Exploitdb Exploits
3,138 exploits tracked across all sources.
ircd-hybrid < 7.0.1 and ircd-ratbox < 1.5.1 - Unauthenticated Denial of Service via Rate-Limit Bypass
Non-registered IRC users using (1) ircd-hybrid 7.0.1 and earlier, (2) ircd-ratbox 1.5.1 and earlier, or (3) ircd-ratbox 2.0rc6 and earlier do not have a rate-limit imposed, which could allow remote attackers to cause a denial of service by repeatedly making requests, which are slowly dequeued.
by Erik Sperling Johansen
FreeIPS 1.0 Protected Service - Denial of Service
CVS 1.11.x-1.11.16 and 1.12.x-1.12.8 - Remote Code Execution via Format String in Wrapper Line
Format string vulnerability in wrapper.c in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16 allows remote attackers with CVSROOT commit access to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a wrapper line.
by Gyan Chawdhary
Riverdeep FoolProof Security <3.9.x - Info Disclosure
Riverdeep FoolProof Security 3.9.x on Windows 98 and Windows ME uses weak cryptography (arithmetic and XOR operations) to relate the Control password to the Administrator password, which allows local users to calculate the Administrator password if they know the Control password and password recovery key.
by Cyrillium Security
TildeSlash Monit 1-4 - Authentication Handling Buffer Overflow
by Nilanjan De
Linksys BEFSR11 BEFSR41 BEFSR81 BEFSRU31 - Information Disclosure via DHCP BOOTP Reply Buffer
DHCP on Linksys BEFSR11, BEFSR41, BEFSR81, and BEFSRU31 Cable/DSL Routers, firmware version 1.45.7, does not properly clear previously used buffer contents in a BOOTP reply packet, which allows remote attackers to obtain sensitive information.
by Jon Hart
orenosv_http_ftp_server 0.5.9f - Denial of Service via Long HTTP GET Request
Orenosv 0.5.9f allows remote attackers to cause a denial of service (crash) via a long HTTP GET request.
by badpack3t
VocalTec VGW120 and VGW480 - Denial of Service in ASN.1/H.323/H.225 Stack
Unknown vulnerability in the ASN.1/H.323/H.225 stack of VocalTec VGW120 and VGW480 allows remote attackers to cause a denial of service.
by Alexander
Sasser Worm ftpd - Remote Buffer Overflow (port 5554)
by mandragore
Symantec Norton Internet Security <2004 - DoS
The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself.
by houseofdabus
NetBSD/FreeBSD - Privilege Escalation
The systrace_exit function in the systrace utility for NetBSD-current and 2.0 before April 16, 2004, and certain FreeBSD ports, does not verify the owner of the /dec/systrace connection before setting euid to 0, which allows local users to gain root privileges.
by Stefan Esser
MyWeb 3.3 - Buffer Overflow via Long HTTP GET Request
Buffer overflow in MyWeb 3.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request.
by badpack3t
Exim < 4 - Stack-based Buffer Overflow via Sender Verification
Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code during sender verification.
by newroot
XChat 1.8.0-2.0.8 - Remote Code Execution via Socks-5 Proxy Buffer Overflow
Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows remote attackers to execute arbitrary code.
by vade79
Pound <= 1.5 - Remote Code Execution via Format String in Logmsg Function
Format string vulnerability in the logmsg function in svc.c for Pound 1.5 and earlier allows remote attackers to execute arbitrary code via format string specifiers in syslog messages.
by Nilanjan De
pax_linux - Denial of Service via arch_get_unmapped_area Infinite Loop
The arch_get_unmapped_area function in mmap.c in the PaX patches for Linux kernel 2.6, when Address Space Layout Randomization (ASLR) is enabled, allows local users to cause a denial of service (infinite loop) via unknown attack vectors.
by Shadowinteger
McAfee Antivirus Engine - Buffer Overflow via Crafted LHA Files
Buffer overflow in McAfee Scan Engine 4320 with DAT version before 4357 allows remote attackers to execute arbitrary code via crafted LHA files.
by N4rK07IX
Microsoft Windows - Buffer Overflow
Stack-based buffer overflow in certain Active Directory service functions in LSASRV.DLL of the Local Security Authority Subsystem Service (LSASS) in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, XP SP1, Server 2003, NetMeeting, Windows 98, and Windows ME, allows remote attackers to execute arbitrary code via a packet that causes the DsRolerUpgradeDownlevelServer function to create long debug entries for the DCPROMO.LOG log file, as exploited by the Sasser worm.
by houseofdabus
Microsoft Windows - Buffer Overflow
Stack-based buffer overflow in certain Active Directory service functions in LSASRV.DLL of the Local Security Authority Subsystem Service (LSASS) in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, XP SP1, Server 2003, NetMeeting, Windows 98, and Windows ME, allows remote attackers to execute arbitrary code via a packet that causes the DsRolerUpgradeDownlevelServer function to create long debug entries for the DCPROMO.LOG log file, as exploited by the Sasser worm.
by sbaa
Linux kernel <2.6 - Privilege Escalation
Integer signedness error in the cpufreq proc handler (cpufreq_procctl) in Linux kernel 2.6 allows local users to gain privileges.
by Brad Spengler
Juniper Junos - Denial of Service via TCP RST Packet Injection
TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.
by Paul A. Watson
Unreal Engine - Directory Traversal and Arbitrary File Write via UMOD File
Directory traversal vulnerability in manifest.ini in Unreal engine allows remote attackers to overwrite arbitrary files via .. (dot dot) sequences in a UMOD (Unreal MOD) file.
by Luigi Auriemma
Microsoft Windows and NetMeeting - Remote Code Execution via PCT Handshake Packet
Buffer overflow in the Private Communications Transport (PCT) protocol implementation in the Microsoft SSL library, as used in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, XP SP1, Server 2003, NetMeeting, Windows 98, and Windows ME, allows remote attackers to execute arbitrary code via PCT 1.0 handshake packets.
by Johnny Cyberpunk
Linux kernel <2.6.3 - DoS/Buffer Overflow
Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows local users to cause a denial of service (crash) or execute arbitrary code via the MCAST_MSFILTER socket option.
by Julien Tinnes
SquirrelMail <4.0 - Privilege Escalation
Buffer overflow in the chpasswd command in the Change_passwd plugin before 4.0, as used in SquirrelMail, allows local users to gain root privileges via a long user name.
by x314
By Source