Exploitdb Exploits

2,809 exploits tracked across all sources.

Sort: Activity Stars
CVE-2002-0851 EXPLOITDB perl VERIFIED
isdn4linux - Local Privilege Escalation via Format String in ipppd Device Name Argument
Format string vulnerability in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the ISDN4Linux (i4l) package allows local users to gain root privileges via format strings in the device name command line argument, which is not properly handled in a call to syslog.
by TESO Security
CVE-2002-2351 EXPLOITDB perl VERIFIED
Qualcomm Eudora 5.1 - Path Traversal via Trailing Dot in Attachment Name
Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot).
by Paul Szabo
CVE-2002-2351 EXPLOITDB perl VERIFIED
Qualcomm Eudora 5.1 - Path Traversal via Trailing Dot in Attachment Name
Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot).
by Paul Szabo
CVE-2002-0833 EXPLOITDB perl VERIFIED
Qualcomm Eudora 5.0-J and 5.1.1 - Buffer Overflow via Multi-Part Message Boundary String
Buffer overflow in Eudora 5.1.1 and 5.0-J for Windows, and possibly other versions, allows remote attackers to execute arbitrary code via a multi-part message with a long boundary string.
by Kanatoko
CVE-2002-2174 EXPLOITDB perl VERIFIED
602Pro LAN SUITE 2002 - Denial of Service via Telnet Proxy Connection Flood
The Telnet proxy of 602Pro LAN SUITE 2002 does not restrict the number of outstanding connections to the local host, which allows remote attackers to create a denial of service (memory consumption) via a large number of connections.
by Stan Bubrouski
EIP-2026-119224 EXPLOITDB perl VERIFIED
Trillian 0.x IRC Module - Remote Buffer Overflow
by John C. Hennessy
CVE-2002-0824 EXPLOITDB perl VERIFIED
Freebsd Point-to-point Protocol Daemon - Symlink Following
BSD pppd allows local users to change the permissions of arbitrary files via a symlink attack on a file that is specified as a tty device.
by Sebastian Krahmer
CVE-2002-0371 EXPLOITDB perl VERIFIED
Microsoft Internet Explorer 5.1-6.0 - Remote Code Execution via Gopher URL Buffer Overflow
Buffer overflow in gopher client for Microsoft Internet Explorer 5.1 through 6.0, Proxy Server 2.0, or ISA Server 2000 allows remote attackers to execute arbitrary code via a gopher:// URL that redirects the user to a real or simulated gopher server that sends a long response.
CVE-2002-0637 EXPLOITDB perl VERIFIED
InterScan VirusWall 3.52 build 1462 - Auth Bypass
InterScan VirusWall 3.52 build 1462 allows remote attackers to bypass virus protection via e-mail messages with headers that violate RFC specifications by having (or missing) space characters in unexpected places (aka "space gap"), such as (1) Content-Type :", (2) "Content-Transfer-Encoding :", (3) no space before a boundary declaration, or (4) "boundary= ", which is processed by Outlook Express.
by SecuriTeam
CVE-2002-1605 EXPLOITDB perl VERIFIED
HP Tru64 UNIX <5.1a-4.0f - Buffer Overflow
Buffer overflow in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows attackers to execute arbitrary code via a long _XKB_CHARSET environment variable to (1) dxpause, (2) dxconsole, or (3) dtsession.
by stripey
CVE-2002-1029 EXPLOITDB perl VERIFIED
Worldspan Res Manager - Denial of Service via Malformed TCP Request
Res Manager in Worldspan for Windows Gateway 4.1 allows remote attackers to cause a denial of service (crash) via a malformed request to TCP port 17990.
by altomo
CVE-2002-1129 EXPLOITDB perl VERIFIED
Compaq Tru64 - Local Buffer Overflow via dxterm -xrm Argument
Buffer overflow in dxterm allows local users to execute arbitrary code via a long -xrm argument.
by stripey
EIP-2026-114768 EXPLOITDB perl VERIFIED
HP Tru64 - NLSPATH Environment Variable Local Buffer Overflow (1)
by stripey
CVE-2002-1001 EXPLOITDB perl VERIFIED
AnalogX Proxy - Buffer Overflow via Long HTTP Request or SOCKS 4A DNS Hostname
Buffer overflows in AnalogX Proxy before 4.12 allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long HTTP request to TCP port 6588 or (2) a SOCKS 4A request to TCP port 1080 with a long DNS hostname.
by Kanatoko
CVE-2002-1814 EXPLOITDB perl VERIFIED
Bonobo - Buffer Overflow via Long Command Line Arguments
Buffer overflow in efstools in Bonobo, when installed setuid, allows local users to execute arbitrary code via long command line arguments.
by andrea lisci
CVE-2002-1814 EXPLOITDB perl VERIFIED
Bonobo - Buffer Overflow via Long Command Line Arguments
Buffer overflow in efstools in Bonobo, when installed setuid, allows local users to execute arbitrary code via long command line arguments.
by clorox
CVE-2003-0281 EXPLOITDB perl VERIFIED
Firebird < 1.5 - Buffer Overflow via Long INTERBASE Environment Variable
Buffer overflow in Firebird 1.0.2 and other versions before 1.5, and possibly other products that use the InterBase codebase, allows local users to execute arbitrary code via a long INTERBASE environment variable when calling (1) gds_inet_server, (2) gds_lock_mgr, or (3) gds_drop.
by stripey
EIP-2026-114762 EXPLOITDB perl VERIFIED
Ehud Gavron TrACESroute 6.1.1 - Terminator Function Format String
by stringz
CVE-2002-1993 EXPLOITDB perl VERIFIED
WebBBS 4 and 5.0 - Remote Command Execution via Followup Parameter
webbbs_post.pl in WebBBS 4 and 5.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the followup parameter.
by NERF Security
CVE-2002-0905 EXPLOITDB perl VERIFIED
IBM Informix SE-7.25 - Local Buffer Overflow via INFORMIXDIR Environment Variable
Buffer overflow in sqlexec for Informix SE-7.25 allows local users to gain root privileges via a long INFORMIXDIR environment variable.
by pHrail
CVE-2002-1837 EXPLOITDB perl VERIFIED
Image Display System 0.81 - Info Disclosure
The getAlbumToDisplay function in idsShared.pm for Image Display System (IDS) 0.81 allows remote attackers to determine the existence of arbitrary directories via ".." sequences in the album parameter, which generates different error messages depending on whether the directory exists or not.
by isox
CVE-2002-0886 EXPLOITDB perl VERIFIED
Cisco CBOS <= 2.4.4 - Denial of Service via Large DHCP or Telnet Packets
Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory.
by blackangels
CVE-2002-0895 EXPLOITDB perl VERIFIED
MatuFtpServer 1.1.3 - Buffer Overflow via Long PASS Command
Buffer overflow in MatuFtpServer 1.1.3.0 (1.1.3) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long PASS (password) command.
by Kanatoko
EIP-2026-100772 EXPLOITDB perl VERIFIED
CGIScript.net 1.0 - Information Disclosure
by Steve Gustin
CVE-2002-0608 EXPLOITDB perl VERIFIED
Matu FTP Client 1.74 - Remote Code Execution via Long FTP Banner
Buffer overflow in Matu FTP client 1.74 allows remote FTP servers to execute arbitrary code via a long "220" banner.
by Kanatoko
By Source
All 2,809 Writeup 62,491 Exploitdb 50,076 Nomisec 22,459 Github 3,677 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,598 ruby 6,006 c 3,631 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 133 go 73 postscript 25 typescript 25