Exploitdb Exploits

3,138 exploits tracked across all sources.

Sort: Activity Stars
CVE-2009-1627 EXPLOITDB c VERIFIED
Streaming Download Project Downloader 2.3.0 - Remote Code Execution via Long ASF URL in ASX File
Stack-based buffer overflow in Streaming Download Project (SDP) Downloader 2.3.0 allows remote attackers to execute arbitrary code via a long .asf URL in the HREF attribute of a REF element in a .asx file.
by SimO-s0fT
CVE-2009-0036 EXPLOITDB c VERIFIED
libvirt_proxy 0.5.1 - Buffer Overflow
Buffer overflow in the proxyReadClientSocket function in proxy/libvirt_proxy.c in libvirt_proxy 0.5.1 might allow local users to gain privileges by sending a portion of the header of a virProxyPacket packet, and then sending the remainder of the packet with crafted values in the header, related to use of uninitialized memory in a validation check.
by Jon Oberheide
CVE-2008-5904 EXPLOITDB c VERIFIED
xrdp < 0.4.1 - Buffer Overflow via Crafted RDP Color Pointer PDU
The rdp_rdp_process_color_pointer_pdu function in rdp/rdp_rdp.c in xrdp 0.4.1 and earlier allows remote RDP servers to have an unknown impact via input data that sets crafted values for certain length variables, leading to a buffer overflow.
by joe walko
CVE-2009-1356 EXPLOITDB c VERIFIED
Elecard AVC HD Player - Stack-Based Buffer Overflow via Long MP3 Filename in Playlist
Stack-based buffer overflow in Elecard AVC HD Player allows remote attackers to execute arbitrary code via a long MP3 filename in a playlist (.xpl) file.
by fl0 fl0w
CVE-2009-1327 EXPLOITDB c VERIFIED
Mini-stream WM Downloader 3.0.0.9 - Stack-based Buffer Overflow via Long URI in Playlist File
Stack-based buffer overflow in Mini-stream WM Downloader 3.0.0.9 allows remote attackers to execute arbitrary code via a long URI in a playlist (.m3u) file.
by Stack
EIP-2026-107038 EXPLOITDB c VERIFIED
Family Connections 1.8.2 - Arbitrary File Upload
by Salvatore Fresta
EIP-2026-115133 EXPLOITDB c VERIFIED
DeepBurner 1.9.0.228 - Stack Buffer Overflow (SEH) (PoC)
by fl0 fl0w
EIP-2026-103753 EXPLOITDB c VERIFIED
XBMC 8.10 - GET Multiple Remote Buffer Overflows (PoC)
by n00b
CVE-2009-1210 EXPLOITDB c VERIFIED
Wireshark < 1.0.6 - Remote Code Execution via PN-DCP Station Name Format String
Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers in the station name. NOTE: some of these details are obtained from third party information.
by THCX Labs
CVE-2009-0360 EXPLOITDB c VERIFIED
pam-krb5 <3.13 - Privilege Escalation
Russ Allbery pam-krb5 before 3.13, when linked against MIT Kerberos, does not properly initialize the Kerberos libraries for setuid use, which allows local users to gain privileges by pointing an environment variable to a modified Kerberos configuration file, and then launching a PAM-based setuid application.
by Jon Oberheide
CVE-2008-5626 EXPLOITDB c VERIFIED
XM Easy Personal FTP Server 5.6.0 - DoS
XM Easy Personal FTP Server 5.6.0 allows remote authenticated users to cause a denial of service via a crafted argument to the NLST command, as demonstrated by a -1 argument.
by Jonathan Salwan
CVE-2008-2032 EXPLOITDB c VERIFIED
Acritum Femitter Server 1.03 - Denial of Service via Crafted RETR Commands
The FTP service in Acritum Femitter Server 1.03 allows remote attackers to cause a denial of service (crash) by sending multiple crafted RETR commands. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Jonathan Salwan
EIP-2026-119211 EXPLOITDB c VERIFIED
Telnet-Ftp Service Server 1.x - (Authenticated) Multiple Vulnerabilities
by Jonathan Salwan
CVE-2009-4800 EXPLOITDB c VERIFIED
Sysax Multi Server 4.3 and 4.5 - Authenticated Path Traversal via DELE Command
Directory traversal vulnerability in Sysax Multi Server 4.3 and 4.5 allows remote authenticated users to delete arbitrary files via a ..// (dot dot slash slash) in a DELE command.
