Exploitdb Exploits

3,149 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-0708 EXPLOITDB c VERIFIED
Comodo Firewall Pro <2.4.16.174 - DoS
cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) before 2.4.16.174 does not validate arguments that originate in user mode for the (1) NtConnectPort and (2) NtCreatePort hooked SSDT functions, which allows local users to cause a denial of service (system crash) and possibly gain privileges via invalid arguments.
by Matousec Transparent security
CVE-2007-0634 EXPLOITDB c VERIFIED
SUN Solaris - Denial of Service
Unspecified vulnerability in Sun Solaris 10 before 20070130 allows remote attackers to cause a denial of service (system crash) via certain ICMP packets.
by kcope
CVE-2007-0641 EXPLOITDB c VERIFIED
Shaffer Solutions Corp Dapcnfsd.dll - Buffer Overflow
Buffer overflow in the EnumPrintersA function in dapcnfsd.dll 0.6.4.0 in Shaffer Solutions (SSC) DiskAccess NFS Client allows remote attackers to execute arbitrary code via a long argument, an issue similar to CVE-2006-5854 and CVE-2007-0444.
by Andres Tarasco Acuna
CVE-2006-5854 EXPLOITDB c VERIFIED
Novell Netware Client - Buffer Overflow
Multiple buffer overflows in the Spooler service (nwspool.dll) in Novell Netware Client 4.91 through 4.91 SP2 allow remote attackers to execute arbitrary code via a long argument to the (1) EnumPrinters and (2) OpenPrinter functions.
by Andres Tarasco
CVE-2007-0686 EXPLOITDB c VERIFIED
Intel 2200BG - DoS
The Intel 2200BG 802.11 Wireless Mini-PCI driver 9.0.3.9 (w29n51.sys) allows remote attackers to cause a denial of service (system crash) via crafted disassociation packets, which triggers memory corruption of "internal kernel structures," a different vulnerability than CVE-2006-6651. NOTE: this issue might overlap CVE-2006-3992.
by Breno Silva Pinto
CVE-2007-0602 EXPLOITDB c VERIFIED
Trend Micro Viruswall - Buffer Overflow
Buffer overflow in libvsapi.so in the VSAPI library in Trend Micro VirusWall 3.81 for Linux, as used by IScan.BASE/vscan, allows local users to gain privileges via a long command line argument, a different vulnerability than CVE-2005-0533.
by Sebastian Wolfgarten
CVE-2007-0444 EXPLOITDB c VERIFIED
Citrix Metaframe - Memory Corruption
Stack-based buffer overflow in the print provider library (cpprov.dll) in Citrix Presentation Server 4.0, MetaFrame Presentation Server 3.0, and MetaFrame XP 1.0 allows local users and remote attackers to execute arbitrary code via long arguments to the (1) EnumPrintersW and (2) OpenPrinter functions.
by Andres Tarasco
CVE-2007-0430 EXPLOITDB c VERIFIED
Apple Mac OS X < 10.4.8 - Denial of Service
The shared_region_map_file_np function in Apple Mac OS X 10.4.8 and earlier kernel allows local users to cause a denial of service (memory corruption) via a large mappingCount value.
by Adriano Lima
EIP-2026-118688 EXPLOITDB c VERIFIED
Intel Centrino ipw2200BG - Wireless Driver Remote Overflow
by oveRet
CVE-2007-0368 EXPLOITDB c VERIFIED
Michiel Broek Mbse-bbs - Buffer Overflow
Stack-based buffer overflow in mbse-bbs 0.70 and earlier allows local users to execute arbitrary code via a long string in the MBSE_ROOT environment variable.
by prdelka
CVE-2007-1881 EXPLOITDB c VERIFIED
Kaspersky Anti-Virus <6.0.2.614 - Privilege Escalation
Unspecified vulnerability in KLIF (klif.sys) in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows local users to gain Ring-0 privileges via unspecified vectors.
by MaD
EIP-2026-115456 EXPLOITDB c VERIFIED
Ipswitch WS_FTP 2007 Professional - 'WSFTPURL.exe' Local Memory Corruption
by LMH
EIP-2026-102981 EXPLOITDB c VERIFIED
Rixstep Undercover - Local Privilege Escalation
by Rixstep Pwned
CVE-2007-0311 EXPLOITDB c VERIFIED
Texas Imperial Software Wftpd < 3.25 - Denial of Service
Texas Imperial Software WFTPD and WFTPD Pro Server 3.25 and earlier allow remote attackers to cause a denial of service (application crash) via a long SITE ADMIN command.
