C Exploits

3,632 exploits tracked across all sources.

Sort: Activity Stars
CVE-2001-0763 EXPLOITDB c VERIFIED
Linux xinetd < 2.1.8.9pre11-1 - Remote Code Execution via Long Ident Response
Buffer overflow in Linux xinetd 2.1.8.9pre11-1 and earlier may allow remote attackers to execute arbitrary code via a long ident response, which is not properly handled by the svc_logprint function.
by qitest1
CVE-2001-1582 EXPLOITDB c VERIFIED
Solaris 8 - Buffer Overflow via LDAP_OPTIONS Environment Variable
Buffer overflow in the LDAP naming services library (libsldap) in Sun Solaris 8 allows local users to execute arbitrary code via a long LDAP_OPTIONS environment variable to a privileged program that uses libsldap.
by Fyodor
EIP-2026-102899 EXPLOITDB c VERIFIED
Linux Kernel 2.2/2.4 - procfs Stream redirection to Process Memory Privilege Escalation
by zen-parse
CVE-2001-0537 EXPLOITDB c VERIFIED
Cisco IOS 11.3-12.2 - Unauthenticated Command Execution via High Access Level URL
HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL.
by Eliel C. Sardanons
CVE-2001-1582 EXPLOITDB c VERIFIED
Solaris 8 - Buffer Overflow via LDAP_OPTIONS Environment Variable
Buffer overflow in the LDAP naming services library (libsldap) in Sun Solaris 8 allows local users to execute arbitrary code via a long LDAP_OPTIONS environment variable to a privileged program that uses libsldap.
by noir
CVE-2001-1086 EXPLOITDB c VERIFIED
XFree86 3.3-3.3.3 - Info Disclosure
XDM in XFree86 3.3 and 3.3.3 generates easily guessable cookies using gettimeofday() when compiled with the HasXdmXauth option, which allows remote attackers to gain unauthorized access to the X display via a brute force attack.
by ntf & sky
CVE-2001-1022 EXPLOITDB c VERIFIED
groff - Remote Code Execution via Format String in pic Utility
Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command.
by zen-parse
CVE-2001-0906 EXPLOITDB c VERIFIED
teTeX filter <1.0.7 - Privilege Escalation
teTeX filter before 1.0.7 allows local users to gain privileges via a symlink attack on temporary files that are produced when printing .dvi files using lpr.
by zen-parse
CVE-2001-0341 EXPLOITDB c VERIFIED
Microsoft FrontPage Server Extensions - Remote Code Execution via Long Registration Request to fp30reg.dll
Buffer overflow in Microsoft Visual Studio RAD Support sub-component of FrontPage Server Extensions allows remote attackers to execute arbitrary commands via a long registration request (URL) to fp30reg.dll.
by NSFOCUS Security Team
CVE-2001-0500 EXPLOITDB c VERIFIED
Index Server and Indexing Service - Remote Code Execution via Long Argument to ISAPI Extension
Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and earlier allows remote attackers to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) files such as default.ida, as commonly exploited by Code Red.
by hsj
CVE-2001-0703 EXPLOITDB c VERIFIED
Arcadia Internet Store 1.0 - Denial of Service via Template Parameter
tradecli.dll in Arcadia Internet Store 1.0 allows a remote attacker to cause a denial of service via a URL request with an MS-DOS device name in the template parameter.
by NERF Security
CVE-2001-1078 EXPLOITDB c VERIFIED
eXtremail <= 1.1.9 - Format String Vulnerability via SMTP and POP3 Commands
Format string vulnerability in flog function of eXtremail 1.1.9 and earlier allows remote attackers to gain root privileges via format specifiers in the SMTP commands (1) HELO, (2) EHLO, (3) MAIL FROM, or (4) RCPT TO, and the POP3 commands (5) USER and (6) other commands that can be executed after POP3 authentication.
