C Exploits

3,631 exploits tracked across all sources.

Sort: Activity Stars
CVE-2004-1500 EXPLOITDB c VERIFIED
Freeform Interactive Purge Jihad - Denial of Service
Format string vulnerability in the Lithtech engine, as used in multiple games, allows remote authenticated users to cause a denial of service (application crash) via format string specifiers in (1) a nickname or (2) a message.
by Luigi Auriemma
EIP-2026-115047 EXPLOITDB c VERIFIED
Chesapeake TFTP Server 1.0 - Directory Traversal / Denial of Service (PoC)
by Luigi Auriemma
CVE-2004-1636 EXPLOITDB c VERIFIED
WvTftp 0.9 - Remote Code Execution via Long TFTP Option String
Heap-based buffer overflow in the WvTFTPServer::new_connection function in wvtftpserver.cc for WvTftp 0.9 allows remote attackers to execute arbitrary code via a long option string in a TFTP packet.
by infamous41md
CVE-2004-1493 EXPLOITDB c VERIFIED
Master of Orion III <= 1.2.5 - Denial of Service via Long Nickname
Master of Orion III 1.2.5 and earlier allows remote attackers to cause a denial of service (server crash) via multiple connections with long nicknames, possibly triggering a buffer overflow.
by Luigi Auriemma
CVE-2004-0510 EXPLOITDB c VERIFIED
SCO OpenServer 5.0.6-5.0.7 - Buffer Overflow via execmail
Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program.
by Ramon de C Valle
CVE-2004-0989 EXPLOITDB c VERIFIED
libXML 2.6.12-2.6.13 - Buffer Overflow
Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote attackers to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy URL containing FTP data that is not properly handled by the xmlNanoFTPScanProxy function, and other overflows related to manipulation of DNS length values, including (3) xmlNanoFTPConnect, (4) xmlNanoHTTPConnectHost, and (5) xmlNanoHTTPConnectHost.
by Sean
CVE-2004-0110 EXPLOITDB c VERIFIED
SGI Propack - Buffer Overflow
Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remote attackers to execute arbitrary code via a long URL.
by infamous41md
CVE-2004-0990 EXPLOITDB c VERIFIED
GD Graphics Library libgd 2.0.28 - RCE/DoS
Integer overflow in GD Graphics Library libgd 2.0.28 (libgd2), and possibly other versions, allows remote attackers to cause a denial of service and possibly execute arbitrary code via PNG image files with large image rows values that lead to a heap-based buffer overflow in the gdImageCreateFromPngCtx function, a different set of vulnerabilities than CVE-2004-0941.
by anonymous
CVE-2004-1484 EXPLOITDB c VERIFIED
socat 1.4.0.3 - Remote Code Execution via Format String in Syslog Message
Format string vulnerability in the _msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to execute arbitrary code via format string specifiers in a syslog message.
by CoKi
CVE-2004-1595 EXPLOITDB c VERIFIED
ShixxNote 6.net build 117 - Buffer Overflow via Long Font Field
Buffer overflow in ShixxNote 6.net build 117 allows remote attackers to execute arbitrary code via a long font field.
by class101
CVE-2004-0940 EXPLOITDB HIGH c VERIFIED
HP-UX - Buffer Overflow in mod_include get_tag Function
Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents to execute arbitrary code as the apache user via SSI (XSSI) documents that trigger a length calculation error.
by xCrZx
CVSS 7.8
CVE-2004-0209 EXPLOITDB c VERIFIED
Microsoft Windows 2000, Windows XP, and Windows Server 2003 - Remote Code Execution via WMF/EMF Image Processing
Unknown vulnerability in the Graphics Rendering Engine processes of Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via (1) Windows Metafile (WMF) or (2) Enhanced Metafile (EMF) image formats that involve "an unchecked buffer."
