C Exploits

3,632 exploits tracked across all sources.

Sort: Activity Stars
CVE-2000-0573 EXPLOITDB c VERIFIED
HP-UX - Remote Code Execution via wu-ftpd SITE EXEC Format String
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
by kalou
CVE-2001-0136 EXPLOITDB c VERIFIED
ProFTPd 1.2.0rc2 - Denial of Service via USER Command Memory Leak
Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed.
by Piotr Zurawski
EIP-2026-102682 EXPLOITDB c VERIFIED
ml2 - Local users can Crash processes
by Stealth
CVE-2000-1026 EXPLOITDB c VERIFIED
LBNL tcpdump - Remote Code Execution via Buffer Overflow
Multiple buffer overflows in LBNL tcpdump allow remote attackers to execute arbitrary commands.
by Zhodiac
CVE-2001-0084 EXPLOITDB c VERIFIED
GTK+ - Privilege Escalation via GTK_MODULES Environment Variable
GTK+ library allows local users to specify arbitrary modules via the GTK_MODULES environmental variable, which could allow local users to gain privileges if GTK+ is used by a setuid/setgid program.
by V9
EIP-2026-103157 EXPLOITDB c VERIFIED
Linux Kernel 2.2 - TCP/IP Spoof IP
by Stealth
CVE-2002-1337 EXPLOITDB c VERIFIED
Sendmail 5.79-8.12.7 - Remote Code Execution via Formatted Address Fields in Header Comments
Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c.
by sd
CVE-2001-0440 EXPLOITDB c VERIFIED
licq < 1.0.3 - Buffer Overflow in Logging Functions
Buffer overflow in logging functions of licq before 1.0.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands.
by Stan Bubrouski
CVE-2001-0311 EXPLOITDB c VERIFIED
HP OmniBackII <A.03.50 - Privilege Escalation
Vulnerability in OmniBackII A.03.50 in HP 11.x and earlier allows attackers to gain unauthorized access to an OmniBack client.
by DiGiT
CVE-2001-0053 EXPLOITDB c VERIFIED
BSD-based ftpd - Remote Code Execution via replydirname Buffer Overflow
One-byte buffer overflow in replydirname function in BSD-based ftpd allows remote attackers to gain root privileges.
by Scrippie
EIP-2026-118355 EXPLOITDB c VERIFIED
Check Point VPN-1/FireWall-1 4.1 SP2 - Blocked Port Bypass
by anonymous
CVE-2001-0087 EXPLOITDB c VERIFIED
itetris/xitetris <1.6.2 - Privilege Escalation
itetris/xitetris 1.6.2 and earlier trusts the PATH environmental variable to find and execute the gunzip program, which allows local users to gain root privileges by changing their PATH so that it points to a malicious gunzip program.
by V9
CVE-2000-0917 EXPLOITDB c VERIFIED
LPRng 3.6.24 - Remote Code Execution
Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands.
by VeNoMouS
CVE-1999-1008 EXPLOITDB c VERIFIED
xsoldier - Privilege Escalation via Long Argument
xsoldier program allows local users to gain root access via a long argument.
by zorgon
CVE-2001-0029 EXPLOITDB c VERIFIED
oops_proxy_server 1.4.6 - Remote Code Execution via Long Hostname Buffer Overflow
Buffer overflow in oops WWW proxy server 1.4.6 (and possibly other versions) allows remote attackers to execute arbitrary commands via a long host or domain name that is obtained from a reverse DNS lookup.
by diman
CVE-2001-0082 EXPLOITDB c VERIFIED
Check Point VPN-1/FireWall-1 <4.1 SP2 - Auth Bypass
Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets.
by Thomas Lopatic
CVE-2001-0028 EXPLOITDB c VERIFIED
oops_proxy_server 1.5.2 - Remote Code Execution via HTML Parser Quotation Character Overflow
Buffer overflow in the HTML parsing code in oops WWW proxy server 1.5.2 and earlier allows remote attackers to execute arbitrary commands via a large number of " (quotation) characters.
by CyRaX
CVE-2000-0917 EXPLOITDB c VERIFIED
LPRng 3.6.24 - Remote Code Execution
Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands.
by sk8
CVE-2000-0917 EXPLOITDB c VERIFIED
LPRng 3.6.24 - Remote Code Execution
Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands.
by DiGiT
EIP-2026-103081 EXPLOITDB c VERIFIED
BFTPd 1.0.12 - Remote Overflow
by korty
CVE-2001-0028 EXPLOITDB c VERIFIED
oops_proxy_server 1.5.2 - Remote Code Execution via HTML Parser Quotation Character Overflow
Buffer overflow in the HTML parsing code in oops WWW proxy server 1.5.2 and earlier allows remote attackers to execute arbitrary commands via a large number of " (quotation) characters.
by diman
CVE-2000-0967 EXPLOITDB c VERIFIED
PHP 3 and 4 - Remote Code Execution via Format String Injection
PHP 3 and 4 do not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands by triggering error messages that are improperly written to the error logs.
by Gneisenau
EIP-2026-102887 EXPLOITDB c VERIFIED
Kwintv - Local Buffer Overflow
by Cody Tubbs
EIP-2026-102852 EXPLOITDB c VERIFIED
gnome_segv - Local Buffer Overflow
by Cody Tubbs
CVE-2001-0050 EXPLOITDB c VERIFIED
BitchX - Remote Code Execution via Long DNS Hostname
Buffer overflow in BitchX IRC client allows remote attackers to cause a denial of service and possibly execute arbitrary commands via an IP address that resolves to a long DNS hostname or domain name.
by nimrood
By Source
All 3,632 Writeup 62,509 Exploitdb 50,076 Nomisec 22,473 Github 3,698 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 480 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,607 ruby 6,006 c 3,632 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 135 go 73 postscript 25 typescript 25