Exploitdb Exploits

2,809 exploits tracked across all sources.

Sort: Activity Stars
CVE-2000-0776 EXPLOITDB perl VERIFIED
Mediahouse Statistics Server <5.02x - RCE
Mediahouse Statistics Server 5.02x allows remote attackers to execute arbitrary commands via a long HTTP GET request.
by Zan
CVE-2000-0703 EXPLOITDB perl VERIFIED
perl - Local Privilege Escalation via suidperl Escape Sequence Injection
suidperl (aka sperl) does not properly cleanse the escape sequence "~!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable and calling suidperl with a filename that contains the escape sequence.
by Sebastian Krahmer
CVE-2000-0740 EXPLOITDB perl VERIFIED
NAI Net Tools PKI Server 1.0 - Buffer Overflow via Long HTTPS URL
Buffer overflow in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary commands via a long URL in the HTTPS port.
by juliano
CVE-2000-0644 EXPLOITDB perl VERIFIED
WFTPD and WFTPD Pro 2.41 - Denial of Service via STAT Command During LIST Execution
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing a STAT command while the LIST command is still executing.
by Blue Panda
CVE-2000-0645 EXPLOITDB perl VERIFIED
WFTPD and WFTPD Pro 2.41 - Denial of Service via RESTART Command
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by using the RESTART (REST) command and writing beyond the end of a file, or writing to a file that does not exist, via commands such as STORE UNIQUE (STOU), STORE (STOR), or APPEND (APPE).
by Blue Panda
CVE-2000-0647 EXPLOITDB perl VERIFIED
WFTPD and WFTPD Pro 2.41 - Unauthenticated Denial of Service via MLST Command
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing an MLST command before logging into the server.
by Blue Panda
CVE-2000-0567 EXPLOITDB perl VERIFIED
Microsoft Outlook and Outlook Express - Remote Code Execution via Malformed Email Date Header
Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability.
by Ussr Labs
CVE-2000-0648 EXPLOITDB perl VERIFIED
WFTPD and WFTPD Pro 2.41 - Denial of Service via RNTO Command Without RNFR
WFTPD and WFTPD Pro 2.41 allows local users to cause a denial of service by executing the RENAME TO (RNTO) command before a RENAME FROM (RNFR) command.
by Blue Panda
CVE-2000-0571 EXPLOITDB perl VERIFIED
LocalWEB HTTP Server 1.2.0 - Denial of Service via Long GET Request
LocalWEB HTTP server 1.2.0 allows remote attackers to cause a denial of service via a long GET request.
by Ussr Labs
CVE-2000-0572 EXPLOITDB perl VERIFIED
Razor - Weak Password Encryption
The Razor configuration management tool uses weak encryption for its password file, which allows local users to gain privileges.
by Shawn A. Clifford
CVE-2000-0493 EXPLOITDB perl VERIFIED
Simple Network Time Sync Daemon - Buffer Overflow via Long String
Buffer overflow in Simple Network Time Sync (SMTS) daemon allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long string.
by Ben Taylor
CVE-2000-0505 EXPLOITDB perl VERIFIED
Apache HTTP Server - Directory Listing via Excessive Slash Characters
The Apache 1.3.x HTTP server for Windows platforms allows remote attackers to list directory contents by requesting a URL containing a large number of / characters.
by H D Moore
CVE-2000-0530 EXPLOITDB perl VERIFIED
KDE 1.1.2 - Local Privilege Escalation
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
by kil3r
CVE-2000-0530 EXPLOITDB perl VERIFIED
KDE 1.1.2 - Local Privilege Escalation
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
by kil3r
CVE-2000-1046 EXPLOITDB perl VERIFIED
Lotus Domino <5.0.2c - Buffer Overflow
Multiple buffer overflows in the ESMTP service of Lotus Domino 5.0.2c and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via long (1) "RCPT TO," (2) "SAML FROM," or (3) "SOML FROM" commands.
by smiler
CVE-2000-0350 EXPLOITDB perl VERIFIED
NetworkICE ICEcap <2.0.23 - Auth Bypass
A debugging feature in NetworkICE ICEcap 2.0.23 and earlier is enabled, which allows a remote attacker to bypass the weak authentication and post unencrypted events.
by rain forest puppy
CVE-2001-0336 EXPLOITDB perl VERIFIED
Internet Information Server < 5.0 - Denial of Service via Malformed Request
The Microsoft MS00-060 patch for IIS 5.0 and earlier introduces an error which allows attackers to cause a denial of service via a malformed request.
by Nelson Bunker
CVE-2000-0412 EXPLOITDB perl VERIFIED
knapster - Unauthenticated Arbitrary File Read via MP3 Pathname
The gnapster and knapster clients for Napster do not properly restrict access only to MP3 files, which allows remote attackers to read arbitrary files from the client by specifying the full pathname for the file.
by no_maam
CVE-2001-0329 EXPLOITDB perl VERIFIED
Bugzilla 2.10 - Remote Command Execution via Username Shell Metacharacters
Bugzilla 2.10 allows remote attackers to execute arbitrary commands via shell metacharacters in a username that is then processed by (1) the Bugzilla_login cookie in post_bug.cgi, or (2) the who parameter in process_bug.cgi.
by Frank van Vliet karin
CVE-2000-0380 EXPLOITDB perl VERIFIED
Cisco IOS 11.1-12.1 - Denial of Service via URL with %% String
The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.
by Keith Woodworth
CVE-2000-0338 EXPLOITDB MEDIUM perl VERIFIED
Concurrent Versions Software - Denial of Service via Predictable Lock File
Concurrent Versions Software (CVS) uses predictable temporary file names for locking, which allows local users to cause a denial of service by creating the lock directory before it is created for use by a legitimate CVS user.
by Michal Szymanski
CVSS 5.5
CVE-2000-0260 EXPLOITDB perl VERIFIED
Microsoft Visual Interdev 1.0 - Buffer Overflow in dvwssr.dll
Buffer overflow in the dvwssr.dll DLL in Microsoft Visual Interdev 1.0 allows users to cause a denial of service or execute commands, aka the "Link View Server-Side Component" vulnerability.
by Richie & Beto
CVE-2000-0260 EXPLOITDB perl VERIFIED
Microsoft Visual Interdev 1.0 - Buffer Overflow in dvwssr.dll
Buffer overflow in the dvwssr.dll DLL in Microsoft Visual Interdev 1.0 allows users to cause a denial of service or execute commands, aka the "Link View Server-Side Component" vulnerability.
by rain forest puppy
CVE-2001-0173 EXPLOITDB perl VERIFIED
CrazyWWWBoard - Remote Code Execution via Long MIME Content-Type Header
Buffer overflow in qDecoder library 5.08 and earlier, as used in CrazyWWWBoard, CrazySearch, and other CGI programs, allows remote attackers to execute arbitrary commands via a long MIME Content-Type header.
by Jin Ho You
CVE-2000-0171 EXPLOITDB perl VERIFIED
atsar_linux - Privilege Escalation via Improper Output File Permission Check
atsadc in the atsar package for Linux does not properly check the permissions of an output file, which allows local users to gain root privileges.
by S. Krahmer
By Source
All 2,809 Writeup 62,507 Exploitdb 50,076 Nomisec 22,463 Github 3,685 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,604 ruby 6,006 c 3,632 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 133 go 73 postscript 25 typescript 25