Exploitdb Exploits

3,138 exploits tracked across all sources.

Sort: Activity Stars
CVE-2001-1133 EXPLOITDB c VERIFIED
BSDI 3.0-3.1 - Denial of Service via System Call
Vulnerability in a system call in BSDI 3.0 and 3.1 allows local users to cause a denial of service (reboot) in the kernel via a particular sequence of instructions.
by V9
CVE-2001-0653 EXPLOITDB c VERIFIED
Sendmail <8.11.6 - Memory Corruption
Sendmail 8.10.0 through 8.11.5, and 8.12.0 beta, allows local users to modify process memory and possibly gain privileges via a large value in the 'category' part of debugger (-d) command line arguments, which is interpreted as a negative number.
CVE-2001-0653 EXPLOITDB c VERIFIED
Sendmail <8.11.6 - Memory Corruption
Sendmail 8.10.0 through 8.11.5, and 8.12.0 beta, allows local users to modify process memory and possibly gain privileges via a large value in the 'category' part of debugger (-d) command line arguments, which is interpreted as a negative number.
by grange
CVE-2001-0506 EXPLOITDB c VERIFIED
Internet Information Server 4.0-5.0 - Local Privilege Escalation via SSI Long Filename Overflow
Buffer overflow in ssinc.dll in IIS 5.0 and 4.0 allows local users to gain system privileges via a Server-Side Includes (SSI) directive for a long filename, which triggers the overflow when the directory name is added, aka the "SSI privilege elevation" vulnerability.
by Indigo
CVE-2001-0652 EXPLOITDB c VERIFIED
Solaris 2.6-8 - Privilege Escalation
Heap overflow in xlock in Solaris 2.6 through 8 allows local users to gain root privileges via a long (1) XFILESEARCHPATH or (2) XUSERFILESEARCHPATH environmental variable.
by Nsfocus
CVE-2001-0652 EXPLOITDB c VERIFIED
Solaris 2.6-8 - Privilege Escalation
Heap overflow in xlock in Solaris 2.6 through 8 allows local users to gain root privileges via a long (1) XFILESEARCHPATH or (2) XUSERFILESEARCHPATH environmental variable.
by Nsfocus
CVE-2001-1009 EXPLOITDB c VERIFIED
fetchmail < 5.8.17 - Memory Corruption via Negative LIST Response Index
Fetchmail (aka fetchmail-ssl) before 5.8.17 allows a remote malicious (1) IMAP server or (2) POP/POP3 server to overwrite arbitrary memory and possibly gain privileges via a negative index number as part of a response to a LIST request.
by Salvatore Sanfilippo -antirez-
CVE-2001-1009 EXPLOITDB c VERIFIED
fetchmail < 5.8.17 - Memory Corruption via Negative LIST Response Index
Fetchmail (aka fetchmail-ssl) before 5.8.17 allows a remote malicious (1) IMAP server or (2) POP/POP3 server to overwrite arbitrary memory and possibly gain privileges via a negative index number as part of a response to a LIST request.
by Sanfillipo antirez
CVE-2001-1259 EXPLOITDB c VERIFIED
Avaya Argent Office - Denial of Service via UDP Packet to Port 53
Avaya Argent Office allows remote attackers to cause a denial of service by sending UDP packets to port 53 with no payload.
by Jacek Lipkowski
CVE-2001-0941 EXPLOITDB c VERIFIED
Oracle Database Server 8.0.6-9.0.1 - Buffer Overflow via ORACLE_HOME Environment Variable
Buffer overflow in dbsnmp in Oracle 8.0.6 through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable.
by Juan Manuel Pascual Escribá
CVE-2001-0833 EXPLOITDB c VERIFIED
Oracle Database Server < 9.0.1 - Buffer Overflow via ORACLE_HOME Environment Variable
Buffer overflow in otrcrep in Oracle 8.0.x through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable, aka the "Oracle Trace Collection Security Vulnerability."
by Juan Manuel Pascual Escribá
CVE-2001-1036 EXPLOITDB c VERIFIED
GNU locate in findutils <4.1 - Privilege Escalation
GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an entry with an out-of-range offset, which causes locate to write to arbitrary process memory.
