Exploitdb Exploits

3,138 exploits tracked across all sources.

Sort: Activity Stars
CVE-2005-0382 EXPLOITDB c VERIFIED
Breed patch 1 - Denial of Service via Empty UDP Packet
Breed patch 1 and earlier allows remote attackers to cause a denial of service (application crash) via an empty UDP packet, which triggers a null dereference.
by Luigi Auriemma
CVE-2004-1172 EXPLOITDB c VERIFIED
Veritas Backup Exec 8.x-9.x - Stack-Based Buffer Overflow via Long Hostname in Agent Browser Registration
Stack-based buffer overflow in the Agent Browser in Veritas Backup Exec 8.x before 8.60.3878 Hotfix 68, and 9.x before 9.1.4691 Hotfix 40, allows remote attackers to execute arbitrary code via a registration request with a long hostname.
by class101
CVE-2004-1235 EXPLOITDB c VERIFIED
Linux kernel <2.6.11 - RCE
Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor.
by Paul Starzetz
EIP-2026-115359 EXPLOITDB c VERIFIED
Gore 1.50 - Socket Unreacheable Denial of Service
by Luigi Auriemma
CVE-2005-0280 EXPLOITDB c VERIFIED
Soldner Secret Wars - Format String Vulnerability via Message Processing
Format string vulnerability in Soldner Secret Wars 30830 and earlier allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via format string specifiers in a message.
by Luigi Auriemma
EIP-2026-104634 EXPLOITDB c VERIFIED
iWebNegar 1.1 - Configuration Nullification Denial of Service
by c0d3r
CVE-2004-0567 EXPLOITDB c VERIFIED
Windows NT Server 4.0 SP 6a- Windows Server 2003 - Buffer Overflow
The Windows Internet Naming Service (WINS) in Windows NT Server 4.0 SP 6a, NT Terminal Server 4.0 SP 6, Windows 2000 Server SP3 and SP4, and Windows Server 2003 does not properly validate the computer name value in a WINS packet, which allows remote attackers to execute arbitrary code or cause a denial of service (server crash), which results in an "unchecked buffer" and possibly triggers a buffer overflow, aka the "Name Validation Vulnerability."
by zuc
CVE-2004-0206 EXPLOITDB c VERIFIED
Microsoft Windows NetDDE - Remote Code Execution via Malicious Message
Network Dynamic Data Exchange (NetDDE) services for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to remotely execute arbitrary code or locally gain privileges via a malicious message or application that involves an "unchecked buffer," possibly a buffer overflow.
by houseofdabus
EIP-2026-119296 EXPLOITDB c VERIFIED
Working Resources BadBlue 2.55 - MFCISAPICommand Remote Buffer Overflow (1)
by Miguel Tarasc
CVE-2004-1317 EXPLOITDB c VERIFIED
Netcat for Windows 1.1 - Buffer Overflow
Stack-based buffer overflow in doexec.c in Netcat for Windows 1.1, when running with the -e option, allows remote attackers to execute arbitrary code via a long DNS command.
by class101
CVE-2001-0797 EXPLOITDB c VERIFIED
SGI IRIX - Buffer Overflow in Login via Telnet/Rlogin Arguments
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
by Marco Ivaldi
CVE-2004-0360 EXPLOITDB c VERIFIED
Solaris 8.0-9.0 - Privilege Escalation
Unknown vulnerability in passwd(1) in Solaris 8.0 and 9.0 allows local users to gain privileges via unknown attack vectors.
by Marco Ivaldi
CVE-2003-0834 EXPLOITDB c VERIFIED
SCO Open UNIX and UnixWare - Buffer Overflow via DTHELPUSERSEARCHPATH or DTSEARCHPATH Environment Variable
Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature, (2) DTSEARCHPATH, or (3) LOGNAME.
by Marco Ivaldi
CVE-2003-0834 EXPLOITDB c VERIFIED
SCO Open UNIX and UnixWare - Buffer Overflow via DTHELPUSERSEARCHPATH or DTSEARCHPATH Environment Variable
Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature, (2) DTSEARCHPATH, or (3) LOGNAME.
by Marco Ivaldi
CVE-2003-0609 EXPLOITDB c VERIFIED
Solaris 2.6-9 - Local Privilege Escalation via LD_PRELOAD Environment Variable
Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 through 9 allows local users to gain root privileges via a long LD_PRELOAD environment variable.
by Marco Ivaldi
EIP-2026-102929 EXPLOITDB c VERIFIED
MySQL 4.0.17 (Linux) - User-Defined Function (UDF) Dynamic Library (1)
by Marco Ivaldi
CVE-2004-0497 EXPLOITDB c VERIFIED
Linux kernel <2.x - Privilege Escalation
Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4.
by Marco Ivaldi
CVE-2004-1373 EXPLOITDB c VERIFIED
SHOUTcast 1.9.4 - Remote Code Execution via Format String in Content URL
Format string vulnerability in SHOUTcast 1.9.4 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via format string specifiers in a content URL, as demonstrated in the filename portion of a .mp3 file.
by pucik
CVE-2003-0264 EXPLOITDB c VERIFIED
SLMail 5.1.0.4420 - Buffer Overflow
Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe, (2) a long XTRN argument to slmail.exe, (3) a long string to POPPASSWD, or (4) a long password to the POP3 server.
by Ivan Ivanovic
CVE-2004-2652 EXPLOITDB c VERIFIED
Snort - Denial of Service via Invalid TCP/IP Options in DecodeTCPOptions
The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using FAST output or verbose mode, allows remote attackers to cause a denial of service (crash) via packets with invalid TCP/IP options, which trigger a null dereference.
by Antimatt3r
CVE-2004-2652 EXPLOITDB c VERIFIED
Snort - Denial of Service via Invalid TCP/IP Options in DecodeTCPOptions
The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using FAST output or verbose mode, allows remote attackers to cause a denial of service (crash) via packets with invalid TCP/IP options, which trigger a null dereference.
by Marcin Zgorecki
CVE-2003-0264 EXPLOITDB c VERIFIED
SLMail 5.1.0.4420 - Buffer Overflow
Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe, (2) a long XTRN argument to slmail.exe, (3) a long string to POPPASSWD, or (4) a long password to the POP3 server.
by Haroon Rashid Astwat
CVE-2004-1326 EXPLOITDB c VERIFIED
Ultrix dxterm 4.5 - Buffer Overflow via Long -setup Parameter
Buffer overflow in dxterm in Ultrix 4.5 allows local users to execute arbitrary code via a long -setup parameter.
by Kristoffer Brånemyr
CVE-2004-1330 EXPLOITDB c VERIFIED
IBM AIX 5.1-5.3 - Local Buffer Overflow via Long Username
Buffer overflow in paginit in AIX 5.1 through 5.3 allows local users to execute arbitrary code via a long username.
by cees-bart
EIP-2026-110629 EXPLOITDB c VERIFIED
PHP 4.3.9 + phpBB 2.x - 'Unserialize()' Remote Information Leak
by overdose
By Source
All 3,138 Writeup 62,302 Exploitdb 50,076 Nomisec 22,417 Github 3,632 Metasploit 3,314 Vulncheck_xdb 929 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,573 ruby 6,005 c 3,628 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 229 shell 131 go 73 postscript 25 typescript 25