Exploitdb Exploits
3,149 exploits tracked across all sources.
Snort <2.3.0 - DoS
The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using FAST output or verbose mode, allows remote attackers to cause a denial of service (crash) via packets with invalid TCP/IP options, which trigger a null dereference.
by Antimatt3r
Snort <2.3.0 - DoS
The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using FAST output or verbose mode, allows remote attackers to cause a denial of service (crash) via packets with invalid TCP/IP options, which trigger a null dereference.
by Marcin Zgorecki
SLMail 5.1.0.4420 - Buffer Overflow
Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe, (2) a long XTRN argument to slmail.exe, (3) a long string to POPPASSWD, or (4) a long password to the POP3 server.
by Haroon Rashid Astwat
Ultrix Dxterm - Buffer Overflow
Buffer overflow in dxterm in Ultrix 4.5 allows local users to execute arbitrary code via a long -setup parameter.
by Kristoffer Brånemyr
IBM Aix - Buffer Overflow
Buffer overflow in paginit in AIX 5.1 through 5.3 allows local users to execute arbitrary code via a long username.
by cees-bart
PHP 4.3.9 + phpBB 2.x - 'Unserialize()' Remote Information Leak
by overdose
Ability Server 2.34 - 'APPE' Remote Buffer Overflow
by darkeagle
Rarlab Winrar - Buffer Overflow
WinRAR 3.40, and possibly earlier versions, allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, possibly causing an integer overflow that leads to a buffer overflow.
by Vafa Khoshaein
Linux Kernel - Buffer Overflow
Integer overflow in the vc_resize function in the Linux kernel 2.4 and 2.6 before 2.6.10 allows local users to cause a denial of service (kernel crash) via a short new screen value, which leads to a buffer overflow.
by Georgi Guninski
Linux Kernel 2.4.28/2.6.9 - Memory Leak Local Denial of Service
by Georgi Guninski
Linux Kernel - Denial of Service
Memory leak in the ip_options_get function in the Linux kernel before 2.6.10 allows local users to cause a denial of service (memory consumption) by repeatedly calling the ip_cmsg_send function.
by Georgi Guninski
OpenText FirstClass <8.0 - DoS
The HTTP daemon in OpenText FirstClass 7.1 and 8.0 allows remote attackers to cause a denial of service (service availability loss) via a large number of POST requests to /Search.
by dila
MPlayer 0.9/1.0 - MMST Get_Header Remote Client-Side Buffer Overflow
by Ariel Berkman
Ricoh Aficio 450/455 PCL 5e Printer - ICMP Denial of Service
by x90c
Linux kernel <2.4.29-2.6.10 - DoS
The scm_send function in the scm layer for Linux kernel 2.4.x up to 2.4.28, and 2.6.x up to 2.6.9, allows local users to cause a denial of service (system hang) via crafted auxiliary messages that are passed to the sendmsg function, which causes a deadlock condition.
by Paul Starzetz
Linux Kernel - Denial of Service
Multiple vulnerabilities in the IGMP functionality for Linux kernel 2.4.22 to 2.4.28, and 2.6.x to 2.6.9, allow local and remote attackers to cause a denial of service or execute arbitrary code via (1) the ip_mc_source function, which decrements a counter to -1, or (2) the igmp_marksources function, which does not properly validate IGMP message parameters and performs an out-of-bounds read.
by Paul Starzetz
Ricoh Aficio 450/455 PCL Printer - Remote ICMP Denial of Service
by Hongzhen Zhou
Monolith Productions Contract Jack - Denial of Service
The Lithtech engine, as used in (1) Contract Jack 1.1 and earlier, (2) No one lives forever 2 1.3 and earlier, (3) Tron 2.0 1.042 and earlier, (4) F.E.A.R. (First Encounter Assault and Recon), and possibly other games, allows remote attackers to cause a denial of service (connection refused) via a UDP packet that causes recvfrom to generate a return code that causes the listening loop to exit, as demonstrated using zero byte packets or packets between 8193 and 12280 bytes, which result in conditions that are not "Operation would block."
by Luigi Auriemma
Codename Eagle 1.42 - Socket Unreacheable Denial of Service
by Luigi Auriemma
Multiple OS - DoS
The TCP/IP stack in multiple operating systems allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the correct sequence number but the wrong Acknowledgement number, which generates a large number of "keep alive" packets. NOTE: some followups indicate that this issue could not be replicated.
by Antonio M. D. S. Fortes
Citadel/UX <6.27 - RCE
Format string vulnerability in the lprintf function in Citadel/UX 6.27 and earlier allows remote attackers to execute arbitrary code via format string specifiers sent to the server.
by CoKi
CUPS 1.1.22 - Info Disclosure
lppasswd in CUPS 1.1.22 does not remove the passwd.new file if it encounters a file-size resource limit while writing to passwd.new, which causes subsequent invocations of lppasswd to fail.
by Bartlomiej Sieka
Napshare - Buffer Overflow
Buffer overflow in the auto_filter_extern function in auto.c for NapShare 1.2, with the extern filter enabled, allows remote attackers to execute arbitrary code via a crafted gnutella response.
by Bartlomiej Sieka
By Source