Exploitdb Exploits

CVE-2005-2715 EXPLOITDB perl VERIFIED

VERITAS NetBackup - RCE

Format string vulnerability in the Java user interface service (bpjava-msvc) daemon for VERITAS NetBackup Data and Business Center 4.5FP and 4.5MP, and NetBackup Enterprise/Server/Client 5.0, 5.1, and 6.0, allows remote attackers to execute arbitrary code via the COMMAND_LOGON_TO_MSERVER command.

by Kevin Finisterre

View

CVE-2005-2715 EXPLOITDB perl VERIFIED

VERITAS NetBackup - RCE

Format string vulnerability in the Java user interface service (bpjava-msvc) daemon for VERITAS NetBackup Data and Business Center 4.5FP and 4.5MP, and NetBackup Enterprise/Server/Client 5.0, 5.1, and 6.0, allows remote attackers to execute arbitrary code via the COMMAND_LOGON_TO_MSERVER command.

by Kevin Finisterre

View

CVE-2005-2715 EXPLOITDB perl VERIFIED

VERITAS NetBackup - RCE

Format string vulnerability in the Java user interface service (bpjava-msvc) daemon for VERITAS NetBackup Data and Business Center 4.5FP and 4.5MP, and NetBackup Enterprise/Server/Client 5.0, 5.1, and 6.0, allows remote attackers to execute arbitrary code via the COMMAND_LOGON_TO_MSERVER command.

by Kevin Finisterre

View

CVE-2005-3120 EXPLOITDB CRITICAL perl VERIFIED

Lynx <2.8.6 - Buffer Overflow

Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and earlier allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape (ESC) characters.

by Ulf Harnhammar

CVSS 9.8

View

CVE-2005-3294 EXPLOITDB perl VERIFIED

Typsoft FTP Server < 1.11 - Resource Management Error

Typsoft FTP Server 1.11, with "Sub Directory Include" enabled, allows remote attackers to cause a denial of service (crash) by sending multiple RETR commands. NOTE: it was later reported that 1.10 is also affected.

by wood

View

EIP-2026-114727 EXPLOITDB perl VERIFIED

Solaris 10 (x86) - DtPrintinfo/Session Privilege Escalation

by Charles Stevenson

View

EIP-2026-116156 EXPLOITDB perl VERIFIED

RBExplorer 1.0 - Hijacking Command Denial of Service

by basher13

View

EIP-2026-103194 EXPLOITDB perl VERIFIED

phpBB 2.0.13 - 'admin_styles.php' Remote Command Execution

by RusH

View

CVE-2005-3299 EXPLOITDB perl VERIFIED

phpMyAdmin <2.6.4-2.6.4-pl1 - RCE

PHP file inclusion vulnerability in grab_globals.lib.php in phpMyAdmin 2.6.4 and 2.6.4-pl1 allows remote attackers to include local files via the $__redirect parameter, possibly involving the subform array.

by cXIb8O3

View

CVE-2005-2967 EXPLOITDB perl VERIFIED

xine-lib <1.1.1 - RCE

Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 through 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses when the victim plays a CD.

by Ulf Harnhammar

View

CVE-2005-3081 EXPLOITDB perl VERIFIED

wzdftpd 0.5.4 - Command Injection

wzdftpd 0.5.4 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the SITE command.

by kingcope

View

CVE-2005-3002 EXPLOITDB perl VERIFIED

MCCS 1.0 - DoS

Multi-Computer Control System (MCCS) 1.0 allows remote attackers to cause a denial of service via a malformed UDP packet.

by basher13

View

CVE-2004-2534 EXPLOITDB perl VERIFIED

Fastream NETFile Server 7.1.2 - DoS

Fastream NETFile Server 7.1.2 does not properly handle keep-alive connection timeouts and does not close the connection after a HEAD request, which allows remote attackers to perform a denial of service (connection consumption) by sending a large number HTTP HEAD requests.

by karak0rsan

View

CVE-2008-0092 EXPLOITDB perl VERIFIED

Phpwebsite - XSS

Cross-site scripting (XSS) vulnerability in index.php in the search module in Appalachian State University phpWebSite 1.4.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter.

by RusH

View

EIP-2026-115081 EXPLOITDB perl VERIFIED

COOL! Remote Control 1.12 - Remote Denial of Service

by basher13

View

CVE-2005-4724 EXPLOITDB perl VERIFIED

PhpTagCool 1.0.3 - SQL Injection

SQL injection vulnerability in post.php in PhpTagCool 1.0.3 allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For field in an HTTP header.

by Megabyte

View

EIP-2026-118590 EXPLOITDB perl VERIFIED

FTP Internet Access Manager 1.2 - Command Execution

by basher13

View

CVE-2005-2857 EXPLOITDB perl VERIFIED

Free SMTP Server 2.2 - Open Redirect

Free SMTP Server 2.2 allows remote attackers to use the server as an open mail relay (spam proxy).

by basher13

View

CVE-2005-2787 EXPLOITDB perl VERIFIED

Simple PHP Blog - File Deletion

comment_delete_cgi.php in Simple PHP Blog allows remote attackers to delete arbitrary files via the comment parameter.

by Kenneth Belva

View

CVE-2002-1120 EXPLOITDB perl VERIFIED

Savant Web Server <3.1 - RCE

Buffer overflow in Savant Web Server 3.1 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.

by basher13

View

CVE-2005-1842 EXPLOITDB perl VERIFIED

Adobe Version Cue <1.3 - Local Privilege Escalation

VCNative for Adobe Version Cue 1.0 and 1.0.1, as used in Creative Suite 1.0 and 1.3, and when running on Mac OS X with Version Cue Workspace, creates temporary log files with predictable names, which allows local users to modify arbitrary files via a symlink attack.

by vade79

View

EIP-2026-109680 EXPLOITDB perl VERIFIED

MyBB - 'member.php' SQL Injection

by W7ED

View

EIP-2026-100709 EXPLOITDB perl VERIFIED

GTChat 0.95 Alpha - 'adduser' Remote Denial of Service

by VTECin5th

View

CVE-2005-2697 EXPLOITDB perl VERIFIED

MyBB <4 - SQL Injection

SQL injection vulnerability in search.php for MyBulletinBoard (MyBB) 1.00 Release Candidate 1 through 4 allows remote attackers to execute arbitrary SQL commands via the uid parameter. NOTE: this issue might overlap CVE-2005-0282.

by Alpha_Programmer

View

EIP-2026-100710 EXPLOITDB perl VERIFIED

GTChat 0.95 Alpha - Remote Denial of Service

by RusH

View