Exploitdb Exploits
3,138 exploits tracked across all sources.
xsok 1.02 - Local Privilege Escalation via Long LANG Environment Variable or -xsokdir Argument
Multiple buffer overflows in xsok 1.02 allows local users to gain privileges via (1) a long LANG environment variable, or (2) a long -xsokdir command line argument, a different vulnerability than CVE-2003-0949.
by c0wboy
Apple Mac OSX 10.x - SecurityServer Daemon Local Denial of Service
by Matt Burnett
xsok 1.02 - Local Privilege Escalation via Long LANG Environment Variable or -xsokdir Argument
Multiple buffer overflows in xsok 1.02 allows local users to gain privileges via (1) a long LANG environment variable, or (2) a long -xsokdir command line argument, a different vulnerability than CVE-2003-0949.
by N2n-Hacker
Jordan Windows Telnet Server 1.0/1.2 - 'Username' Stack Buffer Overrun (2)
by D4rkGr3y
Alt-N MDaemon 6.5.2-6.8.5 - Stack-Based Buffer Overflow via Long From Parameter
Stack-based buffer overflow in FORM2RAW.exe in Alt-N MDaemon 6.5.2 through 6.8.5 allows remote attackers to execute arbitrary code via a long From parameter to Form2Raw.cgi.
by Rosiello Security
Alt-N MDaemon 6.5.2-6.8.5 - Stack-Based Buffer Overflow via Long From Parameter
Stack-based buffer overflow in FORM2RAW.exe in Alt-N MDaemon 6.5.2 through 6.8.5 allows remote attackers to execute arbitrary code via a long From parameter to Form2Raw.cgi.
by Behrang Fouladi
Cyrus IMSPD 1.7 - 'abook_dbname' Remote Code Execution
by SpikE
Apache mod_php - Local Privilege Escalation
The mod_php module for the Apache HTTP Server allows local users with write access to PHP scripts to send signals to the server's process group and use the server's file descriptors, as demonstrated by sending a STOP signal, then intercepting incoming connections on the server's TCP port. NOTE: the PHP developer has disputed this vulnerability, saying "The opened file descriptors are opened by Apache. It is the job of Apache to protect them ... Not a bug in PHP.
by frauk\x41ser
Apache mod_php - Local Privilege Escalation
The mod_php module for the Apache HTTP Server allows local users with write access to PHP scripts to send signals to the server's process group and use the server's file descriptors, as demonstrated by sending a STOP signal, then intercepting incoming connections on the server's TCP port. NOTE: the PHP developer has disputed this vulnerability, saying "The opened file descriptors are opened by Apache. It is the job of Apache to protect them ... Not a bug in PHP.
by Steve Grubb
Messenger Service - Buffer Overflow
The Messenger Service for Windows NT through Server 2003 does not properly verify the length of the message, which allows remote attackers to execute arbitrary code via a buffer overflow attack.
by MrNice
DameWare Mini Remote Control < 3.73 - Unauthenticated Remote Code Execution via Long Pre-Authentication Request
Buffer overflow in DameWare Mini Remote Control before 3.73 allows remote attackers to execute arbitrary code via a long pre-authentication request to TCP port 6129.
by kralor
DameWare Mini Remote Control < 3.73 - Unauthenticated Remote Code Execution via Long Pre-Authentication Request
Buffer overflow in DameWare Mini Remote Control before 3.73 allows remote attackers to execute arbitrary code via a long pre-authentication request to TCP port 6129.
by kralor
DameWare Mini Remote Control < 3.73 - Unauthenticated Remote Code Execution via Long Pre-Authentication Request
Buffer overflow in DameWare Mini Remote Control before 3.73 allows remote attackers to execute arbitrary code via a long pre-authentication request to TCP port 6129.
by Adik
Cyrus IMSP Daemon 1.x - Remote Buffer Overflow
by Carlos Barros
Apache 1.3.x < 2.0.48 mod_userdir - Remote Users Disclosure
by m00
Linux kernel <2.4.22 - Privilege Escalation
Integer overflow in the do_brk function for the brk system call in Linux kernel 2.4.22 and earlier allows local users to gain root privileges.
by Wojciech Purczynski
Windows Workstation Service - Buffer Overflow
Stack-based buffer overflow in a logging function for Windows Workstation Service (WKSSVC.DLL) allows remote attackers to execute arbitrary code via RPC calls that cause long entries to be written to a debug log file ("NetSetup.LOG"), as demonstrated using the NetAddAlternateComputerName API.
by fiNis
Jason Maloney's Guestbook 3.0 - Remote Command Execution
by shaun2k2
Applied Watch Command Center - CSRF
Applied Watch Command Center allows remote attackers to conduct unauthorized activities without authentication, such as (1) add new users to a console, as demonstrated using appliedsnatch.c, or (2) add spurious IDS rules to sensors, as demonstrated using addrule.c.
by Bugtraq Security
Applied Watch Command Center - CSRF
Applied Watch Command Center allows remote attackers to conduct unauthorized activities without authentication, such as (1) add new users to a console, as demonstrated using appliedsnatch.c, or (2) add spurious IDS rules to sensors, as demonstrated using addrule.c.
by Bugtraq Security
Thomson Cablemodem TCM315 - Denial of Service
by Shell security group
GEdit 2.0/2.2 - Large IOStream File Memory Corruption
by MegaHz
OpenBSD 3.3/3.4 - semctl/semop Local Unexpected Array Indexing
by anonymous
mod_gzip 1.3.26.1a - Buffer Overflow
Stack-based buffer overflow in mod_gzip_printf for mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode, allows remote attackers to execute arbitrary code via a long filename in a GET request with an "Accept-Encoding: gzip" header.
by xCrZx
By Source