by Marsu
CVE-2006-0441 EXPLOITDB c VERIFIED
Karjasoft Sami FTP Server - Buffer Overflow
Stack-based buffer overflow in Sami FTP Server 2.0.1 allows remote attackers to execute arbitrary code via a long USER command, which triggers the overflow when the log is viewed.
by Marsu
CVE-2007-0338 EXPLOITDB c VERIFIED
Bolintech Dreamftp Server - Buffer Overflow
Heap-based buffer overflow in Dream FTP Server allows remote attackers to execute arbitrary code via a USER command with a large number of format string specifiers, which triggers the overflow during processing of the Server Log.
by Marsu
CVE-2007-0329 EXPLOITDB c VERIFIED
Joonas Viljanen Jv2 Folder Gallery - Path Traversal
download.php in Joonas Viljanen JV2 Folder Gallery allows remote attackers to read sensitive files via a relative pathname in the file parameter, as demonstrated by config/gallerysetup.php. NOTE: this issue might be resultant from a directory traversal vulnerability.
by PeTrO
CVE-2007-0236 EXPLOITDB c VERIFIED
Apple Mac OS X - Memory Corruption
Double free vulnerability in the _ATPsndrsp function in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service (kernel panic) and possibly execute arbitrary code via a crafted AppleTalk request that triggers a heap-based buffer overflow.
by MoAB
CVE-2007-0165 EXPLOITDB c VERIFIED
SUN Solaris - Denial of Service
Unspecified vulnerability in libnsl in Sun Solaris 8 and 9 allows remote attackers to cause a denial of service (crash) via malformed RPC requests that trigger a crash in rpcbind.
by Federico L. Bossi Bonin
CVE-2007-0085 EXPLOITDB c VERIFIED
Openbsd - NULL Pointer Dereference
Unspecified vulnerability in sys/dev/pci/vga_pci.c in the VGA graphics driver for wscons in OpenBSD 3.9 and 4.0, when the kernel is compiled with the PCIAGP option and a non-AGP device is being used, allows local users to gain privileges via unspecified vectors, possibly related to agp_ioctl NULL pointer reference.
by Critical Security
EIP-2026-117509 EXPLOITDB c VERIFIED
Microsoft Vista - 'NtRaiseHardError' Local Privilege Escalation
by erasmus
CVE-2006-6797 EXPLOITDB c VERIFIED
Microsoft Windows - DoS
The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696.
by Ruben Santamarta
CVE-2006-6696 EXPLOITDB c VERIFIED
Microsoft Windows < Vista - Privilege Escalation
Double free vulnerability in Microsoft Windows 2000, XP, 2003, and Vista allows local users to gain privileges by calling the MessageBox function with a MB_SERVICE_NOTIFICATION message with crafted data, which sends a HardError message to Client/Server Runtime Server Subsystem (CSRSS) process, which is not properly handled when invoking the UserHardError and GetHardErrorText functions in WINSRV.DLL.
by Ruben Santamarta
CVE-2006-6811 EXPLOITDB MEDIUM c VERIFIED
KsIRC 1.3.12 - DoS
KsIRC 1.3.12 allows remote attackers to cause a denial of service (crash) via a long PRIVMSG string when connecting to an Internet Relay Chat (IRC) server, which causes an assertion failure and results in a NULL pointer dereference. NOTE: this issue was originally reported as a buffer overflow.
by Federico L. Bossi Bonin
CVSS 6.5
CVE-2006-6724 EXPLOITDB c VERIFIED
BolinTech Dream FTP Server 1.02 - DoS
BolinTech Dream FTP Server 1.02 allows remote authenticated users, including anonymous users, to cause a denial of service (application crash) via a certain invalid PORT command.
by InTeL
By Source
All 3,149 Exploitdb 50,121 Writeup 46,717 Nomisec 21,135 Metasploit 3,189 Github 2,247 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,737 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 359 javascript 260 c++ 247 shell 68 go 41 postscript 25 xml 24