C Exploits
3,631 exploits tracked across all sources.
Windows 2000 SP3-SP4 - Denial of Service and Privilege Escalation via RPC DCOM Interface
The RPC DCOM interface in Windows 2000 SP3 and SP4 allows remote attackers to cause a denial of service (crash), and local attackers to use the DoS to hijack the epmapper pipe to gain privileges, via certain messages to the __RemoteGetClassObject interface that cause a NULL pointer to be passed to the PerformScmStage function.
by Flashsky
Knox Arkeia Server Backup 5.3.x - Remote Code Execution via Type 77 Request
Stack-based buffer overflow in Knox Arkeia Server Backup 5.3.x allows remote attackers to execute arbitrary code via a long type 77 request.
by anonymous
GNU lsh - Remote Code Execution via Heap-Based Buffer Overflow in lshd
lsh daemon (lshd) does not properly return from certain functions in (1) read_line.c, (2) channel_commands.c, or (3) client_keyexchange.c when long input is provided, which could allow remote attackers to execute arbitrary code via a heap-based buffer overflow attack.
by m00 security
GNU lsh - Remote Code Execution via Heap-Based Buffer Overflow in lshd
lsh daemon (lshd) does not properly return from certain functions in (1) read_line.c, (2) channel_commands.c, or (3) client_keyexchange.c when long input is provided, which could allow remote attackers to execute arbitrary code via a heap-based buffer overflow attack.
by Carl Livitt
Sendmail Advanced Message Server - Buffer Overflow in Ruleset Parsing
A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.
by Gyan Chawdhary
Microsoft Windows - Buffer Overflow
Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.
by ey4s
Pine < 4.58 - Remote Code Execution via Malformed MIME Type
Buffer overflow in PINE before 4.58 allows remote attackers to execute arbitrary code via a malformed message/external-body MIME type.
by sorbo
Liquid War 5.4.5/5.5.6 - HOME Environment Variable Buffer Overflow
by Angelo Rosiello
MySQL 4.0.14 and 3.23.x - Authenticated Buffer Overflow via Long Password Field
Buffer overflow in get_salt_from_password from sql_acl.cc for MySQL 4.0.14 and earlier, and 3.23.x, allows attackers with ALTER TABLE privileges to execute arbitrary code via a long Password field.
by bkbll
Windows 2000 SP3-SP4 - Denial of Service and Privilege Escalation via RPC DCOM Interface
The RPC DCOM interface in Windows 2000 SP3 and SP4 allows remote attackers to cause a denial of service (crash), and local attackers to use the DoS to hijack the epmapper pipe to gain privileges, via certain messages to the __RemoteGetClassObject interface that cause a NULL pointer to be passed to the PerformScmStage function.
by Doke Scott
RogerWilco graphical server <1.4.1.6 - Buffer Overflow
Buffer overflow in RogerWilco graphical server 1.4.1.6 and earlier, dedicated server 0.32a and earlier for Windows, and 0.27 and earlier for Linux and BSD, allows remote attackers to cause a denial of service and execute arbitrary code via a client request with a large length value.
by Luigi Auriemma
RealOne Player for Linux 2.2 Alpha - Insecure Configuration File Permission Privilege Escalation
by Jon Hart
Apache::Gallery 0.4/0.5/0.6 - Insecure File Storage Privilege Escalation
by Jon Hart
mah-jong 1.5.6 - Buffer Overflow
Buffer overflow in mah-jong 1.5.6 and earlier allows remote attackers to execute arbitrary code.
by V9
Microsoft Wordperfect Converter - RCE
Buffer overflow in Microsoft Wordperfect Converter allows remote attackers to execute arbitrary code via modified data offset and data size parameters in a Corel WordPerfect file.
by valgasu
Stunnel <4.00-3.24 - Local Privilege Escalation
Stunnel 4.00, and 3.24 and earlier, leaks a privileged file descriptor returned by listen(), which allows local users to hijack the Stunnel server.
by Steve Grubb
WS_FTP Server 3-4 - Authenticated Buffer Overflow via APPE or STAT Arguments
Multiple buffer overflows in WS_FTP 3 and 4 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via long (1) APPE (append) or (2) STAT (status) arguments.
by xfocus
Microsoft Windows 98 - Fragmented UDP Flood Denial of Service
by WARL0RD
Microsoft Access Snapshot Viewer - Buffer Overflow via ActiveX Control
Buffer overflow in the ActiveX control for Microsoft Access Snapshot Viewer for Access 97, 2000, and 2002 allows remote attackers to execute arbitrary code via long parameters to the control.
by Oliver Lavery
By Source