Exploitdb Exploits
3,149 exploits tracked across all sources.
SW-HTTPD Server 0.x - Remote Denial of Service
by Jonathan Salwan
Rosoft Media Player 4.2.1 (Windows XP SP2/3 French) - Local Buffer Overflow
by SimO-s0fT
Zipgenius - Memory Corruption
Stack-based buffer overflow in ZipGenius might allow remote attackers to execute arbitrary code via a crafted .zip file that triggers an SEH overwrite. NOTE: it is possible that this overlaps CVE-2005-3317. NOTE: CVE has not investigated whether the specified file.zip file can be used for exploitation of this product.
by fl0 fl0w
Microsmarts Zipitfast! - Memory Corruption
MicroSmarts Enterprise ZipItFast! 3.0 allows remote attackers to execute arbitrary code via a crafted .zip file that triggers memory corruption, related to a "format string buffer overflow." NOTE: CVE has not investigated whether the specified file.zip file can be used for exploitation of this product.
by fl0 fl0w
Edisys Ezip Wizard - Memory Corruption
Stack-based buffer overflow in ediSys eZip Wizard 3.0 allows remote attackers to execute arbitrary code via a crafted .zip file.
by fl0 fl0w
Powerzip - Memory Corruption
Stack-based buffer overflow in Trident PowerZip 7.2 might allow remote attackers to execute arbitrary code via a crafted .zip file. NOTE: CVE has not investigated whether the specified file.zip file can be used for exploitation of this product.
by fl0 fl0w
PHP Director 0.21 - SQL Into Outfile 'eval()' Injection
by StAkeR
Linux kernel <2.6.28.7 - Privilege Escalation
The __secure_computing function in kernel/seccomp.c in the seccomp subsystem in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform, when CONFIG_SECCOMP is enabled, does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass intended access restrictions via crafted syscalls that are misinterpreted as (a) stat or (b) chmod, a related issue to CVE-2009-0342 and CVE-2009-0343.
by Chris Evans
Apple Mac OSX xnu 1228.x - Local Kernel Memory Disclosure
by mu-b
Linux kernel <2.6.28 - Privilege Escalation
The clone system call in the Linux kernel 2.6.28 and earlier allows local users to send arbitrary signals to a parent process from an unprivileged child process by launching an additional child process with the CLONE_PARENT flag, and then letting this new process exit.
by Chris Evans
Linux <2.6.28.6 - Info Disclosure
The sock_getsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SO_BSDCOMPAT getsockopt request.
by Clément Lecigne
dBpowerAMP Audio Player 2 - '.pls' Local Buffer Overflow
by SimO-s0fT
MultiMedia Soft AdjMmsEng.dll <7.11.2.7 - Buffer Overflow
Stack-based buffer overflow in MultiMedia Soft AdjMmsEng.dll 7.11.1.0 and 7.11.2.7, as distributed in multiple MultiMedia Soft audio components for .NET, allows remote attackers to execute arbitrary code via a long string in a playlist (.pls) file, as originally reported for Euphonics Audio Player 1.0. NOTE: some of these details are obtained from third party information.
by Single Eye
Microsoft Windows XP - Denial of Service
Microsoft Windows XP SP3 allows local users to cause a denial of service (system crash) by making an SPI_SETDESKWALLPAPER SystemParametersInfo call with an improperly terminated pvParam argument, followed by an SPI_GETDESKWALLPAPER SystemParametersInfo call.
by Arkon
Total Video Player 1.3.7 - '.m3u' Local Buffer Overflow
by SimO-s0fT
WFTPD Pro 3.30 - Multiple Command Remote Denial of Service Vulnerabilities
by LiquidWorm
Sun Solaris 10-11 & OpenSolaris - DoS
The kernel in Sun Solaris 10 and 11 snv_101b, and OpenSolaris before snv_108, allows remote attackers to cause a denial of service (system crash) via a crafted IPv6 packet, related to an "insufficient validation security vulnerability," as demonstrated by SunOSipv6.c.
by kingcope
Niels Provos Systrace <1.6f - Privilege Escalation
Niels Provos Systrace 1.6f and earlier on the x86_64 Linux platform allows local users to bypass intended access restrictions by making a 32-bit syscall with a syscall number that corresponds to a policy-compliant 64-bit syscall, related to race conditions that occur in monitoring 64-bit processes.
by Chris Evans
D-bus <1.2.4 - DoS
The dbus_signature_validate function in the D-bus library (libdbus) before 1.2.4 allows remote attackers to cause a denial of service (application abort) via a message containing a malformed signature, which triggers a failed assertion error.
by Jon Oberheide
Freebsd - Improper Input Validation
The db interface in libc in FreeBSD 6.3, 6.4, 7.0, 7.1, and 7.2-PRERELEASE does not properly initialize memory for Berkeley DB 1.85 database structures, which allows local users to obtain sensitive information by reading a database file.
by Jaakko Heinonen
GOM Player 2.0.12.3375 - '.asx' Local Stack Overflow
by DATA_SNIPER
By Source