Exploitdb Exploits
2,809 exploits tracked across all sources.
WFTPD and WFTPD Pro 3.21 R1 and R2 - Authenticated Denial of Service via Long FTP Command
The Control Panel applet in WFTPD and WFTPD Pro 3.21 R1 and R2 allows remote authenticated users to cause a denial of service (crash) via a long FTP command.
by Beyond Security
GlobalSCAPE Secure FTP Server <2.0 - Buffer Overflow
Buffer overflow in GlobalSCAPE Secure FTP Server 2.0 B03.11.2004.2 allows remote attackers to cause a denial of service (crash) via a SITE command with a long argument.
by storm
SureCom EP-9510AX/EP-4504AX Network Device - Malformed Web Authorisation Request Denial of Service (1)
by Vasco Costa
GNU Anubis 3.6.0-3.6.2, 3.9.92-3.9.93 - Remote Code Execution via Format String Vulnerability
Multiple format string vulnerabilities in GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow remote attackers to execute arbitrary code via format string specifiers in strings passed to (1) the info function in log.c, (2) the anubis_error function in errs.c, or (3) the ssl_error function in ssl.c.
by Ulf Harnhammar
ArGoSoft FTP Server < 1.4.1.6 - Authenticated Denial of Service via SITE PASS Command
ArGoSoft FTP Server before 1.4.1.6 allows remote authenticated users to cause a denial of service (crash) via a SITE PASS command with a long password parameter, which causes the database to be corrupted.
by Beyond Security
Serv-U File Server < 5.0.0.0 - Authenticated Buffer Overflow via MDTM Command
Buffer overflow in Serv-U ftp before 5.0.0.4 allows remote authenticated users to execute arbitrary code via a long time zone argument to the MDTM command.
by saintjmf
MTools Mformat <3.9.9 - Info Disclosure
MTools Mformat before 3.9.9, when installed setuid root, creates files with world-readable and world-writable permissions, which allows local users to read and overwrite files.
by Sebastian Krahmer
Broker FTP Server 6.1.0.0 - Denial of Service via Idle Connection
TsFtpSrv.exe in Broker FTP 6.1.0.0 allows remote attackers to cause a denial of service (CPU consumption) via an open idle connection.
by SecuriTeam
evolutionx 3921 and 3935 - Denial of Service via Long FTP CD or Telnet DIR Command
Multiple buffer overflows in EvolutionX 3921 and 3935 allow remote attackers to cause a denial of service (hang) via (1) a long cd command to the FTP server, or (2) a long dir command to the telnet server.
by Moth7
Php-Nuke 6.x-7.1.0 - SQL Injection via c_mid Parameter
SQL injection vulnerability in the "public message" capability (public_message) for Php-Nuke 6.x to 7.1.0 allows remote attackers to obtain the administrator password via the c_mid parameter.
by Janek Vind
Web Crossing 4.x and 5.x - Denial of Service via HTTP POST Content-Length
Web Crossing 4.x and 5.x allows remote attackers to cause a denial of service (crash) by sending a HTTP POST request with a large or negative Content-Length, which causes an integer divide-by-zero.
by Peter Winter-Smith
Cisco IOS - Denial of Service via Layer 2 Frame with Inconsistent Length Values
Cisco 6000, 6500, and 7600 series systems with Multilayer Switch Feature Card 2 (MSFC2) and a FlexWAN or OSM module allow local users to cause a denial of service (hang or reset) by sending a layer 2 frame packet that encapsulates a layer 3 packet, but has inconsistent length values with that packet.
by blackangels
Oracle toplink mapping workBench - Info Disclosure
Oracle toplink mapping workBench uses a weak encryption algorithm for passwords, which allows local users to decrypt the passwords.
by Pete Finnigan
ProxyNow! 2.75 - Remote Code Execution via Long FTP URL
Stack-based and heap-based buffer overflows in ProxyNow! 2.75 and earlier allow remote attackers to execute arbitrary code via a GET request with a long ftp:// URL.
by Peter Winter-Smith
Apache 2.0.4x mod_perl - File Descriptor Leakage (3)
by Steve Grubb
Webcam Watchdog 3.63 - Remote Code Execution via Long HTTP GET Request
Buffer overflow in the web server of Webcam Watchdog 3.63 allows remote attackers to execute arbitrary code via a long HTTP GET request.
by Peter Winter-Smith
Jordan Windows Telnet Server 1.0/1.2 - 'Username' Stack Buffer Overrun (1)
by fiNis
Xlight FTP Server 1.25/1.41 - 'PASS' Remote Buffer Overflow
by storm
ProjectForum 8.4.2.1 - Find Request Denial of Service
by Peter Winter-Smith
phpBB <= 2.0.6 - SQL Injection via search_id Parameter
SQL injection vulnerability in search.php for phpBB 2.0.6 and earlier allows remote attackers to execute arbitrary SQL and gain privileges via the search_id parameter.
by RusH
ezmeeting - Stack-based Buffer Overflow via Long GET Request or SwEzModule.dll Parameters
Stack-based buffer overflow in eZnet.exe, as used in eZ (a) eZphotoshare, (b) eZmeeting, (c) eZnetwork, and (d) eZshare allows remote attackers to cause a denial of service (crash) or execute arbitrary code, as demonstrated via (1) a long GET request and (2) a long operation or autologin parameter to SwEzModule.dll.
by kralor
ezmeeting - Stack-based Buffer Overflow via Long GET Request or SwEzModule.dll Parameters
Stack-based buffer overflow in eZnet.exe, as used in eZ (a) eZphotoshare, (b) eZmeeting, (c) eZnetwork, and (d) eZshare allows remote attackers to cause a denial of service (crash) or execute arbitrary code, as demonstrated via (1) a long GET request and (2) a long operation or autologin parameter to SwEzModule.dll.
by Peter Winter-Smith
By Source