zillion

15 exploits Active since May 1997
CVE-2002-0740 NOMISEC WORKING POC
slrn - Local Privilege Escalation via Long -d Argument
Buffer overflow in slrnpull for the SLRN package, when installed setuid or setgid, allows local users to gain privileges via a long -d (SPOOLDIR) argument.
CVE-2000-0953 EXPLOITDB perl WORKING POC
Shambala Server 4.5 - Denial of Service via Connection Handling
Shambala Server 4.5 allows remote attackers to cause a denial of service by opening then closing a connection.
CVE-2002-0740 EXPLOITDB perl WORKING POC
slrn - Local Privilege Escalation via Long -d Argument
Buffer overflow in slrnpull for the SLRN package, when installed setuid or setgid, allows local users to gain privileges via a long -d (SPOOLDIR) argument.
CVE-2002-1492 EXPLOITDB c WORKING POC
Cisco VPN 5000 Client <5.2.7/5.2.8 - Privilege Escalation
Buffer overflows in the Cisco VPN 5000 Client before 5.2.7 for Linux, and VPN 5000 Client before 5.2.8 for Solaris, allow local users to gain root privileges via (1) close_tunnel and (2) open_tunnel.
CVE-2003-1054 EXPLOITDB text WRITEUP
mod_access_referer 1.0.2 - Denial of Service via Malformed Referer Header
mod_access_referer 1.0.2 allows remote attackers to cause a denial of service (crash) via a malformed Referer header that is missing a hostname, as parsed by the ap_parse_uri_components function in Apache, which triggers a null dereference.
CVE-2000-0973 EXPLOITDB perl WORKING POC
curl < 6.0-1.1 and curl-ssl < 6.0-1.2 - Buffer Overflow via Long Error Message
Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote attackers to execute arbitrary commands by forcing a long error message to be generated.
EIP-2026-103116 EXPLOITDB c WORKING POC
GKrellM Mailwatch Plugin 2.4.1/2.4.2 - From Header Remote Buffer Overflow
CVE-2003-1118 EXPLOITDB c WORKING POC
SETI@home 3.03 - Buffer Overflow via Spoofed Server Response
Buffer overflow in the SETI@home client 3.03 and other versions allows remote attackers to cause a denial of service (client crash) and execute arbitrary code via a spoofed server response containing a long string followed by a \n (newline) character.
CVE-1999-1184 EXPLOITDB perl WORKING POC
Elm < 2.4 - Buffer Overflow via TERM Environmental Variable
Buffer overflow in Elm 2.4 and earlier allows local users to gain privileges via a long TERM environmental variable.
EIP-2026-102802 EXPLOITDB bash WORKING POC
ChiTeX 6.1.2 - Local Privilege Escalation
CVE-2002-1827 EXPLOITDB c WORKING POC
Sendmail 8.9.0-8.12.3 - Denial of Service via File Locking
Sendmail 8.9.0 through 8.12.3 allows local users to cause a denial of service by obtaining an exclusive lock on the (1) alias, (2) map, (3) statistics, and (4) pid files.
CVE-2002-1827 EXPLOITDB c WORKING POC
Sendmail 8.9.0-8.12.3 - Denial of Service via File Locking
Sendmail 8.9.0 through 8.12.3 allows local users to cause a denial of service by obtaining an exclusive lock on the (1) alias, (2) map, (3) statistics, and (4) pid files.
CVE-2002-1896 EXPLOITDB c WORKING POC
alsaplayer 0.99.71 - Local Buffer Overflow via Long Command Line Argument
Buffer overflow in Alsaplayer 0.99.71, when installed setuid root, allows local users to execute arbitrary code via a long (1) -f or (2) -o command line argument.
CVE-2000-0973 EXPLOITDB perl WORKING POC
curl < 6.0-1.1 and curl-ssl < 6.0-1.2 - Buffer Overflow via Long Error Message
Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote attackers to execute arbitrary commands by forcing a long error message to be generated.
CVE-2002-0913 EXPLOITDB text WORKING POC
Slurp NNTP client 1.1.0 - Code Injection
Format string vulnerability in log_doit function of Slurp NNTP client 1.1.0 allows a malicious news server to execute arbitrary code on the client via format strings in a server response.