Exploitdb Exploits
2,809 exploits tracked across all sources.
Gnome Batalla Naval 1.0.4 - Remote Code Execution via Long Connection String
Buffer overflow in gbnserver for Gnome Batalla Naval 1.0.4 allows remote attackers to execute arbitrary code via a long connection string.
by wsxz
Ifenslave 0.0.7 - Argument Local Buffer Overflow (1)
by jlanthea
Prishtina FTP client <1 - DoS/Buffer Overflow
Buffer overflow in Prishtina FTP client 1.x allows remote FTP servers to cause a denial of service (crash) and possibly execute arbitrary code via a long FTP banner.
by DHGROUP
Qualcomm Eudora 4.x - Improper Link Resolution Before File Access
Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment, aka "Stealth Attachment."
by Paul Szabo
CVSS 7.5
Maelstrom Player 3.0.x - Argument Buffer Overflow (1)
by Luca Ercoli
Maelstrom <= 3.0.6 - Buffer Overflow via Long Server Command Line Argument
Buffer overflow in Maelstrom 3.0.6, 3.0.5, and earlier allows local users to execute arbitrary code via a long -server command line argument.
by Luca Ercoli
cdrecord <2.0 - Privilege Escalation
Format string vulnerability in scsiopen.c of the cdrecord program in cdrtools 2.0 allows local users to gain privileges via format string specifiers in the dev parameter.
by anonymous
Snitz Forums 2000 < 3.4.04 - Cross-Site Scripting via Email Parameter
Cross-site scripting (XSS) vulnerability in register.asp in Snitz Forums 2000 3.4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via javascript events in the Email parameter.
by anonymous
eServ 2.9x - Denial of Service via Memory Leak
Memory leak in eServ 2.9x allows remote attackers to cause a denial of service (memory exhaustion) via a large number of connections, whose memory is not freed when the connection is terminated.
by Matthew Murphy
CMailServer 4.0.2003.03 - Buffer Overflow
Multiple buffer overflows in the SMTP Service for ESMTP CMailServer 4.0.2003.03.27 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands.
by Dennis Rand
CMailServer 4.0.2003.03 - Buffer Overflow
Multiple buffer overflows in the SMTP Service for ESMTP CMailServer 4.0.2003.03.27 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands.
by Dennis Rand
Snitz Forums 2000 - 'register.asp' SQL Injection
by sharpiemarker
LTris 1.0.1 - Local Buffer Overflow via HOME Environment Variable
Buffer overflow in LTris 1.0.1 of FreeBSD Ports Collection 2003-02-25 and earlier allows local users to execute arbitrary code with gid "games" permission via a long HOME environment variable.
by Knud Erik Hojgaard
ListProc 8.2.09 - Buffer Overflow via Long ULISTPROC_UMASK Value
Buffer overflow in catmail for ListProc 8.2.09 and earlier allows remote attackers to execute arbitrary code via a long ULISTPROC_UMASK value.
by kf
Happycgi.com Happymall 4.3 and 4.4 - Remote Command Execution via File Parameter in normal_html.cgi or member_html.cgi
Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter for the (1) normal_html.cgi or (2) member_html.cgi scripts.
by Revin Aldi
Happycgi.com Happymall 4.3 and 4.4 - Remote Command Execution via File Parameter in normal_html.cgi or member_html.cgi
Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter for the (1) normal_html.cgi or (2) member_html.cgi scripts.
by Revin Aldi
Floosietek FTGate Pro Mail Server <1.22 - RCE
Multiple buffer overflows in Floosietek FTGate Pro Mail Server (FTGatePro) 1.22 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands.
by Dennis Rand
Floosietek FTGate Pro Mail Server <1.22 - RCE
Multiple buffer overflows in Floosietek FTGate Pro Mail Server (FTGatePro) 1.22 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands.
by Dennis Rand
youbin - Local Privilege Escalation via HOME Environment Variable
Buffer overflow in youbin allows local users to gain privileges via a long HOME environment variable.
by Knud Erik Hojgaard
CommuniGate Pro 3.1-4.0.6 - Session Hijacking via Referer Field Exposure
CommuniGate Pro 3.1 through 4.0.6 sends the session ID in the referer field for an HTTP request for an image, which allows remote attackers to hijack mail sessions via an e-mail with an IMG tag that references a malicious URL that captures the referer.
by Yaroslav Polyakov
IkonBoard <= 3.1.2a - Remote Code Execution via Lang Cookie Injection
FUNC.pm in IkonBoard 3.1.2a and earlier, including 3.1.1, does not properly cleanse the "lang" cookie when it contains illegal characters, which allows remote attackers to execute arbitrary code when the cookie is inserted into a Perl "eval" statement.
by snooq
Stockman Shopping Cart 7.8 - Arbitrary Command Execution
by Aleksey Sintsov
Opera Browser 6.05-7.10 - Heap-Based Buffer Overflow via Long Filename Extension
Heap-based buffer overflow in Opera 6.05 through 7.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a filename with a long extension.
by imagine & nesumin
3d-ftp 4.0 - Buffer Overflow via Long FTP Banner
Buffer overflow in 3D-FTP client 4.0 allows remote FTP servers to cause a denial of service (crash) and possibly execute arbitrary code via a long banner.
by Over_G
album.pl < 6.1 - Remote Command Execution via Alternative Configuration File
Album.pl 6.1 allows remote attackers to execute arbitrary commands, when an alternative configuration file is used, via unknown attack vectors.
By Source