Exploitdb Exploits

CVE-2003-0203 EXPLOITDB perl VERIFIED

moxftp 2.2 - Remote Code Execution via Long FTP Banner

Buffer overflow in moxftp 2.2 and earlier allows remote malicious FTP servers to execute arbitrary code via a long FTP banner.

by Knud Erik Hojgaard

View

CVE-2003-0101 EXPLOITDB perl VERIFIED

Webmin/Usermin <1.070 - Auth Bypass

miniserv.pl in (1) Webmin before 1.070 and (2) Usermin before 1.000 does not properly handle metacharacters such as line feeds and carriage returns (CRLF) in Base-64 encoded strings during Basic authentication, which allows remote attackers to spoof a session ID and gain root privileges.

by Carl Livitt

View

EIP-2026-102807 EXPLOITDB perl VERIFIED

cPanel 5.0 - 'Openwebmail' Local Privilege Escalation

by deadbeat

View

CVE-2003-1425 EXPLOITDB perl VERIFIED

cPanel 5.0 - Remote Code Execution via Guestbook.cgi Template Parameter

guestbook.cgi in cPanel 5.0 allows remote attackers to execute arbitrary commands via the template parameter.

by pokleyzz

View

CVE-2003-1425 EXPLOITDB perl VERIFIED

cPanel 5.0 - Remote Code Execution via Guestbook.cgi Template Parameter

guestbook.cgi in cPanel 5.0 allows remote attackers to execute arbitrary commands via the template parameter.

by SPAX

View

CVE-2003-1425 EXPLOITDB perl VERIFIED

cPanel 5.0 - Remote Code Execution via Guestbook.cgi Template Parameter

guestbook.cgi in cPanel 5.0 allows remote attackers to execute arbitrary commands via the template parameter.

by CaMaLeoN

View

CVE-2003-0358 EXPLOITDB perl VERIFIED

nethack <3.4.0 & falconseye <1.9.3 - Buffer Overflow

Buffer overflow in (1) nethack 3.4.0 and earlier, and (2) falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option.

by tsao@efnet

View

CVE-2003-1090 EXPLOITDB perl VERIFIED

AbsoluteTelnet - Buffer Overflow via Long Window Title

Buffer overflow in AbsoluteTelnet before 2.12 RC10 allows remote attackers to execute arbitrary code via a long window title.

by Knud Erik Hojgaard

View

CVE-2003-1368 EXPLOITDB perl VERIFIED

Electrasoft FTP Client 9.49.1 - Buffer Overflow via Long FTP Server Banner

Buffer overflow in the 32bit FTP client 9.49.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long FTP server banner.

by Dennis Rand

View

CVE-2003-1369 EXPLOITDB perl VERIFIED

Save IT Software PTY Bytecatcherftp - Memory Corruption

Buffer overflow in ByteCatcher FTP client 1.04b allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long FTP server banner.

by Dennis Rand

View

EIP-2026-114497 EXPLOITDB perl VERIFIED

YABB SE 0.8/1.4/1.5 - 'Packages.php' Remote File Inclusion

by spabam

View

EIP-2026-102556 EXPLOITDB perl VERIFIED

Apache Web Server 2.0.x - MS-DOS Device Name Denial of Service

by Matthew Murphy

View

CVE-2003-1530 EXPLOITDB perl VERIFIED

phpBB <= 2.0.3 - SQL Injection via privmsg.php mark[] Parameter

SQL injection vulnerability in privmsg.php in phpBB 2.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the mark[] parameter.

by Ulf Harnhammar

View

EIP-2026-103886 EXPLOITDB perl VERIFIED

CSO Lanifex Outreach Project Tool 0.946b - Request Origin Spoofing

by Martin Eiszner

View

EIP-2026-100885 EXPLOITDB perl VERIFIED

Psunami Bulletin Board 0.x - 'Psunami.cgi' Remote Command Execution (2)

by spabam

View

EIP-2026-100884 EXPLOITDB perl VERIFIED

Psunami Bulletin Board 0.x - 'Psunami.cgi' Remote Command Execution (1)

by dodo

View

CVE-2001-0797 EXPLOITDB perl VERIFIED

SGI IRIX - Buffer Overflow in Login via Telnet/Rlogin Arguments

Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.

by snooq

View

EIP-2026-100897 EXPLOITDB perl VERIFIED

Smart Search 4.25 - Remote Command Execution

by knight420

View

CVE-2003-1266 EXPLOITDB perl VERIFIED

etype eserv 2.92-2.98 - Denial of Service via Large Data Input

The (1) FTP, (2) POP3, (3) SMTP, and (4) NNTP servers in EServer 2.92 through 2.97, and possibly 2.98, allow remote attackers to cause a denial of service (crash) via a large amount of data.

by D4rkGr3y

View

CVE-2003-1266 EXPLOITDB perl VERIFIED

etype eserv 2.92-2.98 - Denial of Service via Large Data Input

The (1) FTP, (2) POP3, (3) SMTP, and (4) NNTP servers in EServer 2.92 through 2.97, and possibly 2.98, allow remote attackers to cause a denial of service (crash) via a large amount of data.

by D4rkGr3y

View

CVE-2003-1266 EXPLOITDB perl VERIFIED

etype eserv 2.92-2.98 - Denial of Service via Large Data Input

The (1) FTP, (2) POP3, (3) SMTP, and (4) NNTP servers in EServer 2.92 through 2.97, and possibly 2.98, allow remote attackers to cause a denial of service (crash) via a large amount of data.

by D4rkGr3y

View

CVE-2003-1266 EXPLOITDB perl VERIFIED

etype eserv 2.92-2.98 - Denial of Service via Large Data Input

The (1) FTP, (2) POP3, (3) SMTP, and (4) NNTP servers in EServer 2.92 through 2.97, and possibly 2.98, allow remote attackers to cause a denial of service (crash) via a large amount of data.

by D4rkGr3y

View

CVE-2002-2219 EXPLOITDB perl VERIFIED

chetcpasswd < 2.1 - Unauthenticated Shadow File Information Disclosure via Long User Field

chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows remote attackers to read the last line of the shadow file via a long user (userid) field.

by Victor Pereira

View

CVE-2002-1349 EXPLOITDB perl VERIFIED

PC-cillin <2003 - RCE

Buffer overflow in pop3trap.exe for PC-cillin 2000, 2002, and 2003 allows local users to execute arbitrary code via a long input string to TCP port 110 (POP3).

by Joel Soderberg

View

CVE-2002-2232 EXPLOITDB perl VERIFIED

Enceladus Server Suite 3.9 - Remote Code Execution via Long CD Command

Buffer overflow in Enceladus Server Suite 3.9 allows remote attackers to execute arbitrary code via a long CD (CWD) command.

by Tamer Sahin

View