Exploitdb Exploits

CVE-2006-2369 EXPLOITDB python VERIFIED

Realvnc - Authentication Bypass

RealVNC 4.1.1, and other products that use RealVNC such as AdderLink IP and Cisco CallManager, allows remote attackers to bypass authentication via a request in which the client specifies an insecure security type such as "Type 1 - None", which is accepted even if it is not offered by the server, as originally demonstrated using a long password.

by fdiskyou

View

CVE-2012-6048 EXPLOITDB python

Guitar-pro Guitar Pro - Memory Corruption

Guitar Pro 6.1.1 r10791 allows remote attackers to cause a denial of service (crash) via a long string in a gpx file.

by condis

View

CVE-2012-2336 EXPLOITDB python VERIFIED

PHP <5.3.13 & <5.4.3 - DoS

sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when configured as a CGI script (aka php-cgi), does not properly handle query strings that lack an = (equals sign) character, which allows remote attackers to cause a denial of service (resource consumption) by placing command-line options in the query string, related to lack of skipping a certain php_getopt for the 'T' case. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-1823.

by rayh4c

View

EIP-2026-116784 EXPLOITDB python

AnvSoft Any Video Converter 4.3.6 - Local Stack Overflow

by cikumel

View

CVE-2012-2576 EXPLOITDB CRITICAL python VERIFIED

SolarWinds <5.1.2 - SQL Injection

SQL injection vulnerability in the LoginServlet page in SolarWinds Storage Manager before 5.1.2, SolarWinds Storage Profiler before 5.1.2, and SolarWinds Backup Profiler before 5.1.2 allows remote attackers to execute arbitrary SQL commands via the loginName field.

by muts

CVSS 9.8

View

CVE-2012-3845 EXPLOITDB python VERIFIED

Lan Messenger1.2.28 - Memory Corruption

Buffer overflow in LAN Messenger 1.2.28 and earlier allows remote attackers to cause a denial of service (crash) via a long string in an initiation request.

by Julien Ahrens

View

CVE-2012-6050 EXPLOITDB python

Mikrotik Routeros - Denial of Service

The winbox service in MikroTik RouterOS 5.15 and earlier allows remote attackers to cause a denial of service (CPU consumption), read the router version, and possibly have other impacts via a request to download the router's DLLs or plugins, as demonstrated by roteros.dll.

by PoURaN

View

CVE-2012-4057 EXPLOITDB python VERIFIED

Twd-industries Remote-anything - Memory Corruption

Buffer overflow in the Player in Remote-Anything 5.60.15 allows remote attackers to execute arbitrary code via a crafted flm file.

by Saint Patrick

View

CVE-2012-2442 EXPLOITDB python VERIFIED

Nokia PC Suite <7.1.180.64 - Buffer Overflow

Buffer overflow in the Video Manager in Nokia PC Suite 7.1.180.64 and earlier allows remote attackers to cause a denial of service via a crafted mp4 file.

by Senator of Pirates

View

EIP-2026-112050 EXPLOITDB python VERIFIED

SilverStripe CMS 2.4.7 - 'install.php' PHP Code Injection

by Mehmet Ince

View

EIP-2026-104602 EXPLOITDB python

Microsoft Office 2008 SP0 (Mac) - RTF pFragments

by Abhishek Lyall

View

EIP-2026-103981 EXPLOITDB python VERIFIED

McAfee Web Gateway 7.1.5.x - 'Host' HTTP Header Security Bypass

by Gabriel Menezes Nunes

View

CVE-2012-2095 EXPLOITDB python VERIFIED

David Paleino Wicd < 1.7.1 - Improper Input Validation

The SetWiredProperty function in the D-Bus interface in WICD before 1.7.2 allows local users to write arbitrary configuration settings and gain privileges via a crafted property name in a dbus message.

by anonymous

View

CVE-2014-9448 EXPLOITDB python VERIFIED

Mini-stream RM-MP3 Converter <3.1.2.1.2010.03.30 - Buffer Overflow

Buffer overflow in Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a long string in a WAX file.

by SkY-NeT SySteMs

View

EIP-2026-116595 EXPLOITDB python VERIFIED

Xion Audio Player 1.0.127 - '.aiff' Denial of Service

by condis

View

CVE-2012-10031 EXPLOITDB HIGH python

BlazeVideo HDTV Player Pro v6.6.0.3 - Buffer Overflow

BlazeVideo HDTV Player Pro v6.6.0.3 is vulnerable to a stack-based buffer overflow due to improper handling of user-supplied input embedded in .plf playlist files. When parsing a crafted .plf file, the MediaPlayerCtrl.dll component invokes PathFindFileNameA() to extract a filename from a URL-like string. The returned value is then copied to a fixed-size stack buffer using an inline strcpy call without bounds checking. If the input exceeds the buffer size, this leads to a stack overflow and potential arbitrary code execution under the context of the user.

by b33f

View

EIP-2026-119197 EXPLOITDB python VERIFIED

Sysax 5.57 - Directory Traversal

by Craig Freyman

View

EIP-2026-118753 EXPLOITDB python

MailMax 4.6 - POP3 'USER' Remote Buffer Overflow

by localh0t

View

EIP-2026-103632 EXPLOITDB python

PHP 5.4.0 Built-in Web Server - Denial of Service (PoC)

by ls

View

EIP-2026-116313 EXPLOITDB python

Spotify 0.8.2.610 - search func Memory Exhaustion

by LiquidWorm

View

CVE-2012-4869 EXPLOITDB python VERIFIED

FreePBX <2.10 - Command Injection

The callme_startcall function in recordings/misc/callme_page.php in FreePBX 2.9, 2.10, and earlier allows remote attackers to execute arbitrary commands via the callmenum parameter in a c action.

by muts

View

CVE-2015-6750 EXPLOITDB python VERIFIED

Ricoh Dl-1 Sr10 < 1.1.0.6 - Memory Corruption

Buffer overflow in Ricoh DL FTP Server 1.1.0.6 and earlier allows remote attackers to execute arbitrary code via a long USER command.

by Julien Ahrens

View

CVE-2012-4864 EXPLOITDB python

Oreans WinLicense 2.1.8.0 - Memory Corruption, DoS

Oreans WinLicense 2.1.8.0 allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via a crafted xml file.

by LiquidWorm

View

EIP-2026-116410 EXPLOITDB python VERIFIED

Tiny Server 1.1.9 - HEAD Denial of Service

by brock haun

View

EIP-2026-116053 EXPLOITDB python

PeerFTP Server 4.01 - Remote Crash (PoC)

by localh0t

View