Exploitdb Exploits
3,138 exploits tracked across all sources.
Impressions Games Lords of the Realm III - Nickname Remote Denial of Service
by Luigi Auriemma
Pigeon Server <= 3.02.0143 - Denial of Service via Long Login Name
Pigeon Server 3.02.0143 and earlier allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a long login name sent to port 3103.
by Luigi Auriemma
MDaemon 6.5.1 - Denial of Service via Long SAML/SOML/SEND/MAIL or LIST Command
Multiple buffer overflows in MDaemon 6.5.1 allow remote attackers to cause a denial of service (application crash) via a long (1) SAML, SOML, SEND, or MAIL command to the SMTP server or (2) LIST command to the IMAP server.
by D_BuG
Serv-U File Server 4.x-5.x - Denial of Service via STOU Command with MS-DOS Device Name
Serv-U FTP server 4.x and 5.x allows remote attackers to cause a denial of service (application crash) via a STORE UNIQUE (STOU) command with an MS-DOS device name argument such as (1) COM1, (2) LPT1, (3) PRN, or (4) AUX.
by str0ke
BlackJumboDog 3.x - Remote Code Execution via Long FTP Commands
Buffer overflow in BlackJumboDog 3.x allows remote attackers to execute arbitrary code via long FTP commands such as (1) USER, (2) PASS, (3) RETR,(4) CWD, (5) XMKD, and (6) XRMD.
by Delikon
Citadel/UX <= 6.23 - Denial of Service via Long Username
Buffer overflow in Citadel/UX 6.23 and earlier allows remote attackers to cause a denial of service via a long username.
by Nebunu
Trillian 0.74i - Remote Code Execution via MSN Module Buffer Overflow
Buffer overflow in the MSN module in Trillian 0.74i allows remote MSN servers to execute arbitrary code via a long string that ends in a newline character.
by Komrade
Cerulean Studios Trillian Client 0.74 MSN Module - Remote Buffer Overflow
by Komrade
Call of Duty <= 1.4 - Denial of Service via Large Query or Reply Packet
Call of Duty 1.4 and earlier allows remote attackers to cause a denial of service (game end) via a large (1) query or (2) reply packet, which is not properly handled by the buffer overflow protection mechanism. NOTE: this issue might overlap CVE-2005-0430.
by Luigi Auriemma
AOL Instant Messenger <5.5.3595 - RCE
Buffer overflow in the goaway function in the aim:goaway URI handler for AOL Instant Messenger (AIM) 5.5, including 5.5.3595, allows remote attackers to execute arbitrary code via a long Away message.
by John Bissell
Courier-IMAP 1.6.0-2.2.1 and 3.x-3.0.3 - Remote Code Execution via Format String in auth_debug
Format string vulnerability in the auth_debug function in Courier-IMAP 1.6.0 through 2.2.1 and 3.x through 3.0.3, when login debugging (DEBUG_LOGIN) is enabled, allows remote attackers to execute arbitrary code.
by ktha
Titan FTP Server 3.21 - Denial of Service via Long FTP Command
Heap-based buffer overflow in Titan FTP 3.21 and earlier allows remote attackers to cause a denial of service (crash) via a long FTP command such as (1) CWD, (2) STAT, or (3) LIST.
by lion
WFTPD Pro Server 3.21 - Authenticated Denial of Service via Long MLIST Commands
WFTPD Pro Server 3.21 allows remote authenticated users to cause a denial of service (crash) via a series of long MLIST commands.
by lion
Ground Control II: Operation Exodus - Denial of Service via Large Packet
Ground Control II: Operation Exodus 1.0.0.7 and earlier allows remote servers to cause a denial of service (client or server crash) via a large packet, which generates a "Message too long" socket error that is treated as a critical error.
by Luigi Auriemma
Debian bsdmainutils 6.0.14 - Calendar Information Disclosure
by Steven Van Acker
D-Link DCS-900 Internet Camera - Unauthenticated IP Address Change via UDP Broadcast
D-Link DCS-900 Internet Camera listens on UDP port 62976 for an IP address, which allows remote attackers to change the IP address of the camera via a UDP broadcast packet.
by anonymous
Citadel/UX <= 6.23 - Denial of Service via Long Username
Buffer overflow in Citadel/UX 6.23 and earlier allows remote attackers to cause a denial of service via a long username.
by Nebunu
Gaucho 1.4 Build 145 - Buffer Overflow
Stack-based buffer overflow in Gaucho 1.4 Build 145 allows remote attackers to execute arbitrary code via a POP3 email with a long Content-Type header.
by Tan Chew Keong
Painkiller 1.3.1 - Buffer Overflow via Long Password
Buffer overflow in Painkiller 1.3.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password.
by Luigi Auriemma
Winamp < 5.0.4 - Remote Code Execution via Malicious Skin File
Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin file.
by Petrol Designs
sysinternals regmon < 6.11 - Denial of Service via Invalid Hook Function Pointers
NtRegmon before 6.12 allows local users to cause a denial of service (crash), while NtRegmon is running, via invalid pointers to hook functions such as ZwSetQueryValue.
by Next Generation Security
Hafiye 1.0 - Remote Terminal Escape Sequence Injection
by Serkan Akpolat
By Source