shinnai

212 exploits Active since Dec 2006
CVE-2007-2946 EXPLOITDB html WORKING POC
LeadTools Raster Dialog File_D <14.5.0.44 - Buffer Overflow
Buffer overflow in a certain ActiveX control in LeadTools Raster Dialog File_D Object (LTRDFD14e.DLL) 14.5.0.44 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) or execute arbitrary code via a long DestinationPath property value.
CVE-2007-2827 EXPLOITDB html WORKING POC
LEADTOOLS ISIS ActiveX Control <14.5.0.44 - Buffer Overflow
Heap-based buffer overflow in LEAD Technologies LEADTOOLS ISIS ActiveX Control (ltisi14E.ocx) 14.5.0.44 and earlier allows remote attackers to execute arbitrary code via a long DriverName property.
EIP-2026-115501 EXPLOITDB python WORKING POC
KarjaSoft Sami HTTP Server 1.0.4/1.0.5/2.0.1 - Request Remote Denial of Service
CVE-2009-1672 EXPLOITDB html WORKING POC
JRE 6 Update 13 - Remote Code Execution via Deployment Toolkit ActiveX Control
The Deployment Toolkit ActiveX control in deploytk.dll 6.0.130.3 in Sun Java SE Runtime Environment (aka JRE) 6 Update 13 allows remote attackers to (1) execute arbitrary code via a .jnlp URL in the argument to the launch method, and might allow remote attackers to launch JRE installation processes via the (2) installLatestJRE or (3) installJRE method.
CVE-2007-2658 EXPLOITDB html WORKING POC
ID Automation Linear Barcode 1.6.0.5 - DoS
Unspecified vulnerability in the ID Automation Linear Barcode 1.6.0.5 ActiveX control in IDAutomationLinear6.dll allows remote attackers to cause a denial of service via a long argument to the SaveEnhWMF method.
CVE-2007-3554 EXPLOITDB html WORKING POC
HP Instant Support - Driver Check < 1.5.0.3 - Remote Code Execution via HPSDDX ActiveX queryHub Function
Stack-based buffer overflow in the HPSDDX Class (SDD) ActiveX control in sdd.dll in HP Instant Support - Driver Check before 1.5.0.3 allows remote attackers to execute arbitrary code via a long argument to the queryHub function.
CVE-2007-2585 EXPLOITDB html WORKING POC
BarCodeWiz ActiveX Control 2.0 and 2.52 - Stack-Based Buffer Overflow via Long Argument
Stack-based buffer overflow in the Verify function in the BarCodeWiz ActiveX control 2.0 and 2.52 (BarcodeWiz.dll) allows remote attackers to execute arbitrary code via a long argument.
CVE-2007-1580 EXPLOITDB python WORKING POC
ftpdmin 0.96 - Denial of Service via LIST Command
FTPDMIN 0.96 allows remote attackers to cause a denial of service (daemon crash) via a LIST command for a Windows drive letter, as demonstrated using "//A:". NOTE: this has been reported as a buffer overflow by some sources, but there is not a long argument.
CVE-2006-6565 EXPLOITDB php WORKING POC
FileZilla Server < 0.9.22 - Denial of Service via Wildcard LIST/NLST Command
FileZilla Server before 0.9.22 allows remote attackers to cause a denial of service (crash) via a wildcard argument to the (1) LIST or (2) NLST commands, which results in a NULL pointer dereference, a different set of vectors than CVE-2006-6564. NOTE: CVE analysis suggests that the problem might be due to a malformed PORT command.
CVE-2007-2495 EXPLOITDB html WORKING POC
ExcelViewer.ocx 3.1.0.6 - Buffer Overflow
Multiple stack-based buffer overflows in the ExcelOCX ActiveX control in ExcelViewer.ocx 3.1.0.6 allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) DoOleCommand, (2) FTPDownloadFile, (3) FTPUploadFile, (4) HttpUploadFile, (5) Save, (6) SaveWebFile, (7) HttpDownloadFile, (8) Open, or (9) OpenWebFile property value. NOTE: some of these details are obtained from third party information.
CVE-2007-5257 EXPLOITDB html WORKING POC
EDraw Office Viewer Component < 5.3.220.1 - Stack-Based Buffer Overflow via FtpDownloadFile Method
Stack-based buffer overflow in the EDraw.OfficeViewer ActiveX control in officeviewer.ocx in EDraw Office Viewer Component 5.3.220.1 and earlier allows remote attackers to execute arbitrary code via long strings in the first and second arguments to the FtpDownloadFile method, a different vector than CVE-2007-4821 and CVE-2007-3169.
