Exploitdb Exploits

3,149 exploits tracked across all sources.

Sort: Activity Stars
CVE-2001-0006 EXPLOITDB HIGH c VERIFIED
Windows NT 4.0 - DoS
The Winsock2ProtocolCatalogMutex mutex in Windows NT 4.0 has inappropriate Everyone/Full Control permissions, which allows local users to modify the permissions to "No Access" and disable Winsock network connectivity to cause a denial of service, aka the "Winsock Mutex" vulnerability.
by Arne Vidstrom
CVSS 7.1
CVE-2001-0460 EXPLOITDB c VERIFIED
Baltimore Technologies Websweeper - Denial of Service
Websweeper 4.0 does not limit the length of certain HTTP headers, which allows remote attackers to cause a denial of service (memory exhaustion) via an extremely large HTTP Referrer: header.
by honoriak
CVE-2001-0197 EXPLOITDB c VERIFIED
icecast <1.3.8beta2 - RCE
Format string vulnerability in print_client in icecast 1.3.8beta2 and earlier allows remote attackers to execute arbitrary commands.
by CyRaX
CVE-2001-0184 EXPLOITDB c VERIFIED
Eeye Digital Security Iris - Denial of Service
eEye Iris 1.01 beta allows remote attackers to cause a denial of service via a malformed packet, which causes Iris to crash when a user views the packet.
by grazer
EIP-2026-101192 EXPLOITDB c VERIFIED
Cisco - Password Bruteforcer
by norby
CVE-2001-1274 EXPLOITDB c VERIFIED
MySQL <3.23.31 - DoS/Privilege Escalation
Buffer overflow in MySQL before 3.23.31 allows attackers to cause a denial of service and possibly gain privileges.
by Luis Miguel Silva
CVE-2001-0129 EXPLOITDB c VERIFIED
Tinyproxy < 1.3.2 - Buffer Overflow
Buffer overflow in Tinyproxy HTTP proxy 1.3.3 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long connect request.
by CyRaX
CVE-2001-0233 EXPLOITDB c VERIFIED
Matthew Smith Micq < 0.4.6 - Buffer Overflow
Buffer overflow in micq client 0.4.6 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long Description field.
by tHE rECIdjVO
CVE-2001-0259 EXPLOITDB c VERIFIED
ssh <1.2.27-1.2.30 - Info Disclosure
ssh-keygen in ssh 1.2.27 - 1.2.30 with Secure-RPC can allow local attackers to recover a SUN-DES-1 magic phrase generated by another user, which the attacker can use to decrypt that user's private key file.
by Richard Silverman
CVE-2001-0111 EXPLOITDB c VERIFIED
splitvt <1.6.5 - Command Injection
Format string vulnerability in splitvt before 1.6.5 allows local users to execute arbitrary commands via the -rcfile command line argument.
by Michel Kaempf
CVE-2001-0115 EXPLOITDB c VERIFIED
SUN Solaris - Buffer Overflow
Buffer overflow in arp command in Solaris 7 and earlier allows local users to execute arbitrary commands via a long -f parameter.
by ahmed
CVE-2001-0040 EXPLOITDB c VERIFIED
APC UPS daemon - Local Privilege Escalation
APC UPS daemon, apcupsd, saves its process ID in a world-writable file, which allows local users to kill an arbitrary process by specifying the target process ID in the apcupsd.pid file.
by the itch
EIP-2026-114732 EXPLOITDB c VERIFIED
Solaris 2.5/2.5.1 - 'getgrnam()' Local Overflow
by Pablo Sor
CVE-2000-1028 EXPLOITDB c VERIFIED
HP-UX 11.0 - Buffer Overflow
Buffer overflow in cu program in HP-UX 11.0 may allow local users to gain privileges via a long -l command line argument.
by zorgon
CVE-2000-0993 EXPLOITDB c VERIFIED
BSD libutil - Privilege Escalation
Format string vulnerability in pw_error function in BSD libutil library allows local users to gain root privileges via a malformed password in commands such as chpass or passwd.
by caddis
CVE-2000-0573 EXPLOITDB c VERIFIED
wu-ftpd <2.6.0 - Code Injection
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
by kalou
CVE-2001-0136 EXPLOITDB c VERIFIED
Proftpd - Memory Leak
Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed.
by Piotr Zurawski
EIP-2026-102682 EXPLOITDB c VERIFIED
ml2 - Local users can Crash processes
by Stealth
CVE-2000-1026 EXPLOITDB c VERIFIED
LBNL tcpdump - Buffer Overflow
Multiple buffer overflows in LBNL tcpdump allow remote attackers to execute arbitrary commands.
by Zhodiac
CVE-2001-0084 EXPLOITDB c VERIFIED
GTK+ - Privilege Escalation
GTK+ library allows local users to specify arbitrary modules via the GTK_MODULES environmental variable, which could allow local users to gain privileges if GTK+ is used by a setuid/setgid program.
by V9
EIP-2026-103157 EXPLOITDB c VERIFIED
Linux Kernel 2.2 - TCP/IP Spoof IP
by Stealth
CVE-2002-1337 EXPLOITDB c VERIFIED
Sendmail <8.12.7 - RCE
Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c.
by sd
CVE-2001-0440 EXPLOITDB c VERIFIED
Licq < 1.0.2 - Buffer Overflow
Buffer overflow in logging functions of licq before 1.0.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands.
by Stan Bubrouski
CVE-2001-0311 EXPLOITDB c VERIFIED
HP OmniBackII <A.03.50 - Privilege Escalation
Vulnerability in OmniBackII A.03.50 in HP 11.x and earlier allows attackers to gain unauthorized access to an OmniBack client.
by DiGiT
CVE-2001-0053 EXPLOITDB c VERIFIED
David Madore Ftpd-bsd - Buffer Overflow
One-byte buffer overflow in replydirname function in BSD-based ftpd allows remote attackers to gain root privileges.
by Scrippie
By Source
All 3,149 Exploitdb 50,130 Writeup 46,953 Nomisec 21,249 Metasploit 3,221 Github 2,386 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,346 ruby 5,952 python 5,798 c 3,565 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 85 go 45 postscript 25 xml 24