Exploitdb Exploits
3,149 exploits tracked across all sources.
File - Buffer Overflow
Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).
by lem0n
CoffeeCup Software Password Wizard 4.0 - HTML Source Password Retrieval
by THR
XFree86 4.2 - 'XLOCALEDIR' Local Buffer Overflow (2)
by Guilecool & deka
XFree86 4.2 - 'XLOCALEDIR' Local Buffer Overflow (1)
by dcryptr && tarranta
Sendmail <8.12.7 - RCE
Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c.
by bysin
Sendmail <8.12.7 - RCE
Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c.
by Last Stage of Delirium
LBL Tcpdump - Denial of Service
isakmp_sub_print in tcpdump 3.6 through 3.7.1 allows remote attackers to cause a denial of service (CPU consumption) via a certain malformed ISAKMP packet to UDP port 500, which causes tcpdump to enter an infinite loop.
by The Salvia Twist
Microsoft Windows ME - XSS
Cross-site scripting (XSS) vulnerability in Help and Support Center for Microsoft Windows Me allows remote attackers to execute arbitrary script in the Local Computer security context via an hcp:// URL with the malicious script in the topic parameter.
by s0h
Electronic Arts Battlefield 1942 - Memory Corruption
Buffer overflow in the remote console (rcon) in Battlefield 1942 1.2 and 1.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long user name and password.
by greuff
Amxmod.net Amx Mod - Format String Vulnerability
Format string vulnerability in AMX 0.9.2 and earlier, a plugin for Valve Software's Half-Life Server, allows remote attackers to execute arbitrary commands via format string specifiers in the amx_say command.
by greuff
Zlib - Buffer Overflow
Buffer overflow in the gzprintf function in zlib 1.1.4, when zlib is compiled without vsnprintf or when long inputs are truncated using vsnprintf, allows attackers to cause a denial of service or possibly execute arbitrary code.
by CrZ
Zlib - Buffer Overflow
Buffer overflow in the gzprintf function in zlib 1.1.4, when zlib is compiled without vsnprintf or when long inputs are truncated using vsnprintf, allows attackers to cause a denial of service or possibly execute arbitrary code.
by Richard Kettlewel
Cisco Ios - Buffer Overflow
Buffer overflow in Cisco IOS 11.2.x to 12.0.x allows remote attackers to cause a denial of service and possibly execute commands via a large number of OSPF neighbor announcements.
by FX
Cpanel - Improper Input Validation
guestbook.cgi in cPanel 5.0 allows remote attackers to execute arbitrary commands via the template parameter.
by bob
les <2.4.1 - Buffer Overflow
Buffer overflow in les for ATM on Linux (linux-atm) before 2.4.1, if used setuid, allows local users to gain privileges via a long -f command line argument.
by Angelo Rosiello
AutomatedShops WebC 2.0/5.0 Script - Name Remote Buffer Overrun
by Carl Livitt
Hp-ux - Memory Corruption
Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument.
by Last Stage of Delirium
nethack <3.4.0 & falconseye <1.9.3 - Buffer Overflow
Buffer overflow in (1) nethack 3.4.0 and earlier, and (2) falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option.
nethack <3.4.0 & falconseye <1.9.3 - Buffer Overflow
Buffer overflow in (1) nethack 3.4.0 and earlier, and (2) falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option.
by tsao@efnet
Bitchx - Improper Input Validation
BitchX 75p3 and 1.0c16 through 1.0c20cvs allows remote attackers to cause a denial of service (segmentation fault) via a malformed RPL_NAMREPLY numeric 353 message.
by argv
Gamespy3d Gamespy 3D - Memory Corruption
Multiple GameSpy 3D 2.62 compatible gaming servers generate very large UDP responses to small requests, which allows remote attackers to use the servers as an amplifier in DDoS attacks with spoofed UDP query packets, as demonstrated using Battlefield 1942.
by Mike Kristovich
Caldera Openlinux Ebuilder - Access Control
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
by logikal
mpg123 pre0.59s - Invalid MP3 Header Memory Corruption
by Gobbles Security
By Source