C Exploits
3,628 exploits tracked across all sources.
PunBB 1.2.10 - Denial of Service via User Registration Flood
register.php in PunBB 1.2.10 allows remote attackers to cause an unspecified denial of service via a flood of new user registrations.
by K4P0
MySQL 4.x/5.0 (Linux) - User-Defined Function (UDF) Dynamic Library (2)
by Marco Ivaldi
Microsoft Color Management Module - RCE
Buffer overflow in the Microsoft Color Management Module for Windows allows remote attackers to execute arbitrary code via an image with crafted ICC profile format tags.
by darkeagle
D-Link DWL-G700AP 2.00-2.01 - Denial of Service via Malformed HTTP Request
D-Link DWL-G700AP with firmware 2.00 and 2.01 allows remote attackers to cause a denial of service (CAMEO HTTP service crash) via a request composed of "GET" followed by a space and two newlines, possibly triggering the crash due to missing arguments.
by l0om
D-Link DI-524, DI-624, and DI-784 - Denial of Service via Crafted Fragmented UDP Packets
D-Link DI-524 Wireless Router, DI-624 Wireless Router, and DI-784 allow remote attackers to cause a denial of service (device reboot) via a series of crafted fragmented UDP packets, possibly involving a missing fragment.
by Aaron Portnoy
Microsoft Windows - ACLs Privilege Escalation (2)
by Andres Tarasco
Microsoft HTML Help Workshop <4.74 - Buffer Overflow
Buffer overflow in Microsoft HTML Help Workshop 4.74 and earlier allows context-dependent attackers to execute arbitrary code via a .hhp file with a long "Index file" field, possibly a related issue to CVE-2006-0564.
by k3xji
Power Daemon < 2.0.2 - Remote Code Execution via Format String in WHATIDO Variable
Format string vulnerability in powerd.c in Power Daemon (powerd) 2.0.2 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the WHATIDO variable.
by Gotfault Security
OpenVMPS 1.3 - Remote Code Execution via Format String in vmps_log
Format string vulnerability in the vmps_log function in OpenVMPS (VLAN Management Policy Server) 1.3 allows remote attackers to execute arbitrary code via unknown vectors.
by Gotfault Security
Microsoft HTML Help Workshop <4.74 - Buffer Overflow
Buffer overflow in Microsoft HTML Help Workshop 4.74 and earlier allows context-dependent attackers to execute arbitrary code via a .hhp file with a long "Index file" field, possibly a related issue to CVE-2006-0564.
by bratax
Sony Ericsson K600i V600i W800i T68i - Denial of Service via Malformed L2CAP Packet
Buffer overflow in Sony Ericsson K600i, V600i, W800i, and T68i cell phone allows remote attackers to cause a denial of service (reboot or shutdown) through a wireless Bluetooth connection via a malformed Logical Link Control and Adaptation Protocol (L2CAP) packet whose length field is less than the actual length of the packet.
by Pierre Betouin
Arescom NetDSL 1000 - Denial of Service via Telnet Connection Flood
The telnet port in Arescom NetDSL 1000 router allows remote attackers to cause a denial of service via a series of connections with long strings, which causes a large number of login failures and causes the telnet service to stop.
by Fabian Ramirez
SHOUTcast 1.9.4 - File Request 'Leaked' Format String
by crash-x
Change passwd 3.1 - Buffer Overflow via Long Command Line Arguments
Buffer overflow in Change passwd 3.1 (chpasswd) SquirrelMail plugin allows local users to execute arbitrary code via long command line arguments.
by rod hedor
Cisco Aironet Wireless Access Points - Authenticated Denial of Service via ARP Table Exhaustion
Cisco IOS before 12.3-7-JA2 on Aironet Wireless Access Points (WAP) allows remote authenticated users to cause a denial of service (termination of packet passing or termination of client connections) by sending the management interface a large number of spoofed ARP packets, which creates a large ARP table that exhausts memory, aka Bug ID CSCsc16644.
by Pasv
Eterm LibAST < 0.7 - '-X' Option Privilege Escalation
by Johnny Mast
BitComet 0.60 - '.Torrent' File Handling Remote Buffer Overflow
by Dejun Meng
MySQL <4.0.24 or 4.1.11 - Info Disclosure
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, uses predictable file names when creating temporary tables, which allows local users with CREATE TEMPORARY TABLE privileges to overwrite arbitrary files via a symlink attack.
by Marco Ivaldi
Cerberus FTP Server 2.32 - Denial of Service via Long Invalid FTP Command String
Grant Averett Cerberus FTP Server 2.32, and possibly earlier versions, allows remote attackers to cause an unspecified denial of service via a long string that does not contain a valid FTP command.
by pi3ch
Microsoft Windows - Metafile '.WMF' Arbitrary File Download (Generator)
by darkeagle
CounterPath eyeBeam SIP Softphone - Denial of Service via Long SIP INVITE Header Field
Buffer overflow in CounterPath eyeBeam SIP Softphone allows remote attackers to (1) cause a denial of service (device crash) via SIP INVITE commands with a long header field name sent during startup and (2) cause a denial of service (device hang or crash) via SIP INVITE commands with a long header field name sent during a call.
by ZwelL
HomeFtp 1.1 - Denial of Service via Long USER and PASS Commands
Helmsman Research (aka CoolUtils) HomeFtp 1.1 allows remote attackers to cause an unspecified denial of service via a long USER command combined with a long PASS command and an NLST command.
by pi3ch
xmame - Buffer Overflow via Long Command Line Arguments
Buffer overflow in certain functions in src/fileio.c and src/unix/fileio.c in xmame before 11 January 2006 may allow local users to gain privileges via a long (1) -lang, (2) -ctrlr, (3) -pb, or (4) -rec argument on many operating systems, and via a long (5) -jdev argument on Ubuntu Linux.
by Qnix
eStara Softphone 3.0.1.14-3.0.1.46 - Remote Code Execution via Long SDP Attribute Field
Buffer overflow in eStara Softphone 3.0.1.14 through 3.0.1.46 allows remote attackers to execute arbitrary code via a long attribute (aka "a") field in the SDP data of a SIP packet on UDP port 5060.
by ZwelL
By Source