Exploitdb Exploits

3,149 exploits tracked across all sources.

Sort: Activity Stars
CVE-2006-2814 EXPLOITDB c VERIFIED
Ishopcart - Buffer Overflow
Multiple buffer overflows in the (1) vGetPost and (2) main functions in easy-scart.c through easy-scart6.c in iShopCart allow remote attackers to execute arbitrary code by sending a large amount of data containing "Submit" in an sslinvoice action, and allow remote attackers to have an unknown impact via a large amount of posted data.
by K-sPecial
CVE-2006-2802 EXPLOITDB c VERIFIED
Gxine - Buffer Overflow
Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.
by Federico L. Bossi Bonin
EIP-2026-102717 EXPLOITDB c VERIFIED
portmap 5 Beta - 'Set/Dump' Local Denial of Service
by Federico L. Bossi Bonin
CVE-2006-2502 EXPLOITDB c VERIFIED
Cyrus Imapd - Buffer Overflow
Stack-based buffer overflow in pop3d in Cyrus IMAPD (cyrus-imapd) 2.3.2, when the popsubfolders option is enabled, allows remote attackers to execute arbitrary code via a long USER command.
by kingcope
CVE-2006-2494 EXPLOITDB c VERIFIED
Lacaveprods Intellitamper < 2.07 - Buffer Overflow
Stack-based buffer overflow in IntelliTamper 2.07 allows remote attackers to execute arbitrary code via a crafted .map file.
by Devil-00
EIP-2026-118771 EXPLOITDB c VERIFIED
Medal of Honor - 'getinfo' Remote Buffer Overflow
by RunningBon
CVE-2006-2316 EXPLOITDB c VERIFIED
Intel Proset Wireless < 10.1.0.33 - Denial of Service
S24EvMon.exe in the Intel PROset/Wireless software, possibly 10.1.0.33, uses a S24EventManagerSharedMemory shared memory section with weak permissions, which allows local users to read or modify passwords or other data, or cause a denial of service.
by Ruben Santamarta
CVE-2006-2242 EXPLOITDB c VERIFIED
Acftp - Denial of Service
acFTP 1.4 allows remote attackers to cause a denial of service (application crash) via a long string with "{" (brace) characters to the USER command.
by Omni
CVE-2006-2236 EXPLOITDB c VERIFIED
ID Software Quake 3 Arena - Buffer Overflow
Buffer overflow in the Quake 3 Engine, as used by (1) ET 2.60, (2) Return to Castle Wolfenstein 1.41, and (3) Quake III Arena 1.32b allows remote attackers to execute arbitrary commands via a long remapShader command.
by landser
CVE-2006-1518 EXPLOITDB c VERIFIED
MySQL <5.0.20 - RCE
Buffer overflow in the open_table function in sql_base.cc in MySQL 5.0.x up to 5.0.20 might allow remote attackers to execute arbitrary code via crafted COM_TABLE_DUMP packets with invalid length values.
by Stefano Di Paola
CVE-2006-1516 EXPLOITDB c VERIFIED
MySQL <5.0.20 - Memory Corruption
The check_connection function in sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to read portions of memory via a username without a trailing null byte, which causes a buffer over-read.
by Stefano Di Paola
CVE-2006-2022 EXPLOITDB c VERIFIED
LS3 Fenice < 1.10 - Buffer Overflow
Buffer overflow in the parse_url function in the RTSP module (rtsp/parse_url.c) in Fenice 1.10 and earlier allows remote attackers to execute arbitrary code via a long URL.
by c0d3r
EIP-2026-115913 EXPLOITDB c VERIFIED
Neon Responder 5.4 - Clock Synchronization Denial of Service
by Stefan Lochbihler
EIP-2026-103620 EXPLOITDB c VERIFIED
panic-reloaded - TCP Denial of Service Tool
by hash
CVE-2006-1941 EXPLOITDB c VERIFIED
Neon Software Neon Responder - Denial of Service
Neon Responder 5.4 for LANsurveyor allows remote attackers to cause a denial of service (application outage) via a crafted Clock Synchronisation packet that triggers an access violation.
