Exploitdb Exploits

3,138 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-4249 EXPLOITDB c VERIFIED
Linux Kernel < 2.6.37 - Denial of Service via SOCK_SEQPACKET Garbage Collection
The wait_for_unix_gc function in net/unix/garbage.c in the Linux kernel before 2.6.37-rc3-next-20101125 does not properly select times for garbage collection of inflight sockets, which allows local users to cause a denial of service (system hang) via crafted use of the socketpair and sendmsg system calls for SOCK_SEQPACKET sockets.
by Key Night
CVE-2010-3858 EXPLOITDB c
Linux Kernel < 2.6.36 - Denial of Service via Stack Memory Consumption
The setup_arg_pages function in fs/exec.c in the Linux kernel before 2.6.36, when CONFIG_STACK_GROWSDOWN is used, does not properly restrict the stack memory consumption of the (1) arguments and (2) environment for a 32-bit application on a 64-bit platform, which allows local users to cause a denial of service (system crash) via a crafted exec system call, a related issue to CVE-2010-2240.
by Roland McGrath
CVE-2010-4243 EXPLOITDB c
Linux Kernel < 2.6.37 - Denial of Service via Stack Memory OOM Bypass
fs/exec.c in the Linux kernel before 2.6.37 does not enable the OOM Killer to assess use of stack memory by arrays representing the (1) arguments and (2) environment, which allows local users to cause a denial of service (memory consumption) via a crafted exec system call, aka an "OOM dodging issue," a related issue to CVE-2010-3858.
by Roland McGrath
CVE-2010-4250 EXPLOITDB c VERIFIED
Linux Kernel < 2.6.37 - Denial of Service via inotify_init1 Memory Leak
Memory leak in the inotify_init1 function in fs/notify/inotify/inotify_user.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory consumption) via vectors involving failed attempts to create files.
by Vegard Nossum
EIP-2026-118943 EXPLOITDB c VERIFIED
Native Instruments (Multiple Products) - DLL Loading Arbitrary Code Execution
by Gjoko Krstic
EIP-2026-102900 EXPLOITDB c
Linux Kernel 2.4.0 - Stack Infoleaks
by Dan Rosenberg
CVE-2010-4158 EXPLOITDB c VERIFIED
Linux Kernel < 2.6.36.2 - Information Disclosure via Uninitialized Stack Memory in Socket Filter
The sk_run_filter function in net/core/filter.c in the Linux kernel before 2.6.36.2 does not check whether a certain memory location has been initialized before executing a (1) BPF_S_LD_MEM or (2) BPF_S_LDX_MEM instruction, which allows local users to obtain potentially sensitive information from kernel stack memory via a crafted socket filter.
by Dan Rosenberg
EIP-2026-119140 EXPLOITDB c VERIFIED
Silo 2.1.1 - 'wintab32.dll' DLL Loading Arbitrary Code Execution
by Gjoko Krstic
EIP-2026-117224 EXPLOITDB c
G Data TotalCare 2011 - Local Kernel
by Nikita Tarakanov
EIP-2026-114957 EXPLOITDB c
Avast! Internet Security - aswtdi.sys Local Denial of Service (PoC)
by Nikita Tarakanov
EIP-2026-116186 EXPLOITDB c
Rising - 'RSNTGDI.sys' Local Denial of Service
by ze0r
EIP-2026-114960 EXPLOITDB c VERIFIED
AVG Internet Security 9.0.851 - Local Denial of Service
by Nikita Tarakanov
EIP-2026-118029 EXPLOITDB c VERIFIED
Trend Micro Titanium Maximum Security 2011 - Local Kernel
by Nikita Tarakanov
EIP-2026-103634 EXPLOITDB c VERIFIED
Platinum SDK Library - POST UPnP 'sscanf' Buffer Overflow (PoC)
by n00b
CVE-2010-2963 EXPLOITDB c VERIFIED
Linux Kernel <2.6.36 - Privilege Escalation
drivers/media/video/v4l2-compat-ioctl32.c in the Video4Linux (V4L) implementation in the Linux kernel before 2.6.36 on 64-bit platforms does not validate the destination of a memory copy operation, which allows local users to write to arbitrary kernel memory locations, and consequently gain privileges, via a VIDIOCSTUNER ioctl call on a /dev/video device, followed by a VIDIOCSMICROCODE ioctl call on this device.
by Kees Cook
EIP-2026-118891 EXPLOITDB c VERIFIED
Microsoft Windows Vista - 'lpksetup.exe oci.dll' DLL Loading Arbitrary Code Execution
by Tyler Borland
EIP-2026-119048 EXPLOITDB c VERIFIED
PowerDVD 5.0.1107 - 'trigger.dll' DLL Loading Arbitrary Code Execution
by Inj3cti0n P4ck3t
EIP-2026-119034 EXPLOITDB c VERIFIED
Phoenix Project Manager 2.1.0.8 - DLL Loading Arbitrary Code Execution
by anT!-Tr0J4n
EIP-2026-118389 EXPLOITDB c VERIFIED
Cool iPhone Ringtone Maker 2.2.3 - 'dwmapi.dll' DLL Loading Arbitrary Code Execution
by anT!-Tr0J4n
CVE-2010-3904 EXPLOITDB HIGH c VERIFIED
Reliable Datagram Sockets (RDS) rds_page_copy_user Privilege Escalation
The rds_page_copy_user function in net/rds/page.c in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux kernel before 2.6.36 does not properly validate addresses obtained from user space, which allows local users to gain privileges via crafted use of the sendmsg and recvmsg system calls.
by Dan Rosenberg
CVSS 7.8
EIP-2026-119168 EXPLOITDB c VERIFIED
STDU Explorer 1.0.201 - 'dwmapi.dll' DLL Loading Arbitrary Code Execution
by anT!-Tr0J4n
EIP-2026-118218 EXPLOITDB c VERIFIED
1CLICK DVD Converter 2.1.7.1 - Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
by anT!-Tr0J4n
EIP-2026-119218 EXPLOITDB c VERIFIED
Torrent DVD Creator - 'quserex.dll' DLL Loading Arbitrary Code Execution
by anT!-Tr0J4n
EIP-2026-118957 EXPLOITDB c VERIFIED
NetStumbler 0.4 - 'mfc71esn.dll' DLL Loading Arbitrary Code Execution
by Pepelux
EIP-2026-118870 EXPLOITDB c VERIFIED
Microsoft Visio 2007 - 'mfc80esn.dll' DLL Loading Arbitrary Code Execution
by Pepelux
By Source
All 3,138 Writeup 62,021 Exploitdb 50,076 Nomisec 22,329 Github 3,511 Metasploit 3,295 Vulncheck_xdb 926 Inthewild 514 Gitlab 470 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,510 ruby 5,985 c 3,622 perl 2,849 html 2,072 php 1,332 bash 462 java 370 c++ 257 javascript 228 shell 130 go 72 postscript 25 typescript 25