C Exploits

3,632 exploits tracked across all sources.

Sort: Activity Stars
CVE-2001-1347 EXPLOITDB c VERIFIED
Windows 2000 - Denial of Service and Privilege Escalation via Hardware Breakpoint Handling
Windows 2000 allows local users to cause a denial of service and possibly gain privileges by setting a hardware breakpoint that is handled using global debug registers, which could cause other processes to terminate due to an exception, and allow hijacking of resources such as named pipes.
by Georgi Guninski
CVE-2001-0333 EXPLOITDB c VERIFIED
Internet Information Server < 5.0 - Directory Traversal via Double-Encoded Dot-Dot Sequences
Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "\" characters twice.
by HuXfLuX
CVE-2001-0333 EXPLOITDB c VERIFIED
Internet Information Server < 5.0 - Directory Traversal via Double-Encoded Dot-Dot Sequences
Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "\" characters twice.
by MovAX
CVE-2001-0333 EXPLOITDB c VERIFIED
Internet Information Server < 5.0 - Directory Traversal via Double-Encoded Dot-Dot Sequences
Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "\" characters twice.
by Filip Maertens
CVE-2001-0241 EXPLOITDB c VERIFIED
Windows 2000 - Buffer Overflow in Internet Printing ISAPI Extension
Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote attackers to gain root privileges via a long print request that is passed to the extension through IIS 5.0.
by dark spyrit
CVE-2000-0573 EXPLOITDB c VERIFIED
HP-UX - Remote Code Execution via wu-ftpd SITE EXEC Format String
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
by qitest1
CVE-2001-0241 EXPLOITDB c VERIFIED
Windows 2000 - Buffer Overflow in Internet Printing ISAPI Extension
Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote attackers to gain root privileges via a long print request that is passed to the extension through IIS 5.0.
by Ryan Permeh
CVE-2001-0486 EXPLOITDB c VERIFIED
Novell BorderManager < 3.6 - Denial of Service via TCP SYN Flood
Remote attackers can cause a denial of service in Novell BorderManager 3.6 and earlier by sending TCP SYN flood to port 353.
by honoriak
CVE-2001-0241 EXPLOITDB c VERIFIED
Windows 2000 - Buffer Overflow in Internet Printing ISAPI Extension
Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote attackers to gain root privileges via a long print request that is passed to the extension through IIS 5.0.
by dark spyrit
CVE-2001-0490 EXPLOITDB c VERIFIED
Nullsoft Winamp 2.6x-2.7x - Buffer Overflow via AIP File
Buffer overflow in WINAMP 2.6x and 2.7x allows attackers to execute arbitrary code via a long string in an AIP file.
by byterage
CVE-2001-0485 EXPLOITDB c VERIFIED
IRIX 6.2 - Authenticated Remote Code Execution via netprint -n Option
Unknown vulnerability in netprint in IRIX 6.2, and possibly other versions, allows local users with lp privileges attacker to execute arbitrary commands via the -n option.
by V9
CVE-2001-0296 EXPLOITDB c VERIFIED
WFTPD Pro 3.00 - Remote Code Execution via Long CWD Command
Buffer overflow in WFTPD Pro 3.00 allows remote attackers to execute arbitrary commands via a long CWD command.
by Len Budney
CVE-2001-1442 EXPLOITDB c VERIFIED
ISC InterNetNews <2.3.0 - Privilege Escalation
Buffer overflow in innfeed for ISC InterNetNews (INN) before 2.3.0 allows local users in the "news" group to gain privileges via a long -c command line argument.
by Enrique A.
CVE-2001-0838 EXPLOITDB c VERIFIED
Network Solutions Rwhoisd <1.5.x - RCE
Format string vulnerability in Network Solutions Rwhoisd 1.5.x allows remote attackers to execute arbitrary code via format string specifiers in the -soa command.
by CowPower
CVE-2001-0406 EXPLOITDB c VERIFIED
Samba < 2.0.7 - Arbitrary File Write via Symlink Attack
Samba before 2.2.0 allows local attackers to overwrite arbitrary files via a symlink attack using (1) a printer queue query, (2) the more command in smbclient, or (3) the mput command in smbclient.
by Gabriel Maggiotti
CVE-2001-0464 EXPLOITDB c VERIFIED
Cyberscheduler - Buffer Overflow via Long Timezone Parameter
Buffer overflow in websync.exe in Cyberscheduler allows remote attackers to execute arbitrary commands via a long tzs (timezone) parameter.
by Enrique A.
CVE-2001-0239 EXPLOITDB c VERIFIED
Microsoft ISA Server 2000 - Denial of Service via Long Web Request
Microsoft Internet Security and Acceleration (ISA) Server 2000 Web Proxy allows remote attackers to cause a denial of service via a long web request with a specific type.
by SecureXpert Labs
CVE-2001-0247 EXPLOITDB c VERIFIED
NetBSD - Remote Code Execution via Long Pattern String with {} Sequence
Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3.
by Elias Levy
CVE-2001-0609 EXPLOITDB CRITICAL c VERIFIED
Infodrom cfingerd <1.4.3 - Privilege Escalation
Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.
by VeNoMouS
CVSS 9.8
CVE-2001-0565 EXPLOITDB c VERIFIED
Solaris <= 8 - Buffer Overflow via mailx -F Option
Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option.
by Pablo Sor
CVE-2001-0247 EXPLOITDB c VERIFIED
NetBSD - Remote Code Execution via Long Pattern String with {} Sequence
Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3.
by fish stiqz
CVE-2002-1712 EXPLOITDB c VERIFIED
Microsoft Windows 2000 - Denial of Service via Empty TCP/IP Packets with ACK and FIN Bits
Microsoft Windows 2000 allows remote attackers to cause a denial of service (memory consumption) by sending a flood of empty TCP/IP packets with the ACK and FIN bits set to the NetBIOS port (TCP/139), as demonstrated by stream3.
by 3APA3A
CVE-2002-1712 EXPLOITDB c VERIFIED
Microsoft Windows 2000 - Denial of Service via Empty TCP/IP Packets with ACK and FIN Bits
Microsoft Windows 2000 allows remote attackers to cause a denial of service (memory consumption) by sending a flood of empty TCP/IP packets with the ACK and FIN bits set to the NetBIOS port (TCP/139), as demonstrated by stream3.
by 3APA3A
CVE-2001-0426 EXPLOITDB c VERIFIED
Solaris - Local Privilege Escalation via LANG Environment Variable
Buffer overflow in dtsession on Solaris, and possibly other operating systems, allows local users to gain privileges via a long LANG environmental variable.
by Last Stage of Delirium
CVE-2001-0422 EXPLOITDB c VERIFIED
Solaris 8 and earlier - Buffer Overflow via HOME Environment Variable
Buffer overflow in Xsun in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable.
by Riley Hassell
By Source
All 3,632 Writeup 62,508 Exploitdb 50,076 Nomisec 22,472 Github 3,695 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,606 ruby 6,006 c 3,632 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 135 go 73 postscript 25 typescript 25