C++ Exploits
255 exploits tracked across all sources.
PowerZip 7.06 Build 3895 - Stack-based Buffer Overflow via Long Filename in ZIP Archive
Stack-based buffer overflow in Trident Software PowerZip 7.06 Build 3895 on Windows 2000 allows remote attackers to execute arbitrary code via a ZIP archive containing a long filename.
by bratax
ZipCentral < 4.01 - Stack-based Buffer Overflow via Long Filename in ZIP Archive
Stack-based buffer overflow in ZipCentral 4.01 allows remote user-assisted attackers to execute arbitrary code via a ZIP archive containing a long filename.
by bratax
2Wire HomePortal and OfficePortal - Denial of Service via CRLF Sequence in GET Request
The web-based management interface in 2Wire, Inc. HomePortal and OfficePortal Series modems and routers allows remote attackers to cause a denial of service (crash) via a CRLF sequence in a GET request.
by preth00nker
2wire Gateway 1700HG, 1701HG, 1800HW, 2071, 2700HG, 2701HG-T - Denial of Service via %0d%0a Sequence in Page Parameter
The management interface on the 2wire Gateway 1700HG, 1701HG, 1800HW, 2071, 2700HG, and 2701HG-T with software before 5.29.52 allows remote attackers to cause a denial of service (reboot) via a %0d%0a sequence in the page parameter to the xslt program on TCP port 50001, a related issue to CVE-2006-4523.
by preth00nker
Microsoft PowerPoint 2003 SP2 (French) - Local Code Execution
by NSRocket
D-Link Devices - UPNP Stack Overflow Denial of Service (PoC)
by ub3rst4r
Microsoft Excel 2000/2003 (French) - Hlink Local Buffer Overflow
by NSRocket
Quake 3 Engine <1.32c - Buffer Overflow
Stack-based buffer overflow in Quake 3 Engine as used by Quake 3: Arena 1.32b and 1.32c allows remote attackers to cause a denial of service and possibly execute code via long CS_ITEMS values.
by RunningBon
Quake 3 Engine - Stack-Based Buffer Overflow in CG_ServerCommand
Stack-based buffer overflow in the CG_ServerCommand function in Quake 3 Engine as used by Soldier of Fortune 2 (SOF2MP) GOLD 1.03 allows remote attackers to cause a denial of service and possibly execute code by sending a long command from the server.
by RunningBon
WinAmp < 5.23 - Buffer Overflow via Crafted MIDI File
Buffer overflow in in_midi.dll for WinAmp 2.90 up to 5.23, including 5.21, allows remote attackers to execute arbitrary code via a crafted .mid (MIDI) file.
by BassReFLeX
Microsoft Internet Explorer <7 - RCE/DoS
Microsoft Internet Explorer 6 and 7 Beta 2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a certain createTextRange call on a checkbox object, which results in a dereference of an invalid table pointer.
by ATmaCA
Microsoft Internet Explorer - 'createTextRang' Download Shellcode (1)
by ATmaCA
Windows XP SP1-SP2 and Server 2003 up to SP1 - Denial of Service via Invalid IGMP Packet
Microsoft Windows XP SP1 and SP2, and Server 2003 up to SP1, allows remote attackers to cause a denial of service (hang) via an IGMP packet with an invalid IP option, aka the "IGMP v3 DoS Vulnerability."
by Alexey Sintsov
Microsoft Windows TAPI - Buffer Overflow via Crafted Message
Buffer overflow in the Telephony Application Programming Interface (TAPI) for Microsoft Windows 98, Windows 98 SE, Windows ME, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to elevate privileges or execute arbitrary code via a crafted message.
by Cesar Cerrudo
Microsoft Windows Media Player <10 - Buffer Overflow
Heap-based buffer overflow in the bitmap processing routine in Microsoft Windows Media Player 7.1 on Windows 2000 SP4, Media Player 9 on Windows 2000 SP4 and XP SP1, and Media Player 10 on XP SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted bitmap (.BMP) file that specifies a size of 0 but contains additional data.
by ATmaCA
Microsoft HTML Help Workshop 4.74.8702.0 - Stack-based Buffer Overflow via Long Contents File Field
Stack-based buffer overflow in Microsoft HTML Help Workshop 4.74.8702.0, and possibly earlier versions, and as included in the Microsoft HTML Help 1.4 SDK, allows context-dependent attackers to execute arbitrary code via a .hhp file with a long Contents file field.
by darkeagle
Sami FTP Server 2.0.1 - Stack-Based Buffer Overflow via Long USER Command
Stack-based buffer overflow in Sami FTP Server 2.0.1 allows remote attackers to execute arbitrary code via a long USER command, which triggers the overflow when the log is viewed.
by HolyGhost
Nullsoft Winamp 5.12 - Buffer Overflow via Playlist File1 Field
Buffer overflow in Nullsoft Winamp 5.12 allows remote attackers to execute arbitrary code via a playlist (pls) file with a long file name (File1 field).
by ATmaCA
VERITAS NetBackup Enterprise Server <5.1 MP3A - Buffer Overflow
Stack-based buffer overflow in a shared library as used by the Volume Manager daemon (vmd) in VERITAS NetBackup Enterprise Server 5.0 MP1 to MP5 and 5.1 up to MP3A allows remote attackers to execute arbitrary code via a crafted packet.
by Patrick Thomassen
Microsoft Distributed Transaction Coordinator - Memory Corruption
The MIDL_user_allocate function in the Microsoft Distributed Transaction Coordinator (MSDTC) proxy (MSDTCPRX.DLL) allocates a 4K page of memory regardless of the required size, which allows attackers to overwrite arbitrary memory locations using an incorrect size value that is provided to the NdrAllocate function, which writes management data to memory outside of the allocated buffer.
by Swan
FileZilla Server Terminal 0.9.4d - Denial of Service via Long USER FTP Command
Buffer overflow in FileZilla Server Terminal 0.9.4d may allow remote attackers to cause a denial of service (terminal crash) via a long USER ftp command.
by Inge Henriksen
Microsoft Wireless Zero Configuration - Info Disclosure
The Microsoft Wireless Zero Configuration system (WZCS) stores WEP keys and pair-wise Master Keys (PMK) of the WPA pre-shared key in plaintext in memory of the explorer process, which allows attackers with access to process memory to steal the keys and access the network.
by Laszlo Toth
By Source