C Exploits
3,631 exploits tracked across all sources.
Trillian 0.74i - Remote Code Execution via MSN Module Buffer Overflow
Buffer overflow in the MSN module in Trillian 0.74i allows remote MSN servers to execute arbitrary code via a long string that ends in a newline character.
by Komrade
Cerulean Studios Trillian Client 0.74 MSN Module - Remote Buffer Overflow
by Komrade
Call of Duty <= 1.4 - Denial of Service via Large Query or Reply Packet
Call of Duty 1.4 and earlier allows remote attackers to cause a denial of service (game end) via a large (1) query or (2) reply packet, which is not properly handled by the buffer overflow protection mechanism. NOTE: this issue might overlap CVE-2005-0430.
by Luigi Auriemma
AOL Instant Messenger <5.5.3595 - RCE
Buffer overflow in the goaway function in the aim:goaway URI handler for AOL Instant Messenger (AIM) 5.5, including 5.5.3595, allows remote attackers to execute arbitrary code via a long Away message.
by John Bissell
Courier-IMAP 1.6.0-2.2.1 and 3.x-3.0.3 - Remote Code Execution via Format String in auth_debug
Format string vulnerability in the auth_debug function in Courier-IMAP 1.6.0 through 2.2.1 and 3.x through 3.0.3, when login debugging (DEBUG_LOGIN) is enabled, allows remote attackers to execute arbitrary code.
by ktha
Titan FTP Server 3.21 - Denial of Service via Long FTP Command
Heap-based buffer overflow in Titan FTP 3.21 and earlier allows remote attackers to cause a denial of service (crash) via a long FTP command such as (1) CWD, (2) STAT, or (3) LIST.
by lion
WFTPD Pro Server 3.21 - Authenticated Denial of Service via Long MLIST Commands
WFTPD Pro Server 3.21 allows remote authenticated users to cause a denial of service (crash) via a series of long MLIST commands.
by lion
Ground Control II: Operation Exodus - Denial of Service via Large Packet
Ground Control II: Operation Exodus 1.0.0.7 and earlier allows remote servers to cause a denial of service (client or server crash) via a large packet, which generates a "Message too long" socket error that is treated as a critical error.
by Luigi Auriemma
Debian bsdmainutils 6.0.14 - Calendar Information Disclosure
by Steven Van Acker
D-Link DCS-900 Internet Camera - Unauthenticated IP Address Change via UDP Broadcast
D-Link DCS-900 Internet Camera listens on UDP port 62976 for an IP address, which allows remote attackers to change the IP address of the camera via a UDP broadcast packet.
by anonymous
Citadel/UX <= 6.23 - Denial of Service via Long Username
Buffer overflow in Citadel/UX 6.23 and earlier allows remote attackers to cause a denial of service via a long username.
by Nebunu
Gaucho 1.4 Build 145 - Buffer Overflow
Stack-based buffer overflow in Gaucho 1.4 Build 145 allows remote attackers to execute arbitrary code via a POP3 email with a long Content-Type header.
by Tan Chew Keong
Painkiller 1.3.1 - Buffer Overflow via Long Password
Buffer overflow in Painkiller 1.3.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password.
by Luigi Auriemma
Winamp < 5.0.4 - Remote Code Execution via Malicious Skin File
Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin file.
by Petrol Designs
sysinternals regmon < 6.11 - Denial of Service via Invalid Hook Function Pointers
NtRegmon before 6.12 allows local users to cause a denial of service (crash), while NtRegmon is running, via invalid pointers to hook functions such as ZwSetQueryValue.
by Next Generation Security
Hafiye 1.0 - Remote Terminal Escape Sequence Injection
by Serkan Akpolat
SquirrelMail <4.0 - Privilege Escalation
Buffer overflow in the chpasswd command in the Change_passwd plugin before 4.0, as used in SquirrelMail, allows local users to gain root privileges via a long user name.
by Bytes
music_daemon 0.0.3 - Denial of Service via LOAD and SHOWLIST Commands
Music daemon (musicd) 0.0.3 and earlier allows remote attackers to cause a denial of service (crash) by calling LOAD with a binary file as an argument, then calling SHOWLIST.
by Tal0n
QT <3.3.3 - Buffer Overflow
Heap-based buffer overflow in the BMP image format parser for the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code.
by infamous41md
Ipswitch IMail <6.0 - Info Disclosure
Ipswitch IMail 5.0 and 6.0 uses weak encryption to store passwords in registry keys, which allows local attackers to read passwords for e-mail accounts.
by Adik
IPD (Integrity Protection Driver) - Denial of Service
by anonymous
gv - Buffer Overflow via Long Postscript File Values
Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orientation, (4) PageOrder, or (5) Pages value.
by infamous41md
By Source