C Exploits
3,631 exploits tracked across all sources.
ZoneAlarm 3.7.202/PRO 4.0/PRO 4.5 - Random UDP Flood Denial of Service (2)
by WARL0RD
eMule/xMule/LMule - OP_SERVERMESSAGE Format String
by Rémi Denis-Courmont
eMule 0.2x Client - OP_SERVERIDENT Heap Overflow
by Stefan Esser
pam_smb 1.1.6 - Buffer Overflow
Buffer overflow in PAM SMB module (pam_smb) 1.1.6 and earlier, when authenticating to a remote service, allows remote attackers to execute arbitrary code.
by vertex
gtkftpd 1.0.4 - Buffer Overflow via Long Directory Names in LIST Command
Buffer overflow in sys_cmd.c for gtkftpd 1.0.4 and earlier allows remote attackers to execute arbitrary code by creating long directory names and listing them with a LIST command.
by vade79
Blubster 2.5 - Denial of Service via UDP Port 701 Flood
Blubster 2.5 allows remote attackers to cause a denial of service (crash) via a flood of connections to UDP port 701.
by Luca Ercoli
RealNetworks Helix Universal Server <9 - Buffer Overflow
Buffer overflow in the RTSP protocol parser for the View Source plug-in (vsrcplin.so or vsrcplin3260.dll) for RealNetworks Helix Universal Server 9 and RealSystem Server 8, 7 and RealServer G2 allows remote attackers to execute arbitrary code.
by Johnny Cyberpunk
BSD-Games 2.x - Monop Player Name Local Buffer Overrun (2)
by N4rK07IX
BSD-Games 2.x - Monop Player Name Local Buffer Overrun (1)
by ^sq
Microsoft Windows Server 2000 - RSVP Server Authority Hijacking
by ste jones
Oracle 9i Database Release 2 - Buffer Overflow
Multiple buffer overflows in the XML Database (XDB) functionality for Oracle 9i Database Release 2 allow local users to cause a denial of service or hijack user sessions.
by David Litchfield
DameWare Mini Remote Control < 3.73 - Unauthenticated Remote Code Execution via Long Pre-Authentication Request
Buffer overflow in DameWare Mini Remote Control before 3.73 allows remote attackers to execute arbitrary code via a long pre-authentication request to TCP port 6129.
by ash
Microsoft Windows Server 2000 - Subnet Bandwidth Manager RSVP Server Authority Hijacking
wu-ftpd 2.5.0-2.6.2 - Remote Code Execution via fb_realpath Off-by-one Error
Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to trigger a buffer overflow, including (1) STOR, (2) RETR, (3) APPE, (4) DELE, (5) MKD, (6) RMD, (7) STOU, or (8) RNTO.
by Xpl017Elz
CVSS 9.8
Cisco IOS < 12.2 - Remote Code Execution via Long HTTP GET Request
Buffer overflow in the HTTP server for Cisco IOS 12.2 and earlier allows remote attackers to execute arbitrary code via an extremely long (2GB) HTTP GET request.
by FX
IBM Informix Dynamic Server <9.40.xC3 - Buffer Overflow
Stack-based buffer overflow in ontape for IBM Informix Dynamic Server (IDS) 9.40.xC3 and earlier allows local users, with DSA privileges, to execute arbitrary code via a long ONCONFIG environment variable.
by pask
Windows 2000 SP3-SP4 - Denial of Service and Privilege Escalation via RPC DCOM Interface
The RPC DCOM interface in Windows 2000 SP3 and SP4 allows remote attackers to cause a denial of service (crash), and local attackers to use the DoS to hijack the epmapper pipe to gain privileges, via certain messages to the __RemoteGetClassObject interface that cause a NULL pointer to be passed to the PerformScmStage function.
by oc192
By Source