by houseofdabus
EIP-2026-102789 EXPLOITDB c VERIFIED
BitchX 1.0c19 - Local Privilege Escalation
by Sha0
CVE-2004-1558 EXPLOITDB c VERIFIED
YPOPs! 0.4-0.6 - Stack-Based Buffer Overflow via Long POP3 USER Command or SMTP Request
Multiple stack-based buffer overflows in YPOPs! (aka YahooPOPS) 0.4 through 0.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) POP3 USER command or (2) SMTP request.
by Diabolic Crab
CVE-2004-0940 EXPLOITDB HIGH c VERIFIED
HP-UX - Buffer Overflow in mod_include get_tag Function
Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents to execute arbitrary code as the apache user via SSI (XSSI) documents that trigger a length calculation error.
by xCrZx
CVSS 7.8
CVE-2004-1602 EXPLOITDB c VERIFIED
ProFTPD 1.2.0-1.2.10 - Username Enumeration via Timing Discrepancy
ProFTPD 1.2.x, including 1.2.8 and 1.2.10, responds in a different amount of time when a given username exists, which allows remote attackers to identify valid usernames by timing the server response.
by Leon Juranic
CVE-2004-1898 EXPLOITDB c VERIFIED
Monit 1.4-4.2 - Stack-Based Buffer Overflow via Long Username
Stack-based buffer overflow in the administration interface in Monit 1.4 through 4.2 allows remote attackers to execute arbitrary code via a long username.
by rtk
CVE-2004-1558 EXPLOITDB c VERIFIED
YPOPs! 0.4-0.6 - Stack-Based Buffer Overflow via Long POP3 USER Command or SMTP Request
Multiple stack-based buffer overflows in YPOPs! (aka YahooPOPS) 0.4 through 0.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) POP3 USER command or (2) SMTP request.
by class101
CVE-2004-2176 EXPLOITDB c VERIFIED
Microsoft Windows XP SP2 - Auth Bypass
The Internet Connection Firewall (ICF) in Microsoft Windows XP SP2 is configured by default to trust sessmgr.exe, which allows local users to use sessmgr.exe to create a local listening port that bypasses the ICF access controls.
by americanidiot
CVE-2004-1561 EXPLOITDB c VERIFIED
Icecast <= 2.0.1 - Remote Code Execution via HTTP Header Overflow
Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a large number of headers.
by K-C0d3r
CVE-2004-1587 EXPLOITDB c VERIFIED
Monolith Productions Games - Denial of Service via Long Gamespy Query
Buffer overflow in Monolith games including (1) Alien versus Predator 2 1.0.9.6 and earlier, (2) Blood 2 2.1 and earlier, (3) No one lives forever 1.004 and earlier and (4) Shogo 2.2 and earlier allows remote attackers to cause a denial of service (application crash) via a long secure Gamespy query.
by Luigi Auriemma
CVE-2004-1561 EXPLOITDB c VERIFIED
Icecast <= 2.0.1 - Remote Code Execution via HTTP Header Overflow
Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a large number of headers.
by Delikon
CVE-2004-1560 EXPLOITDB c VERIFIED
Microsoft SQL Server 7.0 - Denial of Service via Long TCP Request
Microsoft SQL Server 7.0 allows remote attackers to cause a denial of service (mssqlserver service halt) via a long request to TCP port 1433, possibly triggering a buffer overflow.
by securma massine
CVE-2004-0964 EXPLOITDB c VERIFIED
Zinf <2.2.1 - Remote Code Execution
Buffer overflow in Zinf 2.2.1 on Windows, and other older versions for Linux, allows remote attackers or local users to execute arbitrary code via certain values in a .pls file.
by Delikon
EIP-2026-118131 EXPLOITDB c VERIFIED
WinRAR 1.0 - Local Buffer Overflow
by ATmaCA
By Source
All 3,631 Writeup 62,466 Exploitdb 50,076 Nomisec 22,446 Github 3,667 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,592 ruby 6,006 c 3,631 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 133 go 73 postscript 25 typescript 25