Exploitdb Exploits

3,149 exploits tracked across all sources.

Sort: Activity Stars
CVE-2002-0207 EXPLOITDB c VERIFIED
Realnetworks Realone Player < 8.0 - Buffer Overflow
Buffer overflow in Real Networks RealPlayer 8.0 and earlier allows remote attackers to execute arbitrary code via a header length value that exceeds the actual length of the header.
by UNYUN
CVE-2002-1570 EXPLOITDB c VERIFIED
ucd-snmp <4.2.3 - Buffer Overflow
Heap-based buffer overflow in snmpnetstat for ucd-snmp 4.2.3 and earlier, and net-snmp, allows remote attackers to execute arbitrary code via multiple getnextrequest PDU messages with conflicting ifindex variables, which cause snmpnetstat to write variable data past the end of an array.
by Juan M. de la Torre
EIP-2026-119114 EXPLOITDB c VERIFIED
SapporoWorks Black JumboDog 2.6.4/2.6.5 - HTTP Proxy Buffer Overflow
by UNYUN
CVE-2002-0033 EXPLOITDB c VERIFIED
SUN Solaris - Buffer Overflow
Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name.
by Last Stage of Delirium
CVE-2002-0048 EXPLOITDB c VERIFIED
Andrew Tridgell Rsync - Denial of Service
Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server.
by Teso
CVE-2002-0048 EXPLOITDB c VERIFIED
Andrew Tridgell Rsync - Denial of Service
Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server.
by Teso
CVE-2000-0574 EXPLOITDB c VERIFIED
Openbsd Ftpd - Denial of Service
FTP servers such as OpenBSD ftpd, NetBSD ftpd, ProFTPd and Opieftpd do not properly cleanse untrusted format strings that are used in the setproctitle function (sometimes called by set_proc_title), which allows remote attackers to cause a denial of service or execute arbitrary commands.
by Teso
CVE-2002-0002 EXPLOITDB c VERIFIED
stunnel <3.22 - RCE
Format string vulnerability in stunnel before 3.22 when used in client mode for (1) smtp, (2) pop, or (3) nntp allows remote malicious servers to execute arbitrary code.
by deltha
CVE-2001-0876 EXPLOITDB c VERIFIED
Microsoft Windows 98 - Buffer Overflow
Buffer overflow in Universal Plug and Play (UPnP) on Windows 98, 98SE, ME, and XP allows remote attackers to execute arbitrary code via a NOTIFY directive with a long Location URL.
by JOCANOR
CVE-2001-0876 EXPLOITDB c VERIFIED
Microsoft Windows 98 - Buffer Overflow
Buffer overflow in Universal Plug and Play (UPnP) on Windows 98, 98SE, ME, and XP allows remote attackers to execute arbitrary code via a NOTIFY directive with a long Location URL.
by Gabriel Maggiotti
CVE-2001-0797 EXPLOITDB c VERIFIED
SGI Irix - Buffer Overflow
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
by Teso
CVE-2001-1519 EXPLOITDB c VERIFIED
Windows 2000 - Local Privilege Escalation
RunAs (runas.exe) in Windows 2000 allows local users to create a spoofed named pipe when the service is stopped, then capture cleartext usernames and passwords when clients connect to the service. NOTE: the vendor disputes this issue, saying that administrative privileges are already required to exploit it
by Camisade
CVE-2001-1518 EXPLOITDB c VERIFIED
Windows 2000 - DoS
RunAs (runas.exe) in Windows 2000 only creates one session instance at a time, which allows local users to cause a denial of service (RunAs hang) by creating a named pipe session with the authentication server without any request for service. NOTE: the vendor disputes this vulnerability, however the vendor also presents a scenario in which other users could be affected if running on a Terminal Server. Therefore this is a vulnerability.
by Camisade
CVE-2001-0951 EXPLOITDB c VERIFIED
Microsoft Windows 2000 - Denial of Service
Windows 2000 allows remote attackers to cause a denial of service (CPU consumption) by flooding Internet Key Exchange (IKE) UDP port 500 with packets that contain a large number of dot characters.
