Exploitdb Exploits

3,149 exploits tracked across all sources.

Sort: Activity Stars
CVE-2000-0699 EXPLOITDB c VERIFIED
Hp-ux - Denial of Service
Format string vulnerability in ftpd in HP-UX 10.20 allows remote attackers to cause a denial of service or execute arbitrary commands via format strings in the PASS command.
by venglin
CVE-2000-1186 EXPLOITDB c VERIFIED
phf CGI - Buffer Overflow
Buffer overflow in phf CGI program allows remote attackers to execute arbitrary commands by specifying a large number of arguments and including a long MIME header.
by proton
CVE-2000-1119 EXPLOITDB c VERIFIED
IBM AIX <4.3.x - Buffer Overflow
Buffer overflow in setsenv command in IBM AIX 4.3.x and earlier allows local users to execute arbitrary commands via a long "x=" argument.
by Last Stage of Delirium
CVE-2000-1124 EXPLOITDB c VERIFIED
IBM AIX 4.3.x - Buffer Overflow
Buffer overflow in piobe command in IBM AIX 4.3.x allows local users to gain privileges via long environmental variables.
by Last Stage of Delirium
CVE-2000-1120 EXPLOITDB c VERIFIED
IBM AIX <4.3.x - Buffer Overflow
Buffer overflow in digest command in IBM AIX 4.3.x and earlier allows local users to execute arbitrary commands.
by Last Stage of Delirium
CVE-2000-0844 EXPLOITDB c VERIFIED
Caldera Openlinux Ebuilder - Access Control
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
by warning3
EIP-2026-103148 EXPLOITDB c VERIFIED
INND/NNRP < 1.6.x - Remote Overflow
by Babcia Padlina
CVE-2000-0844 EXPLOITDB c VERIFIED
Caldera Openlinux Ebuilder - Access Control
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
by localcore
EIP-2026-100683 EXPLOITDB c VERIFIED
BSDi 3.0 inc - Local Buffer Overflow / Local Privilege Escalation
by vade79
EIP-2026-103080 EXPLOITDB c VERIFIED
BFTPd - 'vsprintf()' Format Strings
by DiGiT
CVE-2000-1009 EXPLOITDB c VERIFIED
Red Hat Linux 6.2 - Privilege Escalation
dump in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.
by mat
CVE-2000-0573 EXPLOITDB c VERIFIED
wu-ftpd <2.6.0 - Code Injection
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
by venglin
CVE-1999-0034 EXPLOITDB c VERIFIED
Larry Wall Perl - Buffer Overflow
Buffer overflow in suidperl (sperl), Perl 4.x and 5.x.
by vade79
CVE-2000-1103 EXPLOITDB c VERIFIED
rcvtty <4.0 - Privilege Escalation
rcvtty in BSD 3.0 and 4.0 does not properly drop privileges before executing a script, which allows local attackers to gain privileges by specifying an alternate Trojan horse script on the command line.
by vade79
CVE-2000-0844 EXPLOITDB c VERIFIED
Caldera Openlinux Ebuilder - Access Control
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
by Solar Eclipse
CVE-2000-1180 EXPLOITDB c VERIFIED
Oracle 8.1.5 - Buffer Overflow
Buffer overflow in cmctl program in Oracle 8.1.5 Connection Manager Control allows local users to gain privileges via a long command line argument.
by anonymous
EIP-2026-102148 EXPLOITDB c VERIFIED
HP-UX 11.0 - 'pppd' Local Stack Buffer Overflow
by K2
CVE-2000-0884 EXPLOITDB c VERIFIED
IIS 4.0-5.0 - Path Traversal
IIS 4.0 and 5.0 allows remote attackers to read documents outside of the web root, and possibly execute arbitrary commands, via malformed URLs that contain UNICODE encoded characters, aka the "Web Server Folder Traversal" vulnerability.
by Optyx
CVE-2000-0884 EXPLOITDB c VERIFIED
IIS 4.0-5.0 - Path Traversal
IIS 4.0 and 5.0 allows remote attackers to read documents outside of the web root, and possibly execute arbitrary commands, via malformed URLs that contain UNICODE encoded characters, aka the "Web Server Folder Traversal" vulnerability.
by incubus
EIP-2026-117675 EXPLOITDB c VERIFIED
NetcPlus SmartServer3 3.75 - Weak Encryption
by Steven Alexander
EIP-2026-117674 EXPLOITDB c VERIFIED
NetcPlus BrowseGate 2.80.2 - Weak Encryption
by Steven Alexander
CVE-2000-1174 EXPLOITDB c VERIFIED
Ethereal <0.8.13 - Buffer Overflow
Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username.
by mat
EIP-2026-103129 EXPLOITDB c VERIFIED
Half Life - 'rcon' Remote Buffer Overflow
by Sao Paulo
CVE-2000-0987 EXPLOITDB c VERIFIED
Oracle 8.1.6 - Buffer Overflow
Buffer overflow in oidldapd in Oracle 8.1.6 allow local users to gain privileges via a long "connect" command line parameter.
by anonymous
CVE-2000-0949 EXPLOITDB c VERIFIED
LBNL Traceroute <1.4a5 - Buffer Overflow
Heap overflow in savestr function in LBNL traceroute 1.4a5 and earlier allows a local user to execute arbitrary commands via the -g option.
by Michel Kaempf
By Source
All 3,149 Exploitdb 50,130 Writeup 46,953 Nomisec 21,249 Metasploit 3,221 Github 2,386 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,346 ruby 5,952 python 5,798 c 3,565 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 85 go 45 postscript 25 xml 24