Exploitdb Exploits
3,138 exploits tracked across all sources.
wireless_tools - Buffer Overflow via HOME Environment Variable
Buffer overflow in iwconfig allows local users to execute arbitrary code via a long HOME environment variable.
by Qnix
Snort 2.4.0 - SACK TCP Option Error Handling Denial of Service
by nitr0us
Snort 2.x - PrintTcpOptions Remote Denial of Service
by VulnFact Security Labs
GNU Mailutils 0.6 - Authenticated Remote Code Execution via IMAP SEARCH Command Format String
Format string vulnerability in search.c in the imap4d server in GNU Mailutils 0.6 allows remote authenticated users to execute arbitrary code via format string specifiers in the SEARCH command.
by Clément Lecigne
Zebedee 2.4.1 - Denial of Service via Zero Port Number in Protocol Option Header
Zebedee 2.4.1, when "allowed redirection port" is not set, allows remote attackers to cause a denial of service (application crash) via a zero in the port number of the protocol option header, which triggers an assert error in the makeConnection function in zebedee.c.
by Shiraishi.M
Windows 2000, XP SP1/SP2, Server 2003 - Local Privilege Escalation via WINSRV.DLL FaceName Buffer Overflow
Stack-based buffer overflow in WINSRV.DLL in the Client Server Runtime System (CSRSS) process of Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to gain privileges via a specially-designed application that provides console window information with a long FaceName value.
by eyas
Microsoft Windows - 'keybd_event' Local Privilege Escalation
by Andrés Acunha
BNBT BitTorrent Tracker Beta 7.5 Release 2 - Denial of Service via Basic Authorization HTTP Request
The Util_DecodeHTTPAuth function in BNBT BitTorrent Tracker Beta 7.5 Release 2 and earlier allows remote attackers to cause a denial of service (crash) via a Basic Authorization HTTP request with a "A==" value.
by Sowhat
man2web - Remote Code Execution via -P Argument
man2web allows remote attackers to execute arbitrary commands via -P arguments.
by tracewar
SlimFTPd 3.17 - Denial of Service via USER and PASS Commands
SlimFTPd 3.17 allows remote attackers to cause a denial of service (crash) via certain (1) USER and (2) PASS commands, possibly due to a buffer overflow or off-by-one error.
by Critical Security
FileZilla <2.2.15 - Info Disclosure
NOTE: this issue has been disputed by the vendor. FileZilla 2.2.14b and 2.2.15, and possibly earlier versions, when "Use secure mode" is disabled, uses a weak encryption scheme to store the user's password in the configuration settings file, which allows local users to obtain sensitive information. NOTE: the vendor has disputed the issue, stating that "the problem is not a vulnerability at all, but in fact a fundamental issue of every single program that can store passwords transparently.
DameWare Mini Remote Control <4.9.0 - RCE
Buffer overflow in dwrcs.exe in DameWare Mini Remote Control before 4.9.0 allows remote attackers to execute arbitrary code via the username.
by jpno5
vBulletin 3.0.8 - Accessible Database Backup Searcher (3)
by str0ke
Adobe Version Cue 1.0-1.0.1 - Local Arbitrary Library Loading via -lib Command Line Argument
VCNative for Adobe Version Cue 1.0 and 1.0.1, as used in Creative Suite 1.0 and 1.3, and when running on Mac OS X with Version Cue Workspace, allows local users to load arbitrary libraries and execute arbitrary code via the -lib command line argument.
by vade79
HP OpenView Network Node Manager <7.50 - RCE
HP OpenView Network Node Manager 6.2 through 7.50 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) node parameter to connectedNodes.ovpl, (2) cdpView.ovpl, (3) freeIPaddrs.ovpl, and (4) ecscmg.ovpl.
by Lympex
CVSS 9.8
University of Minnesota gopher client 3.0.9 - Buffer Overflow
Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via (1) a long "+VIEWS:" reply, which is not properly handled in the VIfromLine function, and (2) certain arguments when launching third party programs such as a web browser from a web link, which is not properly handled in the FIOgetargv function.
by vade79
Battlefield 1942 and Vietnam - Denial of Service via Large numplayers Server Reply
Battlefield 1942 1.6.19 and earlier, and Battlefield Vietnam 1.2 and earlier, allows a remote master server to cause a denial of service (client crash) via a server reply that contains a large numplayers value, which triggers a null dereference.
by Luigi Auriemma
Microsoft Windows 2000 and XP SP1 - Stack-Based Buffer Overflow in Plug and Play Service
Stack-based buffer overflow in the Plug and Play (PnP) service for Microsoft Windows 2000 and Windows XP Service Pack 1 allows remote attackers to execute arbitrary code via a crafted packet, and local users to gain privileges via a malicious application, as exploited by the Zotob (aka Mytob) worm.
by RoMaNSoFt
Microsoft Windows Plug-and-Play Service (French) - Remote Universal (MS05-039)
by Fabrice Mourron
Ventrilo 2.1.2-2.3.0 - Denial of Service via Malformed Status Packet
Ventrilo 2.1.2 through 2.3.0 allows remote attackers to cause a denial of service (application crash) via a status packet that contains less data than specified in the packet header sent to UDP port 3784.
by Luigi Auriemma
ZipTorrent 1.3.7.3 - Info Disclosure
ZipTorrent 1.3.7.3 stores sensitive information in plaintext in the pref.txt file, which allows local users to obtain sensitive information such as proxy server information and passwords.
by Kozan
Mercora IMRadio 4.0.0.0 - Privilege Escalation
Mercora IMRadio 4.0.0.0 stores usernames and passwords in plaintext in the MercoraClient\Profiles registry key, which allows local users to gain privileges.
by Kozan
By Source