Exploitdb Exploits
3,149 exploits tracked across all sources.
Half-Life StatsMe 2.6.x Plugin - MakeStats Format String
Half-Life StatsMe 2.6.x Plugin - CMD_ARGV Buffer Overflow
Half-Life ClanMod 1.80/1.81 Plugin - Remote Format String
Half-Life AdminMod 2.50 Plugin - Remote Format String
by greuff
Tanne 0.6.17 - RCE
Multiple format string vulnerabilities in the logger function in netzio.c for Tanne 0.6.17 allows remote attackers to execute arbitrary code via format string specifiers in syslog.
by dong-h0un yoU
Positive Software H-sphere - Buffer Overflow
Multiple buffer overflows in H-Sphere WebShell 2.3 allow remote attackers to execute arbitrary code via (1) a long URL content type in CGI::readFile, (2) a long path in diskusage, and (3) a long fname in flist.
by Carl Livitt
Positive Software H-sphere - Buffer Overflow
Multiple buffer overflows in H-Sphere WebShell 2.3 allow remote attackers to execute arbitrary code via (1) a long URL content type in CGI::readFile, (2) a long path in diskusage, and (3) a long fname in flist.
by Carl Livitt
rpc.walld - Solaris 2.6-9 - Local Privilege Escalation
rpc.walld (wall daemon) for Solaris 2.6 through 9 allows local users to send messages to logged on users that appear to come from arbitrary user IDs by closing stderr before executing wall, then supplying a spoofed from header.
by Brant Roman
Melange Chat System 1.10 - Buffer Overflow
Buffer overflow in Melange Chat System 1.10 allows remote attackers to cause a denial of service (chat server crash) and possibly execute arbitrary code via the msgText buffer in the chat_InterpretData function, as demonstrated via a long Nick (nickname) request.
by innerphobia
Linux kernel <2.2.x - DoS
Linux kernel 2.2.x allows local users to cause a denial of service (crash) by using the mmap() function with a PROT_READ parameter to access non-readable memory pages through the /proc/pid/mem interface.
by Michal Zalewski
MySQL <3.23.54, <4.0.6 - Privilege Escalation
The COM_CHANGE_USER command in MySQL 3.x before 3.23.54, and 4.x before 4.0.6, allows remote attackers to gain privileges via a brute force attack using a one-character password, which causes MySQL to only compare the provided password against the first character of the real password.
by Andi
Hp-ux - Buffer Overflow
Buffer overflow in swverify in HP-UX 11.0, and possibly other programs, allows local users to gain privileges via a long command line argument.
by watercloud
Hp-ux - Buffer Overflow
Buffer overflow in the Software Distributor utilities for HP-UX B.11.00 and B.11.11 allows local users to execute arbitrary code via a long LANG environment variable to setuid programs such as (1) swinstall and (2) swmodify.
by watercloud
Sun Cobalt RaQ 4 - RCE
overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP (Security Hardening Patch) installed allows remote attackers to execute arbitrary code via a POST request with shell metacharacters in the email parameter.
by grazer
Exim <4.11 - Code Injection
Format string vulnerability in daemon.c for Exim 4.x through 4.10, and 3.x through 3.36, allows exim administrative users to execute arbitrary code by modifying the pid_file_path value.
by Thomas Wana
Boozt Standard 0.9.8 - 'index.cgi' Buffer Overrun
by BrainStorm
Marcos Luiz Onisto Lib Cgi - Memory Corruption
Buffer overflow in the changevalue function in libcgi.h for Marcos Luiz Onisto Lib CGI 0.1 allows remote attackers to execute arbitrary code via a long argument.
by Xpl017Elz
Zeroo HTTP Server - Path Traversal
Directory traversal vulnerability in Zeroo web server 1.5 allows remote attackers to read arbitrary files via a .. (dot dot) in a URL GET request.
by mikecc
Mailenable - Memory Corruption
MailEnable 1.5 015 through 1.5 018 allows remote attackers to cause a denial of service (crash) via a long USER string, possibly due to a buffer overflow.
by redsand
By Source