posidron

15 exploits Active since Feb 2004
EIP-2026-118034 EXPLOITDB c WORKING POC
Tripbit Secure Code Analizer 1.0 - 'fgets()' Local Buffer Overrun
CVE-2006-3912 EXPLOITDB python WORKING POC
WinRAR - Stack-based Buffer Overflow in SFX Module
Stack-based buffer overflow in the SFX module in WinRAR before 3.60 beta 8 has unspecified vectors and impact.
CVE-2006-3912 EXPLOITDB python WORKING POC
WinRAR - Stack-based Buffer Overflow in SFX Module
Stack-based buffer overflow in the SFX module in WinRAR before 3.60 beta 8 has unspecified vectors and impact.
CVE-2006-3912 EXPLOITDB python WORKING POC
WinRAR - Stack-based Buffer Overflow in SFX Module
Stack-based buffer overflow in the SFX module in WinRAR before 3.60 beta 8 has unspecified vectors and impact.
CVE-2005-4718 EXPLOITDB html WORKING POC
Opera Browser < 8.02 - Denial of Service via Crafted HTML Style Attributes
Opera 8.02 and earlier allows remote attackers to cause a denial of service (client crash) via (1) a crafted HTML file with a "content: url(0);" style attribute, a "bodyA" tag, a long string, and a "u" tag with a long attribute, as demonstrated by opera.html; and (2) a BGSOUND element with a "margin:-99;" STYLE attribute.
CVE-2003-1032 EXPLOITDB c WORKING POC
pi3web 2.0.2 Beta 1 - Denial of Service via Malformed URL
Pi3Web web server 2.0.2 Beta 1, when the Directory Index is configured to use the "Name" column and sort using the column title as a hyperlink, allows remote attackers to cause a denial of service (crash) via a malformed URL to the web server, possibly involving a buffer overflow.
CVE-2006-1540 EXPLOITDB text WRITEUP
Microsoft Office - Remote Code Execution via Malformed Document Record
MSO.DLL in Microsoft Office 2000, Office XP (2002), and Office 2003 allows user-assisted attackers to cause a denial of service and execute arbitrary code via multiple attack vectors, as originally demonstrated using a crafted document record with a malformed string, as demonstrated by replacing a certain "01 00 00 00" byte sequence with an "FF FF FF FF" byte sequence, possibly causing an invalid array index, in (1) an Excel .xls document, which triggers an access violation in ole32.dll; (2) an Excel .xlw document, which triggers an access violation in excel.exe; (3) a Word document, which triggers an access violation in mso.dll in winword.exe; and (4) a PowerPoint document, which triggers an access violation in powerpnt.txt. NOTE: after the initial disclosure, this issue was demonstrated by triggering an integer overflow using an inconsistent size for a Unicode "Sheet Name" string.
EIP-2026-114932 EXPLOITDB c WORKING POC
Armida Databased Web Server 1.0 - GET Remote Denial of Service
EIP-2026-114930 EXPLOITDB c WORKING POC
ArGoSoft Mail Server 1.8.3.5 - GET Multiple Denial of Service Vulnerabilities
EIP-2026-113126 EXPLOITDB text WORKING POC
VisNetic WebMail 5.8.6 .6 - Information Disclosure
CVE-2007-0126 EXPLOITDB python WORKING POC
Opera 9.02 - Remote Code Execution via JPEG DHT Marker
Heap-based buffer overflow in Opera 9.02 allows remote attackers to execute arbitrary code via a JPEG file with an invalid number of index bytes in the Define Huffman Table (DHT) marker.
CVE-2005-4718 EXPLOITDB html WORKING POC
Opera Browser < 8.02 - Denial of Service via Crafted HTML Style Attributes
Opera 8.02 and earlier allows remote attackers to cause a denial of service (client crash) via (1) a crafted HTML file with a "content: url(0);" style attribute, a "bodyA" tag, a long string, and a "u" tag with a long attribute, as demonstrated by opera.html; and (2) a BGSOUND element with a "margin:-99;" STYLE attribute.
EIP-2026-103560 EXPLOITDB html STUB
Mozilla Firefox 1.0.7 / Thunderbird 1.0.6 - Denial of Service
EIP-2026-102751 EXPLOITDB c WORKING POC
Twilight WebServer 1.3.3.0 - GET Buffer Overflow
CVE-2004-2746 EXPLOITDB text WRITEUP
Pensacola WEB Designs Xtremeasp Photogallery - SQL Injection
SQL injection vulnerability in adminlogin.asp in XTREME ASP Photo Gallery 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.