Perl Exploits
2,849 exploits tracked across all sources.
Veritas NetBackup 3.5/4.5/5.0 - Multiple Local Memory Corruption Vulnerabilities (2)
by Secure Network Operations
Veritas NetBackup 3.5/4.5/5.0 - Multiple Local Memory Corruption Vulnerabilities (1)
by Secure Network Operations
Juniper Junos - Denial of Service via TCP RST Packet Injection
TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.
by K-sPecial
Kinesphere eXchange POP3 - Remote Code Execution via Long MAIL FROM Field
Buffer overflow in Kinesphere eXchange POP3 allows remote attackers to execute arbitrary code via a long MAIL FROM field.
by securma massine
Serv-U File Server < 5.0.0.6 - Denial of Service via Long -l Parameter
Buffer overflow in Serv-U FTP server before 5.0.0.6 allows remote attackers to cause a denial of service (crash) via a long -l parameter, which triggers an out-of-bounds read.
by storm
Juniper Junos - Denial of Service via TCP RST Packet Injection
TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.
by Paul A. Watson
Qualcomm Eudora 6.0.3-6.1 - Denial of Service via Deeply Nested Multipart MIME Message
Eudora 6.1 and 6.0.3 for Windows allows remote attackers to cause a denial of service (crash) via a deeply nested multipart MIME message.
by Paul Szabo
eMule 0.42d - Stack-based Buffer Overflow in DecodeBase16 Function
Stack-based buffer overflow in DecodeBase16 function, as used in the (1) IRC module and (2) web server in eMule 0.42d, allows remote attackers to execute arbitrary code via a long string.
by kingcope
Monit 1.4-4.1 - Remote Code Execution via Long HTTP Request
Stack-based buffer overflow in Monit 1.4 to 4.1 allows remote attackers to execute arbitrary code via a long HTTP request.
by gsicht
KPhone < 4.0.1 - Denial of Service via STUN Response Packet with Large attrLen Value
sipclient.cpp in KPhone 4.0.1 and earlier allows remote attackers to cause a denial of service (crash) via a STUN response packet with a large attrLen value that causes an out-of-bounds read.
by storm
LCDproc 0.4.x-0.4.4 - Remote Code Execution via parse_all_client_messages Buffer Overflow
Buffer overflow in the parse_all_client_messages function in LCDproc 0.4.x up to 0.4.4 allows remote attackers to execute arbitrary code via a large number of arguments.
by wsxz
Aborior Encore WebForum - Command Injection
display.cgi in Aborior Encore WebForum allows remote to execute arbitrary commands via shell metacharacters in the file variable.
by K-159
eSignal 7.5-7.6 - Stack-Based Buffer Overflow via Long STREAMQUOTE Tag
Stack-based buffer overflow in WinSig.exe in eSignal 7.5 and 7.6 allows remote attackers to execute arbitrary code via a long STREAMQUOTE tag.
by VizibleSoft
Qualcomm Eudora 6.2.0.14 - Unauthenticated Arbitrary File Read via Spoofed Converted Headers
Eudora 6.2.0.14 does not issue a warning when a user forwards an e-mail message that contains base64 or quoted-printable encoded attachments, which makes it easier for remote attackers to read arbitrary files via spoofed "Converted" headers.
by anonymous
WFTPD and WFTPD Pro 3.21 R1 and R2 - Authenticated Denial of Service via Long FTP Command
The Control Panel applet in WFTPD and WFTPD Pro 3.21 R1 and R2 allows remote authenticated users to cause a denial of service (crash) via a long FTP command.
by Beyond Security
GlobalSCAPE Secure FTP Server <2.0 - Buffer Overflow
Buffer overflow in GlobalSCAPE Secure FTP Server 2.0 B03.11.2004.2 allows remote attackers to cause a denial of service (crash) via a SITE command with a long argument.
by storm
SureCom EP-9510AX/EP-4504AX Network Device - Malformed Web Authorisation Request Denial of Service (1)
by Vasco Costa
GNU Anubis 3.6.0-3.6.2, 3.9.92-3.9.93 - Remote Code Execution via Format String Vulnerability
Multiple format string vulnerabilities in GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow remote attackers to execute arbitrary code via format string specifiers in strings passed to (1) the info function in log.c, (2) the anubis_error function in errs.c, or (3) the ssl_error function in ssl.c.
by Ulf Harnhammar
ArGoSoft FTP Server < 1.4.1.6 - Authenticated Denial of Service via SITE PASS Command
ArGoSoft FTP Server before 1.4.1.6 allows remote authenticated users to cause a denial of service (crash) via a SITE PASS command with a long password parameter, which causes the database to be corrupted.
by Beyond Security
Serv-U File Server < 5.0.0.0 - Authenticated Buffer Overflow via MDTM Command
Buffer overflow in Serv-U ftp before 5.0.0.4 allows remote authenticated users to execute arbitrary code via a long time zone argument to the MDTM command.
by saintjmf
MTools Mformat <3.9.9 - Info Disclosure
MTools Mformat before 3.9.9, when installed setuid root, creates files with world-readable and world-writable permissions, which allows local users to read and overwrite files.
by Sebastian Krahmer
Broker FTP Server 6.1.0.0 - Denial of Service via Idle Connection
TsFtpSrv.exe in Broker FTP 6.1.0.0 allows remote attackers to cause a denial of service (CPU consumption) via an open idle connection.
by SecuriTeam
evolutionx 3921 and 3935 - Denial of Service via Long FTP CD or Telnet DIR Command
Multiple buffer overflows in EvolutionX 3921 and 3935 allow remote attackers to cause a denial of service (hang) via (1) a long cd command to the FTP server, or (2) a long dir command to the telnet server.
by Moth7
Php-Nuke 6.x-7.1.0 - SQL Injection via c_mid Parameter
SQL injection vulnerability in the "public message" capability (public_message) for Php-Nuke 6.x to 7.1.0 allows remote attackers to obtain the administrator password via the c_mid parameter.
by Janek Vind
By Source