Exploitdb Exploits

EIP-2026-115023 EXPLOITDB python

Catia V5-6R2013 - 'CATV5_Backbone_Bus' Stack Buffer Overflow (PoC)

by Mohamed Shetta

View

CVE-2014-125122 EXPLOITDB MEDIUM python

Linksys WRT120N - Buffer Overflow

A stack-based buffer overflow vulnerability exists in the tmUnblock.cgi endpoint of the Linksys WRT120N wireless router. The vulnerability is triggered by sending a specially crafted HTTP POST request with an overly long TM_Block_URL parameter to the endpoint. By exploiting this flaw, an unauthenticated remote attacker can overwrite memory in a controlled manner, enabling them to temporarily reset the administrator password of the device to a blank value. This grants unauthorized access to the router’s web management interface without requiring valid credentials.

by Craig Heffner

View

EIP-2026-119251 EXPLOITDB python VERIFIED

VideoCharge Studio - 'CHTTPResponse::GetHttpResponse()' Remote Stack Buffer Overflow

by Julien Ahrens

View

CVE-2014-100014 EXPLOITDB python

Solidworks Product Data Management - Memory Corruption

Multiple stack-based buffer overflows in pdmwService.exe in SolidWorks Workgroup PDM 2014 SP2 allow remote attackers to execute arbitrary code via a long string in a (1) 2001, (2) 2002, or (3) 2003 opcode to port 3000.

by Mohamed Shetta

View

EIP-2026-115022 EXPLOITDB python

Catia V5-6R2013 - 'CATV5_AllApplications' Stack Buffer Overflow (PoC)

by Mohamed Shetta

View

CVE-2014-2072 EXPLOITDB CRITICAL python VERIFIED

Dassault Systemes Catia V5-6R2013 - Buffer Overflow

Dassault Systemes Catia V5-6R2013: Stack Buffer Overflow due to inadequate boundary checks

by Mohamed Shetta

CVSS 9.8

View

CVE-2013-5019 EXPLOITDB python VERIFIED

Ultra Mini HTTPD 1.21 - Buffer Overflow

Stack-based buffer overflow in Ultra Mini HTTPD 1.21 allows remote attackers to execute arbitrary code via a long resource name in an HTTP request.

by Sumit

View

CVE-2014-1206 EXPLOITDB python

Openwebanalytics Open Web Analytics < 1.5.4 - SQL Injection

SQL injection vulnerability in the password reset page in Open Web Analytics (OWA) before 1.5.5 allows remote attackers to execute arbitrary SQL commands via the owa_email_address parameter in a base.passwordResetRequest action to index.php.

by Dana James Traversie

View

CVE-2013-2347 EXPLOITDB python

HP Storage Data Protector - Denial of Service

The Backup Client Service (OmniInet.exe) in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary commands or cause a denial of service via a crafted EXEC_BAR packet to TCP port 5555, aka ZDI-CAN-1885.

by Chris Graham

View

CVE-2014-10031 EXPLOITDB python VERIFIED

Qualcomm Eudora Worldmail - Memory Corruption

Buffer overflow in the IMAPd service in Qualcomm Eudora WorldMail 9.0.333.0 allows remote attackers to execute arbitrary code via a long string in a UID command.

by Muhammad Alharmeel

View

EIP-2026-104221 EXPLOITDB python VERIFIED

Dexter (CasinoLoader) Panel - SQL Injection

by bwall

View

EIP-2026-115993 EXPLOITDB python

OneHTTPD 0.8 - Crash (PoC)

by Mahmod Mahajna (Mahy)

View

EIP-2026-108314 EXPLOITDB python

Joomla! Component com_community 2.6 - Code Execution

by Matias Fontanini

View

CVE-2014-1684 EXPLOITDB python

VLC Media Player <2.1.3 - DoS

The ASF_ReadObject_file_properties function in modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media Player before 2.1.3 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a zero minimum and maximum data packet size in an ASF file.

by Saif

View

CVE-2013-4730 EXPLOITDB python VERIFIED

PCMan's FTP Server 2.0.7 - RCE

Buffer overflow in PCMan's FTP Server 2.0.7 allows remote attackers to execute arbitrary code via a long string in a USER command.

by Mahmod Mahajna (Mahy)

View

CVE-2013-4730 EXPLOITDB python VERIFIED

PCMan's FTP Server 2.0.7 - RCE

Buffer overflow in PCMan's FTP Server 2.0.7 allows remote attackers to execute arbitrary code via a long string in a USER command.

by Mahmod Mahajna (Mahy)

View

EIP-2026-118631 EXPLOITDB python VERIFIED

haneWIN DNS Server 1.5.3 - Remote Buffer Overflow (SEH)

by Dario Estrada

View

CVE-2013-5791 EXPLOITDB python

Oracle Fusion Middleware - Buffer Overflow

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.0 and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters. NOTE: the previous information is from the October 2013 CPU. Oracle has not commented on claims from a third party that the issue is a stack-based buffer overflow in the Microsoft Access 1.x parser in vsacs.dll before 8.4.0.108 and before 8.4.1.52, which allows attackers to execute arbitrary code via a long field (aka column) name.

by Citadelo

View

CVE-2006-2465 EXPLOITDB python VERIFIED

Mp3info - Buffer Overflow

Buffer overflow in MP3Info 0.8.4 allows attackers to execute arbitrary code via a long command line argument. NOTE: if mp3info is not installed setuid or setgid in any reasonable context, then this issue might not be a vulnerability.

by jsacco

View

EIP-2026-101569 EXPLOITDB python

BLUE COM Router 5360/52018 - Password Reset

by KAI

View

CVE-2013-6343 EXPLOITDB python

Asus Tm-ac1900 Firmware - Memory Corruption

Multiple buffer overflows in web.c in httpd on the ASUS RT-N56U and RT-AC66U routers with firmware 3.0.0.4.374_979 allow remote attackers to execute arbitrary code via the (1) apps_name or (2) apps_flag parameter to APP_Installation.asp.

by Jacob Holcomb

View

EIP-2026-115376 EXPLOITDB python

haneWIN DNS Server 1.5.3 - Denial of Service

by sajith

View

EIP-2026-116942 EXPLOITDB python VERIFIED

CCProxy 7.3 - Integer Overflow

by Mr.XHat

View

EIP-2026-101046 EXPLOITDB python

Motorola SBG6580 Cable Modem & Wireless Router - Reboot (Denial of Service)

by nicx0

View

EIP-2026-115191 EXPLOITDB python VERIFIED

Easy Karaokay Player 3.3.31 - '.wav' Integer Division by Zero

by Osanda Malith Jayathissa

View