Exploitdb Exploits
3,149 exploits tracked across all sources.
Microsoft .net Framework - Buffer Overflow
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
by FoToZ
Alt-n Mdaemon - Buffer Overflow
Multiple buffer overflows in MDaemon 6.5.1 allow remote attackers to cause a denial of service (application crash) via a long (1) SAML, SOML, SEND, or MAIL command to the SMTP server or (2) LIST command to the IMAP server.
by D_BuG
LeadMind Pop Messenger 1.60 - Illegal Character Remote Denial of Service
by Luigi Auriemma
LaTeX2rtf <1.9.15 - RCE
Multiple buffer overflows in LaTeX2rtf 1.9.15, and possibly other versions, allow remote attackers to execute arbitrary code via (1) the expandmacro function, and possibly (2) Environments and (3) TranslateCommand.
by D. J. Bernstein
sudo <1.6.8 - Info Disclosure
sudoedit (aka sudo -e) in sudo 1.6.8 opens a temporary file with root privileges, which allows local users to read arbitrary files via a symlink attack on the temporary file before quitting sudoedit.
by Angelo Rosiello
Impressions Games Lords of the Realm III - Nickname Remote Denial of Service
by Luigi Auriemma
Tech-noel Pigeon Server - Denial of Service
Pigeon Server 3.02.0143 and earlier allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a long login name sent to port 3103.
by Luigi Auriemma
Alt-n Mdaemon - Buffer Overflow
Multiple buffer overflows in MDaemon 6.5.1 allow remote attackers to cause a denial of service (application crash) via a long (1) SAML, SOML, SEND, or MAIL command to the SMTP server or (2) LIST command to the IMAP server.
by D_BuG
Solarwinds Serv-u File Server - Improper Input Validation
Serv-U FTP server 4.x and 5.x allows remote attackers to cause a denial of service (application crash) via a STORE UNIQUE (STOU) command with an MS-DOS device name argument such as (1) COM1, (2) LPT1, (3) PRN, or (4) AUX.
by str0ke
Sapporoworks Black Jumbodog - Buffer Overflow
Buffer overflow in BlackJumboDog 3.x allows remote attackers to execute arbitrary code via long FTP commands such as (1) USER, (2) PASS, (3) RETR,(4) CWD, (5) XMKD, and (6) XRMD.
by Delikon
Citadel UX - Buffer Overflow
Buffer overflow in Citadel/UX 6.23 and earlier allows remote attackers to cause a denial of service via a long username.
by Nebunu
Cerulean Studios Trillian - Buffer Overflow
Buffer overflow in the MSN module in Trillian 0.74i allows remote MSN servers to execute arbitrary code via a long string that ends in a newline character.
by Komrade
Cerulean Studios Trillian Client 0.74 MSN Module - Remote Buffer Overflow
by Komrade
Activision Call OF Duty - Buffer Overflow
Call of Duty 1.4 and earlier allows remote attackers to cause a denial of service (game end) via a large (1) query or (2) reply packet, which is not properly handled by the buffer overflow protection mechanism. NOTE: this issue might overlap CVE-2005-0430.
by Luigi Auriemma
AOL Instant Messenger <5.5.3595 - RCE
Buffer overflow in the goaway function in the aim:goaway URI handler for AOL Instant Messenger (AIM) 5.5, including 5.5.3595, allows remote attackers to execute arbitrary code via a long Away message.
by John Bissell
Courier-IMAP <3.0.3 - RCE
Format string vulnerability in the auth_debug function in Courier-IMAP 1.6.0 through 2.2.1 and 3.x through 3.0.3, when login debugging (DEBUG_LOGIN) is enabled, allows remote attackers to execute arbitrary code.
by ktha
South River Technologies Titan FTP Server - Buffer Overflow
Heap-based buffer overflow in Titan FTP 3.21 and earlier allows remote attackers to cause a denial of service (crash) via a long FTP command such as (1) CWD, (2) STAT, or (3) LIST.
by lion
Texas Imperial Software Wftpd - Denial of Service
WFTPD Pro Server 3.21 allows remote authenticated users to cause a denial of service (crash) via a series of long MLIST commands.
by lion
Massive Entertainment Ground Control ... - Denial of Service
Ground Control II: Operation Exodus 1.0.0.7 and earlier allows remote servers to cause a denial of service (client or server crash) via a large packet, which generates a "Message too long" socket error that is treated as a critical error.
by Luigi Auriemma
Debian bsdmainutils 6.0.14 - Calendar Information Disclosure
by Steven Van Acker
D-Link DCS-900 - Info Disclosure
D-Link DCS-900 Internet Camera listens on UDP port 62976 for an IP address, which allows remote attackers to change the IP address of the camera via a UDP broadcast packet.
by anonymous
Citadel UX - Buffer Overflow
Buffer overflow in Citadel/UX 6.23 and earlier allows remote attackers to cause a denial of service via a long username.
by Nebunu
By Source