Exploitdb Exploits
3,138 exploits tracked across all sources.
Microsoft Windows XP SP2 - Auth Bypass
The Internet Connection Firewall (ICF) in Microsoft Windows XP SP2 is configured by default to trust sessmgr.exe, which allows local users to use sessmgr.exe to create a local listening port that bypasses the ICF access controls.
by americanidiot
Icecast <= 2.0.1 - Remote Code Execution via HTTP Header Overflow
Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a large number of headers.
by K-C0d3r
Monolith Productions Games - Denial of Service via Long Gamespy Query
Buffer overflow in Monolith games including (1) Alien versus Predator 2 1.0.9.6 and earlier, (2) Blood 2 2.1 and earlier, (3) No one lives forever 1.004 and earlier and (4) Shogo 2.2 and earlier allows remote attackers to cause a denial of service (application crash) via a long secure Gamespy query.
by Luigi Auriemma
Icecast <= 2.0.1 - Remote Code Execution via HTTP Header Overflow
Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a large number of headers.
by Delikon
Microsoft SQL Server 7.0 - Denial of Service via Long TCP Request
Microsoft SQL Server 7.0 allows remote attackers to cause a denial of service (mssqlserver service halt) via a long request to TCP port 1433, possibly triggering a buffer overflow.
by securma massine
Zinf <2.2.1 - Remote Code Execution
Buffer overflow in Zinf 2.2.1 on Windows, and other older versions for Linux, allows remote attackers or local users to execute arbitrary code via certain values in a .pls file.
by Delikon
Microsoft SQL Server 7.0 - Remote Denial of Service (2)
by Sebastien Tricaud
Microsoft SQL Server 7.0 - Remote Denial of Service (1)
by securma massine
Microsoft .NET Framework - Remote Code Execution via JPEG COM Field Length Overflow
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
by M4Z3R
HP-UX B.11.00 B.11.04 B.11.11 B.11.23 - Denial of Service via Rose Attack
HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet.
by Ken Hollis
HP-UX B.11.00 B.11.04 B.11.11 B.11.23 - Denial of Service via Rose Attack
HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet.
by Ken Hollis
HP-UX B.11.00 B.11.04 B.11.11 B.11.23 - Denial of Service via Rose Attack
HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet.
by Coolio
HP-UX B.11.00 B.11.04 B.11.11 B.11.23 - Denial of Service via Rose Attack
HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet.
by Coolio
myserver 0.7.1 - Denial of Service via Long HTTP POST Request
myServer 0.7.1 allows remote attackers to cause a denial of service (crash) via a long HTTP POST request in a View=Logon operation to index.html.
by Tom Ferris
Microsoft .NET Framework - Remote Code Execution via JPEG COM Field Length Overflow
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
by John Bissell
Microsoft .NET Framework - Remote Code Execution via JPEG COM Field Length Overflow
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
by ATmaCA
PopMessenger 1.60 - Denial of Service via Invalid Base64 Characters
The Base64 function in PopMessenger 1.60 (before 20 Sep 2004) and earlier allows remote attackers to cause a denial of service (application crash) via invalid characters in a message, which causes several alert dialogs to be displayed and leads to a crash.
by Luigi Auriemma
Microsoft .NET Framework - Remote Code Execution via JPEG COM Field Length Overflow
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
by FoToZ
MDaemon 6.5.1 - Denial of Service via Long SAML/SOML/SEND/MAIL or LIST Command
Multiple buffer overflows in MDaemon 6.5.1 allow remote attackers to cause a denial of service (application crash) via a long (1) SAML, SOML, SEND, or MAIL command to the SMTP server or (2) LIST command to the IMAP server.
by D_BuG
LeadMind Pop Messenger 1.60 - Illegal Character Remote Denial of Service
by Luigi Auriemma
latex2rtf 1.9.15 - Buffer Overflow via expandmacro Function
Multiple buffer overflows in LaTeX2rtf 1.9.15, and possibly other versions, allow remote attackers to execute arbitrary code via (1) the expandmacro function, and possibly (2) Environments and (3) TranslateCommand.
by D. J. Bernstein
sudo 1.6.8 - Arbitrary File Read via sudoedit Symlink Attack
sudoedit (aka sudo -e) in sudo 1.6.8 opens a temporary file with root privileges, which allows local users to read arbitrary files via a symlink attack on the temporary file before quitting sudoedit.
by Angelo Rosiello
By Source