by Josh Smith
CVE-2001-0548 EXPLOITDB c VERIFIED
Solaris 2.6 and 7 - Buffer Overflow via MAIL Environment Variable
Buffer overflow in dtmail in Solaris 2.6 and 7 allows local users to gain privileges via the MAIL environment variable.
by NSFOCUS Security Team
EIP-2026-100684 EXPLOITDB c VERIFIED
FreeBSD - '/usr/bin/top' Format String
by truefinder
CVE-2001-0499 EXPLOITDB c VERIFIED
Oracle8i < 8.1.7 - Remote Buffer Overflow via TNS Listener Commands
Buffer overflow in Transparent Network Substrate (TNS) Listener in Oracle 8i 8.1.7 and earlier allows remote attackers to gain privileges via a long argument to the commands (1) STATUS, (2) PING, (3) SERVICES, (4) TRC_FILE, (5) SAVE_CONFIG, or (6) RELOAD.
by benjurry
CVE-2001-1354 EXPLOITDB c VERIFIED
NetWin Authentication module - Info Disclosure
NetWin Authentication module (NWAuth) 2.0 and 3.0b, as implemented in SurgeFTP, DMail, and possibly other packages, uses weak password hashing, which could allow local users to decrypt passwords or use a different password that has the same hash value as the correct password.
by byterage
CVE-2001-0554 EXPLOITDB c VERIFIED
MIT Kerberos - Remote Code Execution via Malformed Telnet AYT Option
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.
by Dvorak
EIP-2026-115424 EXPLOITDB c VERIFIED
ID Software Quake 3 - 'SMURF' Denial of Service
by Andy Gavin
CVE-1999-1569 EXPLOITDB c VERIFIED
Quake - Denial of Service via Spoofed UDP Connection Packet Flood
Quake 1 and NetQuake servers allow remote attackers to cause a denial of service (resource exhaustion or forced disconnection) via a flood of spoofed UDP connection packets, which exceeds the server's player limit.
by Andy Gavin
EIP-2026-102998 EXPLOITDB c VERIFIED
Slackware 7.0/7.1/8.0 - Manual Page Cache File Creation
by josh
CVE-2003-0757 EXPLOITDB c VERIFIED
Check Point FireWall-1 <4.1 - Info Disclosure
Check Point FireWall-1 4.0 and 4.1 before SP5 allows remote attackers to obtain the IP addresses of internal interfaces via certain SecuRemote requests to TCP ports 256 or 264, which leaks the IP addresses in a reply packet.
by Jim Becher
CVE-2001-0989 EXPLOITDB c VERIFIED
Pileup - Local Buffer Overflow via Long Command Line Arguments or Callsign
Buffer overflows in Pileup before 1.2 allows local users to gain root privileges via (1) long command line arguments, or (2) a long callsign.
by Charles Stevenson
CVE-2001-1142 EXPLOITDB c VERIFIED
ArGoSoft FTP Server <1.2.2.2 - Privilege Escalation
ArGoSoft FTP Server 1.2.2.2 uses weak encryption for user passwords, which allows an attacker with access to the password file to gain privileges.
by byterage
CVE-2001-0735 EXPLOITDB c VERIFIED
cfingerd <= 1.4.3 - Buffer Overflow via Long Line in .nofinger File
Buffer overflow in cfingerd 1.4.3 and earlier with the ALLOW_LINE_PARSING option enabled allows local users to execute arbitrary code via a long line in the .nofinger file.
by Megyer Laszlo
CVE-2001-0735 EXPLOITDB c VERIFIED
cfingerd <= 1.4.3 - Buffer Overflow via Long Line in .nofinger File
Buffer overflow in cfingerd 1.4.3 and earlier with the ALLOW_LINE_PARSING option enabled allows local users to execute arbitrary code via a long line in the .nofinger file.
by qitest1
By Source
All 3,138 Writeup 62,491 Exploitdb 50,076 Nomisec 22,459 Github 3,677 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,598 ruby 6,006 c 3,631 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 133 go 73 postscript 25 typescript 25