Exploitdb Exploits

3,149 exploits tracked across all sources.

Sort: Activity Stars
CVE-2004-1437 EXPLOITDB c VERIFIED
Pavuk - Buffer Overflow
Multiple buffer overflows in the digest authentication functionality in Pavuk 0.9.28-r2 and earlier allow remote attackers to execute arbitrary code.
by infamous41md
CVE-2004-0633 EXPLOITDB c VERIFIED
Ethereal <0.10.4 - DoS
The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of service (process abort) via an integer overflow.
by Rémi Denis-Courmont
CVE-2004-2646 EXPLOITDB c VERIFIED
Free Web Chat 2.0 - DoS
The addUser function in UserManager.java in Free Web Chat 2.0 allows remote attackers to cause a denial of service (uncaught NullPointerException) via unknown attack vectors that cause the usrName variable to be null.
by Donato Ferrante
CVE-2004-2523 EXPLOITDB c VERIFIED
OpenFTPD <0.30.2 - RCE
Format string vulnerability in the msg command (cat_message function in msg.c) in OpenFTPD 0.30.2 and earlier allows remote authenticated users to execute arbitrary code via format string specifiers in the message argument.
by infamous41md
CVE-2004-0557 EXPLOITDB c VERIFIED
SoX <12.17.4 - RCE
Multiple buffer overflows in the st_wavstartread function in wav.c for Sound eXchange (SoX) 12.17.2 through 12.17.4 allow remote attackers to execute arbitrary code via certain WAV file header fields.
by Rave
CVE-2004-0415 EXPLOITDB c VERIFIED
Linux kernel - Info Disclosure
Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory.
by Paul Starzetz
CVE-2004-2523 EXPLOITDB c VERIFIED
OpenFTPD <0.30.2 - RCE
Format string vulnerability in the msg command (cat_message function in msg.c) in OpenFTPD 0.30.2 and earlier allows remote authenticated users to execute arbitrary code via format string specifiers in the message argument.
by Andi
CVE-2004-1705 EXPLOITDB c VERIFIED
Citadel UX - Buffer Overflow
Buffer overflow in Citadel/UX 6.23 and earlier allows remote attackers to cause a denial of service via a long username.
by CoKi
CVE-2004-0493 EXPLOITDB c VERIFIED
Apache httpd 2.0.49 - DoS/Buffer Overflow
The ap_get_mime_headers_core function in Apache httpd 2.0.49 allows remote attackers to cause a denial of service (memory exhaustion), and possibly an integer signedness error leading to a heap-based buffer overflow on 64 bit systems, via long header lines with large numbers of space or tab characters.
by anonymous
CVE-2004-0212 EXPLOITDB c VERIFIED
Avaya Ip600 Media Servers - Buffer Overflow
Stack-based buffer overflow in the Task Scheduler for Windows 2000 and XP, and Internet Explorer 6 on Windows NT 4.0, allows local or remote attackers to execute arbitrary code via a .job file containing long parameters, as demonstrated using Internet Explorer and accessing a .job file on an anonymous share.
by houseofdabus
EIP-2026-103088 EXPLOITDB c VERIFIED
Citadel/UX 5.9/6.x - 'Username' Remote Buffer Overflow (2)
by Nebunu
EIP-2026-103087 EXPLOITDB c VERIFIED
Citadel/UX 5.9/6.x - 'Username' Remote Buffer Overflow (1)
by CoKi
EIP-2026-103099 EXPLOITDB c VERIFIED
Drcat 0.5.0-beta - 'drcatd' Remote Code Execution
by Taif
CVE-2004-0213 EXPLOITDB HIGH c VERIFIED
Microsoft Windows 2000 - Missing Authentication
Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sends a Windows message to cause Utility Manager to launch winhlp32 by directly accessing the context sensitive help and bypassing the GUI, then sending another message to winhlp32 in order to open a user-selected file, a different vulnerability than CVE-2003-0908.
by kralor
CVSS 7.8
EIP-2026-116027 EXPLOITDB c VERIFIED
OverByte ICS FTP Server - Remote Denial of Service
by ATmaCA
CVE-2004-0735 EXPLOITDB c VERIFIED
Medal of Honor - Buffer Overflow
Buffer overflow in Medal of Honor (1) Allied Assault 1.11v9 and earlier, (2) Breakthrough 2.40b and earlier, and (3) Spearhead 2.15 and earlier, when playing on a Local Area Network (LAN), allows remote attackers to execute arbitrary code via vectors such as (1) the getinfo query, (2) the connect packet, and other unknown vectors.
by Luigi Auriemma
CVE-2004-0511 EXPLOITDB c VERIFIED
MMDF <5.0.7 - DoS
Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a null dereference.
by Ramon de C Valle
EIP-2026-105254 EXPLOITDB c VERIFIED
Artmedic Webdesign Kleinanzeigen Script - Remote File Inclusion
by Adam Simuntis
CVE-2004-0212 EXPLOITDB c VERIFIED
Avaya Ip600 Media Servers - Buffer Overflow
Stack-based buffer overflow in the Task Scheduler for Windows 2000 and XP, and Internet Explorer 6 on Windows NT 4.0, allows local or remote attackers to execute arbitrary code via a .job file containing long parameters, as demonstrated using Internet Explorer and accessing a .job file on an anonymous share.
by anonymous
CVE-2004-0213 EXPLOITDB HIGH c VERIFIED
Microsoft Windows 2000 - Missing Authentication
Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sends a Windows message to cause Utility Manager to launch winhlp32 by directly accessing the context sensitive help and bypassing the GUI, then sending another message to winhlp32 in order to open a user-selected file, a different vulnerability than CVE-2003-0908.
by kralor
CVSS 7.8
CVE-2004-0213 EXPLOITDB HIGH c VERIFIED
Microsoft Windows 2000 - Missing Authentication
Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sends a Windows message to cause Utility Manager to launch winhlp32 by directly accessing the context sensitive help and bypassing the GUI, then sending another message to winhlp32 in order to open a user-selected file, a different vulnerability than CVE-2003-0908.
by bkbll
CVSS 7.8
CVE-2004-0210 EXPLOITDB HIGH c VERIFIED
Microsoft Interix - Buffer Overflow
The POSIX component of Microsoft Windows NT and Windows 2000 allows local users to execute arbitrary code via certain parameters, possibly by modifying message length values and causing a buffer overflow.
by bkbll
CVSS 7.8
CVE-2004-0213 EXPLOITDB HIGH c VERIFIED
Microsoft Windows 2000 - Missing Authentication
Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sends a Windows message to cause Utility Manager to launch winhlp32 by directly accessing the context sensitive help and bypassing the GUI, then sending another message to winhlp32 in order to open a user-selected file, a different vulnerability than CVE-2003-0908.
by Cesar Cerrudo
CVSS 7.8
CVE-2004-2631 EXPLOITDB c VERIFIED
phpMyAdmin <2.5.8 - Command Injection
Eval injection vulnerability in left.php in phpMyAdmin 2.5.1 up to 2.5.7, when LeftFrameLight is FALSE, allows remote attackers to execute arbitrary PHP code via a crafted table name.
by Nasir Simbolon
CVE-2004-0659 EXPLOITDB c VERIFIED
MPlayer <1.0pre4 - RCE
Buffer overflow in TranslateFilename for common.c in MPlayer 1.0pre4 allows remote attackers to execute arbitrary code via a long file name.
by c0ntex
By Source
All 3,149 Exploitdb 50,121 Writeup 46,832 Nomisec 21,205 Metasploit 3,189 Github 2,268 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,746 c 3,550 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 73 go 41 postscript 25 xml 24