Exploitdb Exploits
3,138 exploits tracked across all sources.
OpenBSD 3.3/3.4 - 'sysctl' Local Denial of Service
by anonymous
OpenBSD 3.3-3.4 - Denial of Service and Possible Remote Code Execution via Invalid Program Header
OpenBSD kernel 3.3 and 3.4 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code in 3.4 via a program with an invalid header that is not properly handled by (1) ibcs2_exec.c in the iBCS2 emulation (compat_ibcs2) or (2) exec_elf.c, which leads to a stack-based buffer overflow.
by Sinan Eren
Windows Workstation Service - Buffer Overflow
Stack-based buffer overflow in a logging function for Windows Workstation Service (WKSSVC.DLL) allows remote attackers to execute arbitrary code via RPC calls that cause long entries to be written to a debug log file ("NetSetup.LOG"), as demonstrated using the NetAddAlternateComputerName API.
by snooq
Windows NT-Server 2003 - Buffer Overflow
Buffer overflow in a function in User32.dll on Windows NT through Server 2003 allows local users to execute arbitrary code via long (1) LB_DIR messages to ListBox or (2) CB_DIR messages to ComboBox controls in a privileged application.
by xCrZx
Microsoft FrontPage Server Extensions <2002 - RCE
Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
by Adik
TerminatorX 3.81 - Local Stack Overflow / Local Privilege Escalation
by Li0n7
Windows Workstation Service - Buffer Overflow
Stack-based buffer overflow in a logging function for Windows Workstation Service (WKSSVC.DLL) allows remote attackers to execute arbitrary code via RPC calls that cause long entries to be written to a debug log file ("NetSetup.LOG"), as demonstrated using the NetAddAlternateComputerName API.
by eEYe
wireless_tools - Buffer Overflow via Long OUT Environment Variable
Buffer overflow in iwconfig, when installed setuid, allows local users to execute arbitrary code via a long OUT environment variable.
by heka
Winace UnAce 2.2 - Command Line Argument Buffer Overflow (2)
by Li0n7
Winace UnAce 2.2 - Command Line Argument Buffer Overflow (1)
by demz
Hylafax <= 4.1.7 - Remote Code Execution via Format String Vulnerability
Format string vulnerability in hfaxd for Hylafax 4.1.7 and earlier allows remote attackers to execute arbitrary code.
by Sebastian Krahmer
EPIC IRC Client <2.002-0 - DoS/Code Injection
EPIC IRC Client (EPIC4) pre2.002, pre2.003, and possibly later versions, allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via a CTCP request from a large nickname, which causes an incorrect length calculation.
by Li0n7
Windows 2000 SP3-SP4 - Denial of Service and Privilege Escalation via RPC DCOM Interface
The RPC DCOM interface in Windows 2000 SP3 and SP4 allows remote attackers to cause a denial of service (crash), and local attackers to use the DoS to hijack the epmapper pipe to gain privileges, via certain messages to the __RemoteGetClassObject interface that cause a NULL pointer to be passed to the PerformScmStage function.
by ins1der
TerminatorX 3.8 - Multiple Command-Line and Environment Buffer Overrun Vulnerabilities (3)
by m00 security
TerminatorX 3.8 - Multiple Command-Line and Environment Buffer Overrun Vulnerabilities (2)
by Bobby
TerminatorX 3.8 - Multiple Command-Line and Environment Buffer Overrun Vulnerabilities (1)
by c0wboy
OpenBSD 3.3-3.4 - Denial of Service and Possible Remote Code Execution via Invalid Program Header
OpenBSD kernel 3.3 and 3.4 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code in 3.4 via a program with an invalid header that is not properly handled by (1) ibcs2_exec.c in the iBCS2 emulation (compat_ibcs2) or (2) exec_elf.c, which leads to a stack-based buffer overflow.
by Scott Bartram
Help in NIPrint LPD-LPR Print Server <4.10 - Privilege Escalation
Help in NIPrint LPD-LPR Print Server 4.10 and earlier executes Windows Explorer with SYSTEM privileges, which allows local users to gain privileges.
by xCrZx
OpenBSD 2.x/3.x - Local Malformed Binary Execution Denial of Service
by Georgi Guninski
cfengine 2.x - Remote Code Execution via Modified Packet Length Values
Buffer overflow in net.c for cfengine 2.x before 2.0.8 allows remote attackers to execute arbitrary code via certain packets with modified length values, which is trusted by the ReceiveTransaction function when using a buffer provided by the BusyWithConnection function.
by snooq
NullSoft Shoutcast Server 1.9.2 - Denial of Service via Long icy-name or icy-url Parameters
Buffer overflow in NullSoft Shoutcast Server 1.9.2 allows local users to cause a denial of service via (1) icy-name followed by a long server name or (2) icy-url followed by a long URL.
by exworm
mathopd 1.2-1.5b13 - Buffer Overflow via Long HTTP Path
Buffer overflow in the prepare_reply function in request.c for Mathopd 1.2 through 1.5b13, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via an HTTP request with a long path.
by aion
BRS WebWeaver <= 1.06 - Buffer Overflow via Long User-Agent Header
Buffer overflow in BRS WebWeaver 1.06 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP request with a long User-Agent header.
by D4rkGr3y
fileutils - Denial of Service via Large -w Value
ls in the fileutils or coreutils packages allows local users to consume a large amount of memory via a large -w value, which can be remotely exploited via applications that use ls, such as wu-ftpd.
by Angelo Rosiello
Croteam Serioussam - Denial of Service
Croteam Serious Sam demo test 2 2.1a, Serious Sam: the First Encounter 1.05, and Serious Sam: the Second Encounter 1.05 allow remote attackers to cause a denial of service (crash or freeze) via a TCP packet with an invalid first parameter.
by Luigi Auriemma
By Source