C Exploits
3,632 exploits tracked across all sources.
cPanel 5.0 - Remote Code Execution via Guestbook.cgi Template Parameter
guestbook.cgi in cPanel 5.0 allows remote attackers to execute arbitrary commands via the template parameter.
by bob
linux-atm - Buffer Overflow via Long Command Line Argument
Buffer overflow in les for ATM on Linux (linux-atm) before 2.4.1, if used setuid, allows local users to gain privileges via a long -f command line argument.
by Angelo Rosiello
AutomatedShops WebC 2.0/5.0 Script - Name Remote Buffer Overrun
by Carl Livitt
HP-UX 10.0-11.22 - Local Buffer Overflow via stmkfont Command Line Argument
Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument.
by Last Stage of Delirium
nethack <3.4.0 & falconseye <1.9.3 - Buffer Overflow
Buffer overflow in (1) nethack 3.4.0 and earlier, and (2) falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option.
nethack <3.4.0 & falconseye <1.9.3 - Buffer Overflow
Buffer overflow in (1) nethack 3.4.0 and earlier, and (2) falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option.
by tsao@efnet
BitchX 75p3 and 1.0c16-1.0c20cvs - Denial of Service via Malformed RPL_NAMREPLY Message
BitchX 75p3 and 1.0c16 through 1.0c20cvs allows remote attackers to cause a denial of service (segmentation fault) via a malformed RPL_NAMREPLY numeric 353 message.
by argv
GameSpy 3D 2.62 - Denial of Service via UDP Amplification
Multiple GameSpy 3D 2.62 compatible gaming servers generate very large UDP responses to small requests, which allows remote attackers to use the servers as an amplifier in DDoS attacks with spoofed UDP query packets, as demonstrated using Battlefield 1942.
by Mike Kristovich
Caldera Openlinux Ebuilder - Access Control
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
by logikal
mpg123 pre0.59s - Invalid MP3 Header Memory Corruption
by Gobbles Security
Half-Life StatsMe 2.6.x Plugin - MakeStats Format String
Half-Life StatsMe 2.6.x Plugin - CMD_ARGV Buffer Overflow
Half-Life ClanMod 1.80/1.81 Plugin - Remote Format String
Half-Life AdminMod 2.50 Plugin - Remote Format String
by greuff
Tanne 0.6.17 - Remote Code Execution via Format String in Logger Function
Multiple format string vulnerabilities in the logger function in netzio.c for Tanne 0.6.17 allows remote attackers to execute arbitrary code via format string specifiers in syslog.
by dong-h0un yoU
H-Sphere WebShell 2.3 - Remote Code Execution via Buffer Overflow in CGI::readFile diskusage and flist
Multiple buffer overflows in H-Sphere WebShell 2.3 allow remote attackers to execute arbitrary code via (1) a long URL content type in CGI::readFile, (2) a long path in diskusage, and (3) a long fname in flist.
by Carl Livitt
H-Sphere WebShell 2.3 - Remote Code Execution via Buffer Overflow in CGI::readFile diskusage and flist
Multiple buffer overflows in H-Sphere WebShell 2.3 allow remote attackers to execute arbitrary code via (1) a long URL content type in CGI::readFile, (2) a long path in diskusage, and (3) a long fname in flist.
by Carl Livitt
rpc.walld - Solaris 2.6-9 - Local Privilege Escalation
rpc.walld (wall daemon) for Solaris 2.6 through 9 allows local users to send messages to logged on users that appear to come from arbitrary user IDs by closing stderr before executing wall, then supplying a spoofed from header.
by Brant Roman
Melange Chat System 1.10 - Buffer Overflow
Buffer overflow in Melange Chat System 1.10 allows remote attackers to cause a denial of service (chat server crash) and possibly execute arbitrary code via the msgText buffer in the chat_InterpretData function, as demonstrated via a long Nick (nickname) request.
by innerphobia
Linux kernel 2.2.x - Denial of Service via mmap PROT_READ on /proc/pid/mem
Linux kernel 2.2.x allows local users to cause a denial of service (crash) by using the mmap() function with a PROT_READ parameter to access non-readable memory pages through the /proc/pid/mem interface.
by Michal Zalewski
MySQL <3.23.54, <4.0.6 - Privilege Escalation
The COM_CHANGE_USER command in MySQL 3.x before 3.23.54, and 4.x before 4.0.6, allows remote attackers to gain privileges via a brute force attack using a one-character password, which causes MySQL to only compare the provided password against the first character of the real password.
by Andi
HP-UX 11.0 - Buffer Overflow via Long Command Line Argument
Buffer overflow in swverify in HP-UX 11.0, and possibly other programs, allows local users to gain privileges via a long command line argument.
by watercloud
By Source