shinnai

212 exploits Active since Dec 2006
EIP-2026-116052 EXPLOITDB text WORKING POC
PeerBlock 1.1 - Blue Screen of Death
CVE-2007-6327 EXPLOITDB html WORKING POC
Online Media Technologies AVSMJPEGFILE.DLL 1.1.1.102 - Buffer Overflow
Buffer overflow in a certain ActiveX control in Online Media Technologies AVSMJPEGFILE.DLL 1.1.1.102 allows remote attackers to execute arbitrary code via a long first argument to the CreateStill method.
CVE-2007-2588 EXPLOITDB html WORKING POC
Office Viewer OCX 3.2 - Buffer Overflow
Multiple buffer overflows in the Office Viewer OCX ActiveX control (oa.ocx) 3.2 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long argument to the (1) HttpDownloadFile, (2) Open, (3) OpenWebFile, (4) DoOleCommand, (5) FTPDownloadFile, (6) FTPUploadFile, (7) HttpUploadFile, (8) Save, or (9) SaveWebFile function.
CVE-2009-1517 EXPLOITDB text WORKING POC
Symantec Norton Ghost 14.0 - Remote Code Execution via EasySetup ActiveX Control Methods
Multiple insecure method vulnerabilities in the Symantec.EasySetup.1 ActiveX control in EasySetupInt.dll 14.0.4.30167 in the EasySetup wizard in Symantec Norton Ghost 14.0 allow remote attackers to cause a denial of service (browser crash) and possibly execute arbitrary code via unspecified input to the (1) GetBackupLocationPath, (2) CallUninstall, (3) SetupDeleteVolume, (4) CanUseEasySetup, (5) CallAddInitialProtection, and (6) CallTour methods.
CVE-2008-7103 EXPLOITDB html WORKING POC
Najdi.si Toolbar 2.0.4.1 - Stack-Based Buffer Overflow via Document.Location Property
Stack-based buffer overflow in an ActiveX control in najdisitoolbar.dll in Najdi.si Toolbar 2.0.4.1 allows remote attackers to cause a denial of service (browser crash) or execute arbitrary code via a long Document.Location property value.
CVE-2008-5160 EXPLOITDB python WORKING POC
MyServer 0.8.11 - Denial of Service via Invalid HTTP Request Methods
Unspecified vulnerability in MyServer 0.8.11 allows remote attackers to cause a denial of service (daemon crash) via multiple invalid requests with the HTTP GET, DELETE, OPTIONS, and possibly other methods, related to a "204 No Content error."
EIP-2026-115845 EXPLOITDB text SUSPICIOUS
Mobipocket Reader 6.2 Build 608 - Buffer Overflow
EIP-2026-115842 EXPLOITDB python WORKING POC
MiniWebsvr 0.0.6 - Remote Resource Consumption Denial of Service
CVE-2006-6601 EXPLOITDB text WRITEUP
Windows Media Player 10.00.00.4036 - DoS
Windows Media Player 10.00.00.4036 in Microsoft Windows XP SP2 allows user-assisted remote attackers to cause a denial of service via a .MID (MIDI) file with a malformed header chunk without any track chunks, possibly involving (1) number of tracks of (2) time division fields that are set to 0.
CVE-2006-6602 EXPLOITDB text WRITEUP
Windows Explorer 6.00.2900.2180 - DoS
explorer.exe in Windows Explorer 6.00.2900.2180 in Microsoft Windows XP SP2 allows user-assisted remote attackers to cause a denial of service via a crafted WMV file.
CVE-2007-0562 EXPLOITDB python WORKING POC
Windows Explorer 6.0.2900.2180 - Denial of Service via Crafted AVI File
Windows Explorer (explorer.exe) 6.0.2900.2180 in Microsoft Windows XP SP2 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted .avi file, which triggers the crash when the user right clicks on the file.
CVE-2008-1709 EXPLOITDB python WORKING POC
Microsoft Visual InterDev 6.0 (SP6) - Buffer Overflow
Buffer overflow in Microsoft Visual InterDev 6.0 (SP6) allows user-assisted attackers to execute arbitrary code via a Studio Solution (.SLN) file with a long malformed Project line beginning with a 'Project("{}") =' sequence, probably a different vector than CVE-2008-0250.
