C Exploits

3,622 exploits tracked across all sources.

Sort: Activity Stars
CVE-2013-1763 EXPLOITDB c
Linux Kernel < 3.4.34 - Local Privilege Escalation via Netlink Message Family Value
Array index error in the __sock_diag_rcv_msg function in net/core/sock_diag.c in the Linux kernel before 3.7.10 allows local users to gain privileges via a large family value in a Netlink message.
by sd
CVE-2013-1763 EXPLOITDB c VERIFIED
Linux Kernel < 3.4.34 - Local Privilege Escalation via Netlink Message Family Value
Array index error in the __sock_diag_rcv_msg function in net/core/sock_diag.c in the Linux kernel before 3.7.10 allows local users to gain privileges via a large family value in a Netlink message.
by SynQ
EIP-2026-117712 EXPLOITDB c
Nvidia Display Driver Service (Nsvr) - Local Buffer Overflow
by Jon Bailey
EIP-2026-103517 EXPLOITDB c
IDA Pro 6.3 - Crash (PoC)
by nitr0us
EIP-2026-102604 EXPLOITDB c
gdb (GNU debugger) 7.5.1 - Null Pointer Dereference
by nitr0us
EIP-2026-100675 EXPLOITDB c VERIFIED
OpenBSD 4.x - Portmap Remote Denial of Service
by auto236751
EIP-2026-116924 EXPLOITDB c VERIFIED
Broadcom WIDCOMM Bluetooth - 'btkrnl.sys' Driver Privilege Escalation
by Nikita Tarakanov
CVE-2012-4552 EXPLOITDB c
PLIB 1.8.5 - Stack-Based Buffer Overflow in ssgParser Error Function
Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file.
by Andrés Gómez
CVE-2012-0957 EXPLOITDB c VERIFIED
Linux kernel <3.4.16 - Info Disclosure
The override_release function in kernel/sys.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from kernel stack memory via a uname system call in conjunction with a UNAME26 personality.
by Brad Spengler
CVE-2012-3221 EXPLOITDB c
Oracle VM VirtualBox 3.2, 4.0, 4.1 - Denial of Service in VirtualBox Core
Unspecified vulnerability in the Oracle VM Virtual Box component in Oracle Virtualization 3.2, 4.0, and 4.1 allows local users to affect availability via unknown vectors related to VirtualBox Core. NOTE: The previous information was obtained from the October 2012 CPU. Oracle has not commented on claims from another vendor that this issue is related to "incorrect interrupt handling."
by halfdog
CVE-2012-4412 EXPLOITDB c VERIFIED
glibc < 2.17 - Heap-Based Buffer Overflow via Long String in strcoll_l
Integer overflow in string/strcoll_l.c in the GNU C Library (aka glibc or libc6) 2.17 and earlier allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string, which triggers a heap-based buffer overflow.
by Jan iankko Lieskovsky
CVE-2012-1666 EXPLOITDB c VERIFIED
VMware Tools <8.0.4-4.0.4-4.1.2-5.1 - Privilege Escalation
Untrusted search path vulnerability in VMware Tools in VMware Workstation before 8.0.4, VMware Player before 4.0.4, VMware Fusion before 4.1.2, VMware View before 5.1, and VMware ESX 4.1 before U3 and 5.0 before P03 allows local users to gain privileges via a Trojan horse tpfc.dll file in the current working directory.
by Moshe Zioni
EIP-2026-119245 EXPLOITDB c
Vice City Multiplayer Server 0.3z R2 - Remote Code Execution
by Sasuke78200
EIP-2026-118239 EXPLOITDB c VERIFIED
Adobe Pixel Bender Toolkit2 - 'tbbmalloc.dll' Multiple DLL Loading Code Execution Vulnerabilities
by coolkaveh
CVE-2012-3480 EXPLOITDB c VERIFIED
glibc 2.16 - Integer Overflow and Stack-Based Buffer Overflow in stdlib String Conversion Functions
Multiple integer overflows in the (1) strtod, (2) strtof, (3) strtold, (4) strtod_l, and other unspecified "related functions" in stdlib in GNU C Library (aka glibc or libc6) 2.16 allow local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string, which triggers a stack-based buffer overflow.
