C Exploits

3,560 exploits tracked across all sources.

Sort: Activity Stars
CVE-2004-0330 EXPLOITDB c VERIFIED
Serv-U ftp <5.0.0.4 - RCE
Buffer overflow in Serv-U ftp before 5.0.0.4 allows remote authenticated users to execute arbitrary code via a long time zone argument to the MDTM command.
by lion
CVE-2004-0313 EXPLOITDB c VERIFIED
Psoproxy Server - Buffer Overflow
Buffer overflow in PSOProxy 0.91 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long HTTP request, as demonstrated using a long (1) GET argument or (2) method name.
by Rave
CVE-2004-0326 EXPLOITDB c VERIFIED
Proxy-pro Professional Gatekeeper - Buffer Overflow
Buffer overflow in the web proxy for GateKeeper Pro 4.7 allows remote attackers to execute arbitrary code via a long GET request.
by kralor
CVE-2004-0330 EXPLOITDB c VERIFIED
Serv-U ftp <5.0.0.4 - RCE
Buffer overflow in Serv-U ftp before 5.0.0.4 allows remote authenticated users to execute arbitrary code via a long time zone argument to the MDTM command.
by shaun2k2
CVE-2004-0330 EXPLOITDB c VERIFIED
Serv-U ftp <5.0.0.4 - RCE
Buffer overflow in Serv-U ftp before 5.0.0.4 allows remote authenticated users to execute arbitrary code via a long time zone argument to the MDTM command.
by shaun2k2
EIP-2026-115145 EXPLOITDB c VERIFIED
Digital Reality Game Engine 1.0.x - Remote Denial of Service
by Luigi Auriemma
CVE-2004-0326 EXPLOITDB c VERIFIED
Proxy-pro Professional Gatekeeper - Buffer Overflow
Buffer overflow in the web proxy for GateKeeper Pro 4.7 allows remote attackers to execute arbitrary code via a long GET request.
by kralor
CVE-2004-0159 EXPLOITDB c VERIFIED
Samhain Labs Hsftp - Denial of Service
Format string vulnerability in hsftp 1.11 allows remote authenticated users to cause a denial of service and possibly execute arbitrary code via file names containing format string characters that are not properly handled when executing an "ls" command.
CVE-2004-0158 EXPLOITDB c VERIFIED
Lgames Lbreakout2 - Buffer Overflow
Buffer overflow in lbreakout2 allows local users to gain 'games' group privileges via a large HOME environment variable to (1) editor.c, (2) theme.c, (3) manager.c, (4) config.c, (5) game.c, (6) levels.c, or (7) main.c.
by Li0n7
CVE-2004-0313 EXPLOITDB c VERIFIED
Psoproxy Server - Buffer Overflow
Buffer overflow in PSOProxy 0.91 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long HTTP request, as demonstrated using a long (1) GET argument or (2) method name.
by NoRpiuS
CVE-2004-0313 EXPLOITDB c VERIFIED
Psoproxy Server - Buffer Overflow
Buffer overflow in PSOProxy 0.91 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long HTTP request, as demonstrated using a long (1) GET argument or (2) method name.
by Li0n7
CVE-2004-0313 EXPLOITDB c VERIFIED
Psoproxy Server - Buffer Overflow
Buffer overflow in PSOProxy 0.91 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long HTTP request, as demonstrated using a long (1) GET argument or (2) method name.
by PaLbOsA
CVE-2004-0077 EXPLOITDB c VERIFIED
Linux <2.2.25, <2.4.24, <2.6.2 - Privilege Escalation
The do_mremap function for the mremap system call in Linux 2.2 to 2.2.25, 2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value from the do_munmap function when the maximum number of VMA descriptors is exceeded, which allows local users to gain root privileges, a different vulnerability than CAN-2003-0985.
by Christophe Devine
CVE-2004-0286 EXPLOITDB c VERIFIED
Robotftp Server - Buffer Overflow
Buffer overflow in RobotFTP 1.0 and 2.0 beta 1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long username.