CVE-2007-4821 EXPLOITDB html WORKING POC
EDraw Office Viewer Component 5.2 - Remote Code Execution via HttpDownloadFileToTempDir Method
Buffer overflow in a certain ActiveX control in officeviewer.ocx 5.2.218.1 in EDraw Office Viewer Component 5.2 allows remote attackers to execute arbitrary code via a long first argument to the HttpDownloadFileToTempDir method, a different vulnerability than CVE-2007-3169.
CVE-2007-3169 EXPLOITDB html WORKING POC
EDraw Office Viewer Component < 5.0 - Buffer Overflow via HttpDownloadFile Method
Buffer overflow in a certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) or execute arbitrary code via a long first argument to the HttpDownloadFile method.
CVE-2007-1294 EXPLOITDB html WORKING POC
DivX Web Player - Denial of Service via DivxWP.Resize ActiveX Control
A certain ActiveX control in the DivXBrowserPlugin (npdivx32.dll) in DivX Web Player, as distributed with DivX Player 1.3.0, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via large values to DivxWP.Resize, related to resizing images.
CVE-2007-0429 EXPLOITDB html WORKING POC
DivX Player 6.4.1 - Denial of Service via GoWindowed Method
DivXBrowserPlugin (aka DivX Web Player) npdivx32.dll, as distributed with DivX Player 6.4.1, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) by invoking the GoWindowed method for a certain instance of the ActiveX object.
CVE-2007-0643 EXPLOITDB python WORKING POC
Bloodshed Dev-C++ 4.9.9.2 - Stack-Based Buffer Overflow via Long Line in .cpp File
Stack-based buffer overflow in Bloodshed Dev-C++ 4.9.9.2 allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long line in a .cpp file.
CVE-2008-0379 EXPLOITDB text WORKING POC
Crystal Reports XI Release 2 - Buffer Overflow via Enterprise Tree ActiveX Control SelectedSession Method
Race condition in the Enterprise Tree ActiveX control (EnterpriseControls.dll 11.5.0.313) in Crystal Reports XI Release 2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the SelectedSession method, which triggers a buffer overflow.
CVE-2006-6558 EXPLOITDB python WORKING POC
Crob FTP Server 3.6.1 b.263 - Denial of Service via Long LIST Command
Crob FTP Server 3.6.1 b.263 allows remote attackers to cause a denial of service via a long series of "?A" sequences in the (1) LIST and possibly (2) NLST command.
CVE-2007-2648 EXPLOITDB html WORKING POC
Clever Database Comparer 2.2 - Buffer Overflow
Stack-based buffer overflow in the Clever Database Comparer 2.2 ActiveX control (comparerax.ocx) allows remote attackers to execute arbitrary code via a long argument to the ConnectToDatabase function.
CVE-2007-0356 EXPLOITDB html WORKING POC
Common Controls Replacement Project FolderTreeview ActiveX Control - Denial of Service via Long RootFolder Property
The Common Controls Replacement Project (CCRP) FolderTreeview (FTV) ActiveX control (ccrpftv6.ocx) allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long CCRP.RootFolder property value.
EIP-2026-114889 EXPLOITDB text WORKING POC
Aloaha PDF Crypter (3.5.0.1164) - ActiveX Arbitrary File Overwrite
CVE-2007-1162 EXPLOITDB html WORKING POC
Common Controls Replacement Project BrowseDialog Server - Denial of Service via Long Property Value
A certain ActiveX control in the Common Controls Replacement Project (CCRP) CCRP BrowseDialog Server (ccrpbds6.dll) allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) IsFolderAvailable or (2) RootFolder property value, different vectors than CVE-2007-0371.
CVE-2007-0371 EXPLOITDB html WORKING POC
Common Controls Replacement Project BrowseDialog Server - Denial of Service via Long SelectedFolder Property
A certain ActiveX control in the Common Controls Replacement Project (CCRP) CCRP BrowseDialog Server (ccrpbds6.dll) allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long CCRP_BDc.SelectedFolder property value.
EIP-2026-114986 EXPLOITDB text WRITEUP
BeyondCHM 1.1 - Buffer Overflow
CVE-2007-0976 EXPLOITDB html WORKING POC
ActSoft DVD-Tools - Buffer Overflow
Buffer overflow in the ActSoft DVD-Tools ActiveX control (dvdtools.ocx) allows remote attackers to execute arbitrary code via a long DVD_TOOLS.OpenDVD property value.