by Joseph S. Myer
CVE-2012-3483 EXPLOITDB c VERIFIED
Tunnelblick < 3.3beta20 - Local Privilege Escalation via Race Condition in runScript
Race condition in the runScript function in Tunnelblick 3.3beta20 and earlier allows local users to gain privileges by replacing a script file.
by zx2c4
CVE-2012-3549 EXPLOITDB c
FreeBSD 8.2 - Denial of Service via Crafted ASCONF Chunk
The SCTP implementation in FreeBSD 8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a crafted ASCONF chunk.
by Shaun Colley
CVE-2012-0946 EXPLOITDB c
NVIDIA UNIX <295.40 - Memory Corruption
The NVIDIA UNIX driver before 295.40 allows local users to access arbitrary memory locations by leveraging GPU device-node read/write privileges.
by anonymous
CVE-2012-3430 EXPLOITDB c VERIFIED
Linux Kernel < 3.0.44 - Information Exposure via Uninitialized Structure in RDS recvmsg
The rds_recvmsg function in net/rds/recv.c in the Linux kernel before 3.0.44 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a (1) recvfrom or (2) recvmsg system call on an RDS socket.
by Jay Fenlason
CVE-2012-4425 EXPLOITDB c
spice-gtk - Privilege Escalation via DBUS_SYSTEM_BUS_ADDRESS Environment Variable
libgio, when used in setuid or other privileged programs in spice-gtk and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: it could be argued that this is a vulnerability in the applications that do not cleanse environment variables, not in libgio itself.
by Sebastian Krahmer
CVE-2012-3524 EXPLOITDB c
libdbus < 1.5.12 - Local Privilege Escalation via DBUS_SYSTEM_BUS_ADDRESS Environment Variable
libdbus 1.5.x and earlier, when used in setuid or other privileged programs in X.org and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: libdbus maintainers state that this is a vulnerability in the applications that do not cleanse environment variables, not in libdbus itself: "we do not support use of libdbus in setuid binaries that do not sanitize their environment before their first call into libdbus."
by Sebastian Krahmer
CVE-2012-3375 EXPLOITDB c VERIFIED
Linux Kernel < 3.2.24 - Denial of Service via EPOLL_CTL_ADD Circular Dependency
The epoll_ctl system call in fs/eventpoll.c in the Linux kernel before 3.2.24 does not properly handle ELOOP errors in EPOLL_CTL_ADD operations, which allows local users to cause a denial of service (file-descriptor consumption and system crash) via a crafted application that attempts to create a circular epoll dependency. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-1083.
by Yurij M. Plotnikov
CVE-2012-2764 EXPLOITDB c VERIFIED
Google Chrome <20.0.1132.43 - Privilege Escalation
Untrusted search path vulnerability in Google Chrome before 20.0.1132.43 on Windows might allow local users to gain privileges via a Trojan horse Metro DLL in the current working directory.
by Moshe Zioni
EIP-2026-118042 EXPLOITDB c VERIFIED
URL Hunter - Local Buffer Overflow (DEP Bypass)
by Ayrbyte
CVE-2012-2763 EXPLOITDB c
GIMP < 2.6.13 - Remote Code Execution via Long String in Script-Fu Server Command
Buffer overflow in the readstr_upto function in plug-ins/script-fu/tinyscheme/scheme.c in GIMP 2.6.12 and earlier, and possibly 2.6.13, allows remote attackers to execute arbitrary code via a long string in a command to the script-fu server.
by Joseph Sheridan
By Source
All 3,622 Writeup 62,046 Exploitdb 50,076 Nomisec 22,338 Github 3,520 Metasploit 3,299 Vulncheck_xdb 927 Inthewild 514 Gitlab 470 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,515 ruby 5,989 c 3,622 perl 2,849 html 2,072 php 1,332 bash 462 java 370 c++ 257 javascript 228 shell 130 go 72 postscript 25 typescript 25