Exploitdb Exploits
3,138 exploits tracked across all sources.
Adobe Shockwave Player <11.5.7.609 - RCE/DoS
Adobe Shockwave Player before 11.5.7.609 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .dir (aka Director) file, related to (1) an erroneous dereference and (2) a certain Shock.dir file.
by LiquidWorm
CVSS 8.8
Rebellion Aliens vs Predator 2.22 - Multiple Memory Corruption Vulnerabilities
by Luigi Auriemma
Photofiltre Studio 8.1.1 - Buffer Overflow via Crafted TIFF File
Buffer overflow in Photofiltre Studio 8.1.1 allows user-assisted remote attackers to execute arbitrary code via a crafted .tif file.
by fl0 fl0w
Apple Mac OS X 10.5.8 and 10.6.x < 10.6.5 - Denial of Service via Directory Hard Link Manipulation
The hfs implementation in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 supports hard links to directories and does not prevent certain deeply nested directory structures, which allows local users to cause a denial of service (filesystem corruption) via a crafted application that calls the mkdir and link functions, related to the fsck_hfs program in the diskdev_cmds component.
by Maksymilian Arciemowicz
CommView 6.1 (Build 636) - Local Blue Screen of Death (Denial of Service)
by p4r4N0ID
Windows XP SP2-SP3 and Windows Server 2003 SP2 - Privilege Escalation via Win32k Exception Handling
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows XP SP2 and SP3, and Windows Server 2003 SP2, do not properly handle unspecified exceptions, which allows local users to gain privileges via a crafted application, aka "Win32k Exception Handling Vulnerability."
by MJ0011
Windows 2000, XP, and Server 2003 - Denial of Service via SfnINSTRING Function
The SfnINSTRING function in win32k.sys in the kernel in Microsoft Windows 2000, XP, and Server 2003 allows local users to cause a denial of service (system crash) via a 0x18d value in the second argument (aka the Msg argument) of a PostMessage function call for the DDEMLEvent window.
by MJ0011
OpenSSL 0.9.8f-0.9.8m - Denial of Service via Malformed TLS Record
The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL 0.9.8f through 0.9.8m allows remote attackers to cause a denial of service (crash) via a malformed record in a TLS connection that triggers a NULL pointer dereference, related to the minor version number. NOTE: some of these details are obtained from third party information.
by Andi
Micropoint ProActive Denfense 'Mp110013.sys' 1.3.10123.0 - Local Privilege Escalation
by MJ0011
WinSoftMagic Photo Editor - '.png' Remote Buffer Overflow
by eidelweiss
EasyFTP Server 1.7.0.2 - 'MKD' (Authenticated) Remote Buffer Overflow
by x90c
MX Simulator Server - Remote Buffer Overflow
by Salvatore Fresta
Jinais IRC Server 0.1.8 - Null Pointer (PoC)
by Salvatore Fresta
VariCAD EN <2010-2.05 - Buffer Overflow
VariCAD EN up to and including version 2010-2.05 is vulnerable to a stack-based buffer overflow when parsing .dwb drawing files. The application fails to properly validate the length of input data embedded in the file, allowing a crafted .dwb file to overwrite critical memory structures. This flaw can be exploited locally by convincing a user to open a malicious file, resulting in arbitrary code execution.
by n00b
FreeBSD / OpenBSD - 'ftpd' Null Pointer Dereference Denial of Service
by kingcope
IBM WebSphere Application Server 6.1-6.1.0.30 - Remote Code Execution via ISAPI Module Orphaned Callback Pointers
modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 through 2.0.63, 2.2.0 through 2.2.14, and 2.3.x before 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISAPI .dll module, which allows remote attackers to execute arbitrary code via unspecified vectors related to a crafted request, a reset packet, and "orphaned callback pointers."
by Brett Gervasoni
FreeBSD 8.0 / OpenBSD 4.x - 'ftpd' Null Pointer Dereference Denial of Service
by kingcope
RadASM 2.2.1.6 - '.rap' Local Buffer Overflow (PoC)
by fl0 fl0w
Microsoft Windows - Memory Corruption
Double free vulnerability in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows local users to gain privileges via a crafted application, aka "Windows Kernel Double Free Vulnerability."
by Tavis Ormandy
NewsGator FeedDemon <2.7 - Buffer Overflow
Stack-based buffer overflow in NewsGator FeedDemon 2.7 and earlier allows user-assisted remote attackers to execute arbitrary code via a long text attribute in an outline element in a .opml file.
by fl0 fl0w
By Source