Exploitdb Exploits
3,138 exploits tracked across all sources.
Cybration ICUII 7.0 - Info Disclosure
Cybration ICUII 7.0 stores passwords in plaintext in the world-readable icuii.ini file, which allows local users to gain privileges.
by Kozan
StumbleInside GoText 1.01 - Info Disclosure
StumbleInside GoText 1.01 stores sensitive username, mail address,and phone number information in plaintext in the GoText.bin file, which allows local users to obtain that information.
by Kozan
ExoticSoft FilePocket 1.2 - Privilege Escalation
ExoticSoft FilePocket 1.2 stores sensitive proxy information, including proxy passwords, in plaintext in the registry, which allows local users to gain privileges.
by Kozan
MySQL MaxDB Webtool 7.5.00.23 - Remote Stack Overflow
by cybertronic
BakBone NetVault 7.1 - Privilege Escalation
nvstatsmngr.exe process in BakBone NetVault 7.1 does not properly drop privileges before opening files, which allows local users to gain privileges via the Help menu.
by Reed Arvin
Altiris Client 6.0.88 - Service Privilege Escalation
by Reed Arvin
tcpdump < 3.9.1 - Denial of Service via RSVP Packet Length 4
The rsvp_print function in tcpdump 3.9.1 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted RSVP packet of length 4.
by vade79
tcpdump < 3.9.1 - Denial of Service via Zero-Length GRE Packet
The isis_print function, as called by isoclns_print, in tcpdump 3.9.1 and earlier allows remote attackers to cause a denial of service (infinite loop) via a zero length, as demonstrated using a GRE packet.
by vade79
tcpdump < 3.8.3 - Denial of Service via BGP or LDP Packet Handling
tcpdump 3.8.3 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted (1) BGP packet, which is not properly handled by RT_ROUTING_INFO, or (2) LDP packet, which is not properly handled by the ldp_print function.
by vade79
tcpdump < 3.8.3 - Denial of Service via BGP or LDP Packet Handling
tcpdump 3.8.3 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted (1) BGP packet, which is not properly handled by RT_ROUTING_INFO, or (2) LDP packet, which is not properly handled by the ldp_print function.
by vade79
Yager <5.24 - Remote Code Execution
Multiple buffer overflows in Yager 5.24 and earlier allow remote attackers to execute arbitrary code via (1) a crafted nickname or (2) a packet with a large amount of data.
by cybertronic
Affix Bluetooth Protocol Stack 3.1/3.2 - Signed Buffer Index (2)
by kf
Affix Bluetooth Protocol Stack 3.1/3.2 - Signed Buffer Index (1)
by kf
PMSoftware Simple Web Server 1.0 - RCE
Buffer overflow in PMSoftware Simple Web Server 1.0 allows remote attackers to execute arbitrary code via a long GET request.
by cybertronic
GoodTech Telnet Server < 5.0.7 - Remote Buffer Overflow (2)
by cybertronic
Crystal FTP Client 2.8 - Remote Code Execution via Long File Extension in LIST Response
Buffer overflow in Crystal FTP Client 2.8 allows remote malicious servers to execute arbitrary code via a response to a LIST command that contains a file name with a long extension.
by cybertronic
PMSoftware Simple Web Server 1.0 - RCE
Buffer overflow in PMSoftware Simple Web Server 1.0 allows remote attackers to execute arbitrary code via a long GET request.
by c0d3r
TCP/IP ICMP Error Handling - Blind Connection Reset Denial of Service
Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
by houseofdabus
WheresJames Webcam Publisher Beta 2.0.0014 - Remote Buffer Overflow
by tarako
Windows Server 2003 and XP SP2 - Denial of Service via Land Attack
Windows Server 2003 and XP SP2, with Windows Firewall turned off, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the SYN flag set and the same destination and source address and port, aka a reoccurrence of the "Land" vulnerability (CVE-1999-0016).
by Yuri Gushin
Microsoft Windows 2000 and XP - Remote Code Execution via Malformed IP Packet Options
Microsoft Windows XP SP2 and earlier, 2000 SP3 and SP4, Server 2003, and older operating systems allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IP packets with malformed options, aka the "IP Validation Vulnerability."
by Yuri Gushin
Libsafe <2.0.16 - Privilege Escalation
Race condition in libsafe 2.0.16 and earlier, when running in multi-threaded applications, allows attackers to bypass libsafe protection and exploit other vulnerabilities before the _libsafe_die function call is completed.
by Overflow.pl
Yager 5.24 - Denial of Service via Malformed Data
Yager 5.24 and earlier allows remote attackers to cause a denial of service (application crash) via certain malformed data.
by Luigi Auriemma
By Source