Bash Exploits

459 exploits tracked across all sources.

Sort: Activity Stars
CVE-2004-2502 EXPLOITDB bash VERIFIED
im-switch <11.4-46.1 - Local Privilege Escalation
im-switch before 11.4-46.1 in Fedora Core 2 allows local users to overwrite arbitrary files via a symlink attack on the imswitcher[PID] temporary file.
by SEKINE Tatsuo
EIP-2026-104543 EXPLOITDB bash VERIFIED
OpenBSD 3.x - ISAKMPD Security Association Piggyback Delete Payload Denial of Service
by Thomas Walpuski
CVE-2004-2014 EXPLOITDB bash VERIFIED
Wget 1.9-1.9.1 - Local Privilege Escalation
Wget 1.9 and 1.9.1 allows local users to overwrite arbitrary files via a symlink attack on the name of the file being downloaded.
by Hugo Vazquez
EIP-2026-115829 EXPLOITDB bash VERIFIED
Microsoft Windows XP/2003 - Samba Share Resource Exhaustion (Denial of Service)
by Steve Ladjabi
EIP-2026-102861 EXPLOITDB bash VERIFIED
GNU Indent 2.2.9 - Local Heap Overflow
by Pooh Hacking Squadron
EIP-2026-103035 EXPLOITDB bash VERIFIED
WMAPM 3.1 - Local Privilege Escalation
by Knud Erik Hojgaard
EIP-2026-107361 EXPLOITDB bash VERIFIED
Geeklog 1.3.8 - Forgot Password SQL Injection
by Jouko Pynnonen
EIP-2026-114710 EXPLOITDB bash VERIFIED
SCO OpenServer 5.0.x - 'mana' PATH_INFO Privilege Escalation
by Texonet
EIP-2026-114709 EXPLOITDB bash VERIFIED
SCO OpenServer 5.0.x - 'mana' 'REMOTE_ADDR' Authentication Bypass
by Texonet
CVE-2004-2131 EXPLOITDB bash VERIFIED
IBM Informix Dynamic Server <9.40.xC3 - Buffer Overflow
Stack-based buffer overflow in ontape for IBM Informix Dynamic Server (IDS) 9.40.xC3 and earlier allows local users, with DSA privileges, to execute arbitrary code via a long ONCONFIG environment variable.
by pask
CVE-2003-0645 EXPLOITDB bash VERIFIED
man-db <2.4.1 - Privilege Escalation
man-db 2.3.12 and 2.3.18 to 2.4.1 uses certain user-controlled DEFINE directives from the ~/.manpath file, even when running setuid, which could allow local users to gain privileges.
by vade79
CVE-2003-0898 EXPLOITDB bash VERIFIED
IBM DB2 <7.2 - Privilege Escalation
IBM DB2 7.2 before FixPak 10a, and earlier versions including 7.1, allows local users to overwrite arbitrary files and gain privileges via a symlink attack on (1) db2job and (2) db2job2.
by Juan Manuel Pascual Escribá
EIP-2026-102989 EXPLOITDB bash VERIFIED
SDFingerD 1.1 - Failure To Drop Privileges Privilege Escalation
by V9
CVE-2001-1080 EXPLOITDB bash VERIFIED
AIX 4.3.x-5.1 - Privilege Escalation
diagrpt in AIX 4.3.x and 5.1 uses the DIAGDATADIR environment variable to find and execute certain programs, which allows local users to gain privileges by modifying the variable to point to a Trojan horse program.
by watercloud
CVE-2003-0190 EXPLOITDB bash VERIFIED
Openbsd Openssh < 3.6.1 - Information Disclosure
OpenSSH-portable (OpenSSH) 3.6.1p1 and earlier with PAM support enabled immediately sends an error message when a user does not exist, which allows remote attackers to determine valid usernames via a timing attack.
by Nicolas Couture
CVE-2000-1121 EXPLOITDB bash VERIFIED
IBM AIX <4.3.x - Buffer Overflow
Buffer overflow in enq command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long -M argument.
by watercloud
CVE-2003-0209 EXPLOITDB bash VERIFIED
Smoothwall - Buffer Overflow
Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.
by truff
CVE-2003-0211 EXPLOITDB bash VERIFIED
Xinetd - Denial of Service
Memory leak in xinetd 2.3.10 allows remote attackers to cause a denial of service (memory consumption) via a large number of rejected connections.
by Steve Grubb
EIP-2026-102802 EXPLOITDB bash VERIFIED
ChiTeX 6.1.2 - Local Privilege Escalation
by zillion
EIP-2026-103807 EXPLOITDB bash VERIFIED
Platform Load Sharing Facility 4/5 - 'LSF_ENVDIR' Local Command Execution
by Tomasz Grabowski
CVE-2003-1359 EXPLOITDB bash VERIFIED
Hp-ux - Memory Corruption
Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument.
by watercloud
CVE-2003-1358 EXPLOITDB bash VERIFIED
Hp-ux - Access Control
rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by modifying the path to point to a malicious rm program.
by Last Stage of Delirium
EIP-2026-102719 EXPLOITDB bash VERIFIED
ProFTPd 1.2.x - 'STAT' Denial of Service
by Rob klein Gunnewiek
CVE-2002-1823 EXPLOITDB bash VERIFIED
Lonerunner Zeroo HTTP Server - Buffer Overflow
Buffer overflow in the HttpGetRequest function in Zeroo HTTP server 1.5 allows remote attackers to execute arbitrary code via a long HTTP request.
by dong-h0un U
CVE-1999-0661 EXPLOITDB bash VERIFIED
Trojan Horse - Info Disclosure
A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP Wrappers 7.6, (2) util-linux 2.9g, (3) wuarchive ftpd (wuftpd) 2.2 and 2.1f, (4) IRC client (ircII) ircII 2.2.9, (5) OpenSSH 3.4p1, or (6) Sendmail 8.12.6.
by netmask
By Source
All 459 Exploitdb 50,123 Writeup 46,586 Nomisec 21,111 Metasploit 3,189 Github 2,219 Vulncheck_xdb 900 Inthewild 518 Gitlab 438 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,725 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 359 javascript 256 c++ 245 shell 67 go 41 postscript 25 xml 24