by NoRpiuS
CVE-2004-0286 EXPLOITDB c VERIFIED
Robotftp Server - Buffer Overflow
Buffer overflow in RobotFTP 1.0 and 2.0 beta 1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long username.
by gsicht
CVE-2003-0818 EXPLOITDB c VERIFIED
Microsoft ASN.1 library - RCE
Multiple integer overflows in Microsoft ASN.1 library (MSASN1.DLL), as used in LSASS.EXE, CRYPT32.DLL, and other Microsoft executables and libraries on Windows NT 4.0, 2000, and XP, allow remote attackers to execute arbitrary code via ASN.1 BER encodings with (1) very large length fields that cause arbitrary heap data to be overwritten, or (2) modified bit strings.
by Christophe Devine
CVE-2004-0292 EXPLOITDB c VERIFIED
Karjasoft Sami HTTP Server - Buffer Overflow
Buffer overflow in KarjaSoft Sami HTTP Server 1.0.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request.
by badpack3t
CVE-2004-2093 EXPLOITDB c VERIFIED
rsync <2.5.7 - Buffer Overflow
Buffer overflow in the open_socket_out function in socket.c for rsync 2.5.7 and earlier allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long RSYNC_PROXY environment variable. NOTE: since rsync is not setuid, this issue does not provide any additional privileges beyond those that are already available to the user. Therefore this issue may be REJECTED in the future.
by Abhisek Datta
CVE-2004-0282 EXPLOITDB c VERIFIED
Crob FTP Server - Denial of Service
Crob FTP daemon 3.5.2 allows remote attackers to cause a denial of service (crash) by repeatedly connecting to and disconnecting from the server.
by gsicht
CVE-2004-2074 EXPLOITDB c VERIFIED
Dream FTP 1.02 - DoS
Format string vulnerability in Dream FTP 1.02 allows local users to cause a denial of service (crash) via format string specifiers in the (1) PASS or (2) RETR commands.
by Skylined
CVE-2004-0264 EXPLOITDB c VERIFIED
Jim Rees Httpd - Denial of Service
palmhttpd for PalmOS allows remote attackers to cause a denial of service (crash) by establishing two simultaneous HTTP connections, which exceeds the PalmOS accept queue.
by shaun2k2
CVE-2004-2077 EXPLOITDB c VERIFIED
Nadeo Game Engine - DoS
Nadeo Game Engine for Nadeo TrackMania and Nadeo Virtual Skipper 3 allows remote attackers to cause a denial of service (server crash) via malformed data to TCP port 2350, possibly due to long values or incorrect size fields.
by scrap
CVE-2004-0277 EXPLOITDB c VERIFIED
Bolintech Dream FTP Server - Denial of Service
Format string vulnerability in Dream FTP 1.02 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in the username.
by shaun2k2
CVE-2004-2073 EXPLOITDB c VERIFIED
Linux-VServer 1.24 - Privilege Escalation
Linux-VServer 1.24 allows local users with root privileges on a virtual server to gain access to the filesystem outside the virtual server via a modified chroot-again exploit using the chmod command.
by Markus Mueller
CVE-2004-0238 EXPLOITDB c VERIFIED
0verkill - Buffer Overflow
Multiple buffer overflows in Overkill (0verkill) 0.15pre3 might allow local users to execute arbitrary code in the client via a long HOME environment variable in the (1) load_cfg and (2) save_cfg functions; possibly allow remote attackers to execute arbitrary code via long strings to (3) the send_message function; and, in the server, via (4) the parse_command_line function.
by pi3ki31ny
By Source
All 3,560 Exploitdb 50,130 Writeup 46,870 Nomisec 21,221 Metasploit 3,189 Github 2,316 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,346 ruby 5,920 python 5,770 c 3,560 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 74 go 43 postscript 25 xml 24