Exploitdb Exploits
2,809 exploits tracked across all sources.
Apple Mac OSX 10.4.7 (x86) - 'fetchmail' Local Privilege Escalation
by Kevin Finisterre
Apple Mac OSX 10.4.7 (PPC) - 'fetchmail' Local Privilege Escalation
by Kevin Finisterre
Barracuda Spam Firewall 3.3.01.001-3.3.03.053 Directory Traversal via cgi-bin/preview_email.cgi
Directory traversal vulnerability in cgi-bin/preview_email.cgi in Barracuda Spam Firewall (BSF) 3.3.01.001 through 3.3.03.053 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter.
by Greg Sinclair
Microsoft Windows XP/2000/2003 - Graphical Device Interface Plus Library Denial of Service
by Mr. Niega
eIQnetworks Enterprise Security Analyzer < 2.4.0 - Remote Code Execution via Multiple Buffer Overflows
Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) before 2.5.0, as used in products including (a) Sidewinder, (b) iPolicy Security Manager, (c) Astaro Report Manager, (d) Fortinet FortiReporter, (e) Top Layer Network Security Analyzer, and possibly other products, allow remote attackers to execute arbitrary code via long (1) DELTAINTERVAL, (2) LOGFOLDER, (3) DELETELOGS, (4) FWASERVER, (5) SYSLOGPUBLICIP, (6) GETFWAIMPORTLOG, (7) GETFWADELTA, (8) DELETERDEPDEVICE, (9) COMPRESSRAWLOGFILE, (10) GETSYSLOGFIREWALLS, (11) ADDPOLICY, and (12) EDITPOLICY commands to the Syslog daemon (syslogserver.exe); (13) GUIADDDEVICE, (14) ADDDEVICE, and (15) DELETEDEVICE commands to the Topology server (Topology.exe); the (15) LICMGR_ADDLICENSE command to the License Manager (EnterpriseSecurityAnalyzer.exe); the (16) TRACE and (17) QUERYMONITOR commands to the Monitoring agent (Monitoring.exe); and possibly other vectors related to the Syslog daemon (syslogserver.exe).
by Kevin Finisterre
eIQnetworks ESA - Syslog Server Remote Buffer Overflow
by Kevin Finisterre
AIM Triton 1.0.4 - 'SipXtapi' Remote Buffer Overflow
by c0rrupt
SIPfoundry sipXtapi - 'CSeq' Remote Buffer Overflow
by Jacopo Cervini
FileCOPA FTP Server 1.01 - 'LIST' Remote Buffer Overflow (1)
by Jacopo Cervini
Microsoft Internet Explorer <6.0 SP2 - DoS
wininet.dll in Microsoft Internet Explorer 6.0 SP2 and earlier allows remote attackers to cause a denial of service (unhandled exception and crash) via a long Content-Type header, which triggers a stack overflow.
by Firestorm
Cisco Security Monitoring, Analysis and Response System <4.2.1 - Co...
Multiple unspecified vulnerabilities in the Command Line Interface (CLI) for Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allow local CS-MARS administrators to execute arbitrary commands as root.
by Jon Hart
Cisco Security Monitoring, Analysis and Response System < 4.2.1 - Remote Code Execution via JMX-Console HtmlAdaptor
jmx-console/HtmlAdaptor in the jmx-console in the JBoss web application server, as shipped with Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allows remote attackers to gain privileges as the CS-MARS administrator and execute arbitrary Java code via an invokeOp action in the BSHDeployer jboss.scripts service name.
by Jon Hart
Invision Power Board 2.1-2.1.6 - SQL Injection via CLIENT_IP Parameter
SQL injection vulnerability in classes/class_session.php in Invision Power Board (IPB) 2.1 up to 2.1.6 allows remote attackers to execute arbitrary SQL commands via the CLIENT_IP parameter.
by w4g.not null
Eskolar CMS 0.9.0.0 - SQL Injection via Multiple Parameters
Multiple SQL injection vulnerabilities in Eskolar CMS 0.9.0.0 allow remote attackers to execute arbitrary SQL commands via the (1) gr_1_id, (2) gr_2_id, (3) gr_3_id, and (4) doc_id parameters in (a) index.php; the (5) uid and (6) pwd parameters in (b) php/esa.php; and possibly other vectors related to files in php/lib/ including (c) del.php, (d) download_backup.php, (e) navig.php, (f) restore.php, (g) set_12.php, (h) set_14.php, and (i) upd_doc.php.
by Jacek Wlodarczyk
winlpd < 1.26 - Remote Code Execution via Long String to TCP Port 515
Stack-based buffer overflow in Winlpd 1.26 allows remote attackers to execute arbitrary code via a long string in a request to TCP port 515.
by Pablo Isola
Usermin < 1.220 - Arbitrary File Read via Path Traversal with URL-Encoded Bypass
Webmin before 1.290 and Usermin before 1.220 calls the simplify_path function before decoding HTML, which allows remote attackers to read arbitrary files, as demonstrated using "..%01" sequences, which bypass the removal of "../" sequences before bytes such as "%01" are removed from the filename. NOTE: This is a different issue than CVE-2006-3274.
by UmZ
Invision Power Board 2.1-2.1.6 - SQL Injection via CLIENT_IP Parameter
SQL injection vulnerability in classes/class_session.php in Invision Power Board (IPB) 2.1 up to 2.1.6 allows remote attackers to execute arbitrary SQL commands via the CLIENT_IP parameter.
by RusH
EJ3 TOPo 2.2 - 'descripcion' Remote Command Execution
by Hessam-x
SIPfoundry sipXtapi <20060324 - RCE
Buffer overflow in SIPfoundry sipXtapi released before 20060324 allows remote attackers to execute arbitrary code via a long CSeq field value in an INVITE message.
by Michael Thumann
Microsoft Word 2000/2003 - Hlink Local Buffer Overflow
by SYS 49152
Ottoman CMS 1.1.3 - '?default_path=' Remote File Inclusion (2)
by Jacek Wlodarczyk
Microsoft Excel 2003 (Italian) - Hlink Local Buffer Overflow
by oveRet
LifeType 1.0.5 - SQL Injection via Date Parameter
SQL injection vulnerability in index.php in LifeType 1.0.5 allows remote attackers to execute arbitrary SQL commands via the Date parameter in a Default op.
by Alejandro Ramos
ADA Image Server - Denial of Service via Long HTTP POST Request
Patrice Freydiere ImgSvr (aka ADA Image Server) allows remote attackers to cause a denial of service (daemon crash) via a long HTTP POST request. NOTE: this might be the same issue as CVE-2004-2463.
by n00b
Microsoft Excel - Universal Hlink Local Buffer Overflow
by SYS 49152
By Source