Exploitdb Exploits
2,809 exploits tracked across all sources.
Options Parsing Tool <3.18 - Buffer Overflow
Multiple buffer overflows in Options Parsing Tool (OPT) shared library 3.18 and earlier, when used in setuid programs, may allow local users to execute arbitrary code via long command line options that are fed into macros such as opt_warn_2, as used in functions such as opt_atoi.
by jlanthea
Microsoft IE - Buffer Overflow
Buffer overflow in URLMON.DLL in Microsoft Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute arbitrary code via an HTTP response containing long values in (1) Content-type and (2) Content-encoding fields.
by Jouko Pynnonen
SAP Database 7.3.0.29 - Privilege Escalation
Race condition in SDBINST for SAP database 7.3.0.29 creates critical files with world-writable permissions before initializing the setuid bits, which allows local attackers to gain root privileges by modifying the files before the permissions are changed.
by Larry W. Cashdollar
IBM AIX 4.3.3 - Local Buffer Overflow in errpt
Buffer overflow in errpt in AIX 4.3.3 allows local users to execute arbitrary code as root.
by watercloud
IkonBoard <= 3.1.2a - Remote Code Execution via Lang Cookie Injection
FUNC.pm in IkonBoard 3.1.2a and earlier, including 3.1.1, does not properly cleanse the "lang" cookie when it contains illegal characters, which allows remote attackers to execute arbitrary code when the cookie is inserted into a Perl "eval" statement.
by Nick Cleaton
Samba < 2.2.8a and 2.0.10 - Remote Code Execution via call_trans2open Buffer Overflow
Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.
by H D Moore
CesarFTP 0.99 g - Remote 'Username' Buffer Overrun
by dr_insane
CuteFTP 5.0 - Remote Code Execution via Long LIST Command Response
Buffer overflow in CuteFTP 5.0 allows remote attackers to execute arbitrary code via a long response to a LIST command.
by snooq
Windows 2000 - Remote Code Execution via WebDAV Request
Buffer overflow in ntdll.dll on Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows remote attackers to execute arbitrary code, as demonstrated via a WebDAV request to IIS 5.0.
by mat
Monkey HTTP Daemon 0.4/0.5/0.6 - Excessive POST Data Buffer Overflow
by Matthew Murphy
Computer Associates - Unicenter Asset Manager Stored Secret Data Decryption
by kufumo.com
HP-UX 7-11 - X Font Server Local Buffer Overflow
by watercloud
Qualcomm Eudora 5.0/5.1/6.0 - Long Attachment Filename Denial of Service (2)
by Paul Szabo
Qualcomm Eudora 5.0/5.1/6.0 - Long Attachment Filename Denial of Service (1)
by Paul Szabo
Typo3 3.5 b5 - HTML Hidden Form Field Information Disclosure (2)
by Martin Eiszner
Typo3 3.5 b5 - HTML Hidden Form Field Information Disclosure (1)
by Martin Eiszner
Typo3 3.5 b5 - 'showpic.php' File Enumeration
by Martin Eiszner
Frisk F-Prot AntiVirus 3.12b - Command Line Scanner Buffer Overflow
by Knud Erik Hojgaard
Darwin Streaming Server 4.1.2 - 'parse_xml.cgi' Code Execution
by FOX_MULDER
By Source