by Jonathan Salwan
CVE-2009-1238 EXPLOITDB c VERIFIED
macOS X < 10.5.6 - Denial of Service via HFS vfs sysctl Race Condition
Race condition in the HFS vfs sysctl interface in XNU 1228.8.20 and earlier on Apple Mac OS X 10.5.6 and earlier allows local users to cause a denial of service (kernel memory corruption) by simultaneously executing the same HFS_SET_PKG_EXTENSIONS code path in multiple threads, which is problematic because of lack of mutex locking for an unspecified global variable.
by mu-b
CVE-2009-1236 EXPLOITDB c VERIFIED
macOS X < 10.5.6 - Heap-Based Buffer Overflow via AppleTalk ZIP NOTIFY Packet
Heap-based buffer overflow in the AppleTalk networking stack in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allows remote attackers to cause a denial of service (system crash) via a ZIP NOTIFY (aka ZIPOP_NOTIFY) packet that overwrites a certain ifPort structure member.
by mu-b
CVE-2009-1237 EXPLOITDB c VERIFIED
macOS < 10.5.6 - Denial of Service via SYS_add_profil or SYS___mac_getfsstat System Calls
Multiple memory leaks in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allow local users to cause a denial of service (kernel memory consumption) via a crafted (1) SYS_add_profil or (2) SYS___mac_getfsstat system call.
by mu-b
CVE-2009-1237 EXPLOITDB c VERIFIED
macOS < 10.5.6 - Denial of Service via SYS_add_profil or SYS___mac_getfsstat System Calls
Multiple memory leaks in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allow local users to cause a denial of service (kernel memory consumption) via a crafted (1) SYS_add_profil or (2) SYS___mac_getfsstat system call.
by mu-b
CVE-2009-1041 EXPLOITDB c VERIFIED
FreeBSD 7.0-7.2 - Local Arbitrary Kernel Memory Overwrite via ktimer Out-of-Bounds Timer Value
The ktimer feature (sys/kern/kern_time.c) in FreeBSD 7.0, 7.1, and 7.2 allows local users to overwrite arbitrary kernel memory via an out-of-bounds timer value.
by mu-b
EIP-2026-100954 EXPLOITDB c VERIFIED
FreeBSD 7.x - Dumping Environment Local Kernel Panic (Denial of Service)
by kokanin
CVE-2007-4370 EXPLOITDB c VERIFIED
Racer 0.5.3 beta 5 - Buffer Overflow
Multiple buffer overflows in the (1) client and (2) server in Racer 0.5.3 beta 5 allow remote attackers to execute arbitrary code via a long string to UDP port 26000.
by fl0 fl0w
EIP-2026-103674 EXPLOITDB c VERIFIED
SW-HTTPD Server 0.x - Remote Denial of Service
by Jonathan Salwan
EIP-2026-117876 EXPLOITDB c VERIFIED
Rosoft Media Player 4.2.1 (Windows XP SP2/3 French) - Local Buffer Overflow
by SimO-s0fT
CVE-2009-1058 EXPLOITDB c VERIFIED
ZipGenius - Stack-Based Buffer Overflow via Crafted ZIP File
Stack-based buffer overflow in ZipGenius might allow remote attackers to execute arbitrary code via a crafted .zip file that triggers an SEH overwrite. NOTE: it is possible that this overlaps CVE-2005-3317. NOTE: CVE has not investigated whether the specified file.zip file can be used for exploitation of this product.
by fl0 fl0w
CVE-2009-1057 EXPLOITDB c VERIFIED
MicroSmarts ZipItFast! 3.0 - Remote Code Execution via Crafted ZIP File
MicroSmarts Enterprise ZipItFast! 3.0 allows remote attackers to execute arbitrary code via a crafted .zip file that triggers memory corruption, related to a "format string buffer overflow." NOTE: CVE has not investigated whether the specified file.zip file can be used for exploitation of this product.
by fl0 fl0w
By Source
All 3,138 Writeup 62,043 Exploitdb 50,076 Nomisec 22,336 Github 3,517 Metasploit 3,299 Vulncheck_xdb 927 Inthewild 514 Gitlab 470 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,515 ruby 5,989 c 3,622 perl 2,849 html 2,072 php 1,332 bash 462 java 370 c++ 257 javascript 228 shell 130 go 72 postscript 25 typescript 25