrary files by specifying the origin URL in the first argument to the DownloadImageFileURL method, and the local filename in the second argument. NOTE: some of these details are obtained from third party information.
CVE-2008-2683 EXPLOITDB ruby WORKING POC
Black Ice Barcode SDK - Arbitrary File Write via BIDIB.BIDIBCtrl.1 DownloadImageFileURL Method
The BIDIB.BIDIBCtrl.1 ActiveX control in BIDIB.ocx 10.9.3.0 in Black Ice Barcode SDK 5.01 allows remote attackers to force the download and storage of arbitrary files by specifying the origin URL in the first argument to the DownloadImageFileURL method, and the local filename in the second argument. NOTE: some of these details are obtained from third party information.
EIP-2026-118323 EXPLOITDB html WORKING POC
Black Ice Fax Voice SDK 12.6 - Remote Code Execution
EIP-2026-117376 EXPLOITDB python WORKING POC
Kenward Zipper 1.4 - Local Stack Buffer Overflow
EIP-2026-117818 EXPLOITDB python WORKING POC
QuickZip 4.x - '.zip' Local Universal Buffer Overflow
EIP-2026-117812 EXPLOITDB python WORKING POC
Quick Player 1.2 - Unicode Buffer Overflow (2)