by Nelson Brito
CVE-2001-1184 EXPLOITDB c VERIFIED
Denicomp Winsock RSHD/NT <2.21.00 - DoS
wrshdsp.exe in Denicomp Winsock RSHD/NT 2.21.00 and earlier allows remote attackers to cause a denial of service (CPU consumption) via (1) in 2.20.00 and earlier, an invalid port number such as a negative number, which causes a connection attempt to that port and all ports below 1024, and (2) in 2.21.00, a port number of 1024.
by jimmers
CVE-2001-1184 EXPLOITDB c VERIFIED
Denicomp Winsock RSHD/NT <2.21.00 - DoS
wrshdsp.exe in Denicomp Winsock RSHD/NT 2.21.00 and earlier allows remote attackers to cause a denial of service (CPU consumption) via (1) in 2.20.00 and earlier, an invalid port number such as a negative number, which causes a connection attempt to that port and all ports below 1024, and (2) in 2.21.00, a port number of 1024.
by jimmers
CVE-2001-1185 EXPLOITDB c VERIFIED
FreeBSD 4.4 - Privilege Escalation
Some AIO operations in FreeBSD 4.4 may be delayed until after a call to execve, which could allow a local user to overwrite memory of the new process and gain privileges.
by David Rufino
CVE-2001-1559 EXPLOITDB MEDIUM c VERIFIED
OpenBSD <3.1 - DoS
The uipc system calls (uipc_syscalls.c) in OpenBSD 2.9 and 3.0 provide user mode return instead of versus rval kernel mode values to the fdrelease function, which allows local users to cause a denial of service and trigger a null dereference.
by Marco Peereboom
CVSS 5.5
CVE-2001-0915 EXPLOITDB c VERIFIED
Berkeley parallel make <2.1.33 - Privilege Escalation
Format string vulnerability in Berkeley parallel make (pmake) 2.1.33 and earlier allows a local user to gain root privileges via format specifiers in the check argument of a shell definition.
by IhaQueR@IRCnet
CVE-2001-0916 EXPLOITDB c VERIFIED
Berkeley Pmake < 2.1.33 - Buffer Overflow
Buffer overflow in Berkeley parallel make (pmake) 2.1.33 and earlier allows a local user to gain root privileges via a long check argument of a shell definition.
by IhaQueR@IRCnet
CVE-2001-0815 EXPLOITDB c VERIFIED
Activestate Activeperl < 5.6.1.629 - Buffer Overflow
Buffer overflow in PerlIS.dll in Activestate ActivePerl 5.6.1.629 and earlier allows remote attackers to execute arbitrary code via an HTTP request for a long filename that ends in a .pl extension.
by Indigo
CVE-2001-0815 EXPLOITDB c VERIFIED
Activestate Activeperl < 5.6.1.629 - Buffer Overflow
Buffer overflow in PerlIS.dll in Activestate ActivePerl 5.6.1.629 and earlier allows remote attackers to execute arbitrary code via an HTTP request for a long filename that ends in a .pl extension.
by Indigo
CVE-2001-0855 EXPLOITDB c VERIFIED
Rational Software Clearcase - Buffer Overflow
Buffer overflow in db_loader in ClearCase 4.2 and earlier allows local users to gain root privileges via a long TERM environment variable.
by virtualcat
CVE-2002-0184 EXPLOITDB HIGH c VERIFIED
Sudo < 1.6.6 - Buffer Overflow
Sudo before 1.6.6 contains an off-by-one error that can result in a heap-based buffer overflow that may allow local users to gain root privileges via special characters in the -p (prompt) argument, which are not properly expanded.
by MaXX
CVSS 7.8
EIP-2026-117572 EXPLOITDB c VERIFIED
Microsoft Windows NT 3/4.0 - CSRSS Memory Access Violation
by Michael Wojcik
By Source
All 3,149 Exploitdb 50,130 Writeup 46,871 Nomisec 21,233 Metasploit 3,221 Github 2,353 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,346 ruby 5,952 python 5,785 c 3,564 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 78 go 45 postscript 25 xml 24