CVE-2007-4790 EXPLOITDB html WORKING POC
Internet Explorer - Stack-Based Buffer Overflow via FoxDoCmd Function
Stack-based buffer overflow in certain ActiveX controls in (1) FPOLE.OCX 6.0.8450.0 and (2) Foxtlib.ocx, as used in the Microsoft Visual FoxPro 6.0 fpole 1.0 Type Library; and Internet Explorer 5.01, 6 SP1 and SP2, and 7; allows remote attackers to execute arbitrary code via a long first argument to the FoxDoCmd function.
EIP-2026-115372 EXPLOITDB text WORKING POC
Haihaisoft PDF Reader OCX Control 1.1.2.0 - Remote Buffer Overflow (PoC)
CVE-2006-6659 EXPLOITDB html WORKING POC
Microsoft Office Outlook Recipient ActiveX - DoS
The Microsoft Office Outlook Recipient ActiveX control (ole32.dll) in Windows XP SP2 allows remote attackers to cause a denial of service (Internet Explorer 7 hang) via crafted HTML.
CVE-2006-6659 EXPLOITDB html WORKING POC
Microsoft Office Outlook Recipient ActiveX - DoS
The Microsoft Office Outlook Recipient ActiveX control (ole32.dll) in Windows XP SP2 allows remote attackers to cause a denial of service (Internet Explorer 7 hang) via crafted HTML.
CVE-2007-2903 EXPLOITDB html WORKING POC
Microsoft Office ActiveX <1.0.1.9 - Buffer Overflow
Buffer overflow in the HelpPopup method in the Microsoft Office 2000 Controllo UA di Microsoft Office ActiveX control (OUACTRL.OCX) 1.0.1.9 allows remote attackers to cause a denial of service (probably winhlp32.exe crash) via a long first argument. NOTE: it is not clear whether this issue crosses privilege boundaries.
EIP-2026-115722 EXPLOITDB python WORKING POC
Microsoft Internet Explorer 7 - HTML Denial of Service
CVE-2006-6885 EXPLOITDB html WORKING POC
Macromedia Shockwave - Denial of Service via SwDir.dll ActiveX Control swURL Attribute
An ActiveX control in SwDir.dll in Macromedia Shockwave 10 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long string in the swURL attribute.
CVE-2006-6827 EXPLOITDB html WORKING POC
Macromedia Flash 8 - Denial of Service via Long String in Flash8b.AllowScriptAccess
Flash8b.ocx in Macromedia Flash 8 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long string in the Flash8b.AllowScriptAccess method.
CVE-2007-1403 EXPLOITDB html WORKING POC
Macromedia Shockwave - Stack-Based Buffer Overflow via SwDir.dll ActiveX Control Properties
Multiple stack-based buffer overflows in an ActiveX control in SwDir.dll 10.1.4.20 in Macromedia Shockwave allow remote attackers to cause a denial of service (Internet Explorer 7 crash) and possibly execute arbitrary code via a long (1) BGCOLOR, (2) SRC, (3) AutoStart, (4) Sound, (5) DrawLogo, or (6) DrawProgress property value, different vectors than CVE-2006-6885.
EIP-2026-115552 EXPLOITDB php WORKING POC
LibreOffice 3.5.3 - '.rtf' FileOpen Crash
CVE-2007-2981 EXPLOITDB html WORKING POC
LEADTOOLS Raster OCR Document Object Library 14.5.0.44 Buffer Overflow via DictionaryFileName
Buffer overflow in a certain ActiveX control in LEAD Technologies LEADTOOLS Raster OCR Document Object Library (ltrdc14e.dll) 14.5.0.44 allows remote attackers to execute arbitrary code via a long DictionaryFileName property.
CVE-2007-2980 EXPLOITDB html WORKING POC
LEADTOOLS Raster ISIS Object 14.5.0.44 - Heap-Based Buffer Overflow via Long DriverName Property
Heap-based buffer overflow in a certain ActiveX control in LEADTOOLS LEAD Raster ISIS Object (LTRIS14e.DLL) 14.5.0.44 allows remote attackers to cause a denial of service (Internet Explorer crash) or execute arbitrary code via a long DriverName property, a different ActiveX control than CVE-2007-2827.
CVE-2007-2895 EXPLOITDB html WORKING POC
LeadTools Raster Dialog File Object <14.5.0.44 - Buffer Overflow
Buffer overflow in a certain ActiveX control in LTRDF14e.DLL 14.5.0.44 in LeadTools Raster Dialog File Object allows remote attackers to execute arbitrary code via a long Directory property value.