by mu-b
CVE-2001-1078 EXPLOITDB c VERIFIED
eXtremail <= 1.1.9 - Format String Vulnerability via SMTP and POP3 Commands
Format string vulnerability in flog function of eXtremail 1.1.9 and earlier allows remote attackers to gain root privileges via format specifiers in the SMTP commands (1) HELO, (2) EHLO, (3) MAIL FROM, or (4) RCPT TO, and the POP3 commands (5) USER and (6) other commands that can be executed after POP3 authentication.
by Luca Ercoli
CVE-2001-0500 EXPLOITDB c VERIFIED
Index Server and Indexing Service - Remote Code Execution via Long Argument to ISAPI Extension
Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and earlier allows remote attackers to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) files such as default.ida, as commonly exploited by Code Red.
by Ps0
CVE-2001-0823 EXPLOITDB c VERIFIED
PCP <2.2.1-3 - Privilege Escalation
The pmpost program in Performance Co-Pilot (PCP) before 2.2.1-3 allows a local user to gain privileges via a symlink attack on the NOTICES file in the PCP log directory (PCP_LOG_DIR).
by IhaQueR
CVE-2002-1904 EXPLOITDB c VERIFIED
GazTek ghttpd 1.4-1.4.3 - Remote Code Execution via Long HTTP GET Request
Buffer overflow in the Log function in util.c in GazTek ghttpd 1.4 through 1.4.3 allows remote attackers to execute arbitrary code via a long HTTP GET request.
by qitest1
CVE-2001-1163 EXPLOITDB c VERIFIED
Munica Corporation NetSQL 1.0 - RCE
Buffer overflow in Munica Corporation NetSQL 1.0 allows remote attackers to execute arbitrary code via a long CONNECT argument to port 6500.
by Sergio Monteiro
CVE-2001-0759 EXPLOITDB c VERIFIED
Jetico BestCrypt <= 0.8.1 - Local Buffer Overflow via Long Pathname
Buffer overflow in bctool in Jetico BestCrypt 0.8.1 and earlier allows local users to execute arbitrary code via a file or directory with a long pathname, which is processed during an unmount.
by Carl Livitt
CVE-2001-0764 EXPLOITDB c VERIFIED
scotty 2.1.0 - Local Buffer Overflow via Long Hostname Command Line Argument
Buffer overflow in ntping in scotty 2.1.0 allows local users to execute arbitrary code via a long hostname as a command line argument.
by Larry W. Cashdollar
CVE-2001-0093 EXPLOITDB c VERIFIED
FreeBSD 1.5 - Privilege Escalation via telnetd Environmental Variable Manipulation
Vulnerability in telnetd in FreeBSD 1.5 allows local users to gain root privileges by modifying critical environmental variables that affect the behavior of telnetd.
by Teso
CVE-2001-0787 EXPLOITDB c VERIFIED
Red Hat Linux 7.0 and 7.1 - Local Privilege Escalation via LPRng Supplemental Group Handling
LPRng in Red Hat Linux 7.0 and 7.1 does not properly drop memberships in supplemental groups when lowering privileges, which could allow a local user to elevate privileges.
by zen-parse
CVE-2001-0762 EXPLOITDB c VERIFIED
su-wrapper 1.1.1 - Buffer Overflow via Long First Argument
Buffer overflow in su-wrapper 1.1.1 allows local users to execute arbitrary code via a long first argument.
by dex
EIP-2026-103195 EXPLOITDB c VERIFIED
PKCrew TIAtunnel 0.9 alpha2 - Authentication Mechanism Buffer Overflow
by qitest1
CVE-2001-0526 EXPLOITDB c VERIFIED
Solaris 8 and earlier - Buffer Overflow via OPENWINHOME Environment Variable
Buffer overflow in the Xview library as used by mailtool in Solaris 8 and earlier allows a local attacker to gain privileges via the OPENWINHOME environment variable.
by 51
CVE-2001-1076 EXPLOITDB c VERIFIED
Solaris SunOS 5.5.1-5.8 - Buffer Overflow via SOR or CFIME Environment Variable
Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable.
by Pablo Sor
By Source
All 3,632 Writeup 62,508 Exploitdb 50,076 Nomisec 22,472 Github 3,695 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,606 ruby 6,006 c 3,632 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 135 go 73 postscript 25 typescript 25