Exploitdb Exploits
237 exploits tracked across all sources.
Microsoft Windows NT/2000/Server 2003 - RCE
The WINS service (wins.exe) on Microsoft Windows NT Server 4.0, Windows 2000 Server, and Windows Server 2003 allows remote attackers to write to arbitrary memory locations and possibly execute arbitrary code via a modified memory pointer in a WINS replication packet to TCP port 42, aka the "Association Context Vulnerability."
by class101
Microsoft Internet Explorer - Buffer Overflow
Buffer overflow in the Content Advisor in Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via a crafted Content Advisor file, aka "Content Advisor Memory Corruption Vulnerability."
by Miguel Tarasc
phpBB 2.0.12 - Privilege Escalation
sessions.php in phpBB 2.0.12 and earlier allows remote attackers to gain administrator privileges via the autologinid value in a cookie.
by str0ke
ThePoolClub iPool/iSnooker <1.6.81 - Info Disclosure
ThePoolClub (1) iPool and (2) iSnooker 1.6.81 and earlier stores usernames and passwords in cleartext in the MyDetails.txt file, which allows local users to gain privileges.
by Kozan
ThePoolClub iPool/iSnooker <1.6.81 - Info Disclosure
ThePoolClub (1) iPool and (2) iSnooker 1.6.81 and earlier stores usernames and passwords in cleartext in the MyDetails.txt file, which allows local users to gain privileges.
by Kozan
Goodtech Systems Goodtech Telnet Server - Buffer Overflow
Buffer overflow in the administration web server for GoodTech Telnet Server 4.0 and 5.0, and possibly all versions before 5.0.7, allows remote attackers to execute arbitrary code via a long string to port 2380.
by Komrade
Ethereal < 0.10.9 - Numeric Error
The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not properly use certain routines for formatting strings, which could leave it vulnerable to buffer overflows, as demonstrated using modified length values that are not properly handled by the dissect_pdus and pduval_to_str functions.
by Leon Juranic
Microsoft Internet Explorer - 'mshtml.dll' CSS Parsing Buffer Overflow
by Arabteam2000
RealNetworks RealPlayer <6.0.12.1056 - Buffer Overflow
Stack-based buffer overflow in the CSmil1Parser::testAttributeFailed function in smlparse.cpp for RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1 allows remote attackers to execute arbitrary code via a .SMIL file with a large system-screen-size value.
by nolimit
Foxmail Email Server - Buffer Overflow
Buffer overflow in Foxmail Server 2.0 allows remote attackers to execute arbitrary code via a long USER command.
by Swan
Einstein 1.0.1 - Info Disclosure
Einstein 1.0.1 stores sensitive information such as usernames and passwords in plaintext in the registry, which allows local users to gain privileges.
by Kozan
Avaya IP Office Phone Manager - Info Disclosure
The Avaya IP Office Phone Manager, and other products such as the IP Softphone, stores sensitive data in cleartext in a registry key, which allows local and possibly remote users to steal usernames and passwords and impersonate other users via keys such as Avaya\IP400\Generic.
by Adrian _pagvac_ Pastor
PeerFTP_5 - Privilege Escalation
PeerFTP_5 stores sensitive information such as passwords in plaintext in the PeerFTP.ini files, which allows local users to gain privileges.
by Kozan
MSN Messenger - '.png' Image Buffer Overflow Download Shellcode
by ATmaCA
Microsoft Windows NT - Buffer Overflow
The Windows Animated Cursor (ANI) capability in Windows NT, Windows 2000 through SP4, Windows XP through SP1, and Windows 2003 allows remote attackers to execute arbitrary code via the AnimationHeaderBlock length field, which leads to a stack-based buffer overflow.
by Vertygo
Mnet Soft Factory Nodemanager Professional - Buffer Overflow
Stack-based buffer overflow in NodeManager Professional 2.00 allows remote attackers to execute arbitrary commands via a LinkDown-Trap packet that contains a long OCTET-STRING in the Trap variable-bindings field.
by Tan Chew Keong
Apple iTunes - Playlist Buffer Overflow Download Shellcode
by ATmaCA
Windows 2000/2003 - Privilege Escalation
LSASS (Local Security Authority Subsystem Service) of Windows 2000 Server and Windows Server 2003 does not properly validate connection information, which allows local users to gain privileges via a specially-designed program.
by Cesar Cerrudo
GNU Mailutils <0.6.90 - RCE
Buffer overflow in the header_get_field_name function in header.c for GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via a crafted e-mail.
by infamous41md
Symantec Gateway Security - DNS Cache Poisoning
The DNS proxy (DNSd) for multiple Symantec Gateway Security products allows remote attackers to poison the DNS cache via a malicious DNS server query response that contains authoritative or additional records.
by fryxar
Windows NT-Server 2003 - Buffer Overflow
Buffer overflow in a function in User32.dll on Windows NT through Server 2003 allows local users to execute arbitrary code via long (1) LB_DIR messages to ListBox or (2) CB_DIR messages to ComboBox controls in a privileged application.
by Brett Moore
Microsoft Windows XP/2000/2003 - Message Queuing Service Heap Overflow
by DaveK
By Source