by Stefan Lochbihler
CVE-2006-1652 EXPLOITDB c VERIFIED
UltraVNC <1.0.1 - Buffer Overflow
Multiple buffer overflows in (a) UltraVNC (aka Ultr@VNC) 1.0.1 and earlier and (b) tabbed_viewer 1.29 (1) allow user-assisted remote attackers to execute arbitrary code via a malicious server that sends a long string to a client that connects on TCP port 5900, which triggers an overflow in Log::ReallyPrint; and (2) allow remote attackers to cause a denial of service (server crash) via a long HTTP GET request to TCP port 5800, which triggers an overflow in VNCLog::ReallyPrint.
by Luigi Auriemma
CVE-2006-1652 EXPLOITDB c VERIFIED
UltraVNC <1.0.1 - Buffer Overflow
Multiple buffer overflows in (a) UltraVNC (aka Ultr@VNC) 1.0.1 and earlier and (b) tabbed_viewer 1.29 (1) allow user-assisted remote attackers to execute arbitrary code via a malicious server that sends a long string to a client that connects on TCP port 5900, which triggers an overflow in Log::ReallyPrint; and (2) allow remote attackers to cause a denial of service (server crash) via a long HTTP GET request to TCP port 5800, which triggers an overflow in VNCLog::ReallyPrint.
by Luigi Auriemma
CVE-2005-2856 EXPLOITDB c VERIFIED
WinACE UNACEV2.DLL <2.6.0.0 - Buffer Overflow
Stack-based buffer overflow in the WinACE UNACEV2.DLL third-party compression utility before 2.6.0.0, as used in multiple products including (1) ALZip 5.51 through 6.11, (2) Servant Salamander 2.0 and 2.5 Beta 1, (3) WinHKI 1.66 and 1.67, (4) ExtractNow 3.x, (5) Total Commander 6.53, (6) Anti-Trojan 5.5.421, (7) PowerArchiver before 9.61, (8) UltimateZip 2.7,1, 3.0.3, and 3.1b, (9) Where Is It (WhereIsIt) 3.73.501, (10) FilZip 3.04, (11) IZArc 3.5 beta3, (12) Eazel 1.0, (13) Rising Antivirus 18.27.21 and earlier, (14) AutoMate 6.1.0.0, (15) BitZipper 4.1 SR-1, (16) ZipTV, and other products, allows user-assisted attackers to execute arbitrary code via a long filename in an ACE archive.
by darkeagle
EIP-2026-107500 EXPLOITDB c VERIFIED
GreyMatter WebLog 1.21d - Remote Command Execution (1)
by No_Face_King
EIP-2026-116473 EXPLOITDB c VERIFIED
Vavoom 1.19.1 - Multiple Vulnerabilities/Denial of Service
by Luigi Auriemma
EIP-2026-115112 EXPLOITDB c VERIFIED
csDoom 0.7 - Multiple Vulnerabilities/Denial of Service
by Luigi Auriemma
CVE-2006-1342 EXPLOITDB c VERIFIED
Linux kernel <2.4 - Info Disclosure
net/ipv4/af_inet.c in Linux kernel 2.4 does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the (1) getsockname, (2) getpeername, and (3) accept functions, which allows local users to obtain portions of potentially sensitive memory.
by Pavel Kankovsky
CVE-2006-0021 EXPLOITDB c VERIFIED
Microsoft Windows XP <SP2 - DoS
Microsoft Windows XP SP1 and SP2, and Server 2003 up to SP1, allows remote attackers to cause a denial of service (hang) via an IGMP packet with an invalid IP option, aka the "IGMP v3 DoS Vulnerability."
by Firestorm
CVE-2006-1364 EXPLOITDB HIGH c VERIFIED
Microsoft w3wp - DoS
Microsoft w3wp (aka w3wp.exe) does not properly handle when the AspCompat directive is not used when referencing COM components in ASP.NET, which allows remote attackers to cause a denial of service (resource consumption or crash) by repeatedly requesting each of several documents that refer to COM components, or are restricted documents located under the ASP.NET application path.
by Debasis Mohanty
CVSS 7.5
CVE-2006-0460 EXPLOITDB c VERIFIED
Bomberclone - Buffer Overflow
Multiple buffer overflows in BomberClone before 0.11.6.2 allow remote attackers to execute arbitrary code via long error messages.
by esca zoo
By Source
All 3,149 Exploitdb 50,121 Writeup 46,751 Nomisec 21,199 Metasploit 3,189 Github 2,250 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,738 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 68 go 41 postscript 25 xml 24