Exploitdb Exploits
4,762 exploits tracked across all sources.
Serenity Audio Player <3.2.3 - Buffer Overflow
Stack-based buffer overflow in the MplayInputFile function in Serenity Audio Player 3.2.3 and earlier allows remote attackers to execute arbitrary code via a long URL in an M3U file. NOTE: some of these details are obtained from third party information.
by Rick2600
PHP - MultiPart Form-Data Denial of Service (PoC)
by Bogdan Calin
Aimp2 Audio Converter < 2.53 - Memory Corruption
Stack-based buffer overflow in AIMP2 Audio Converter 2.53 (build 330) and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long File1 argument in a (1) .pls or (2) .m3u playlist file.
by mr_me
Baby Web Server 2.7.2 - found Denial of Service
by Asheesh kumar Mani Tripathi
Home FTP Server 1.10.1.139 - Path Traversal
Multiple directory traversal vulnerabilities in Home FTP Server 1.10.1.139 allow remote authenticated users to (1) create arbitrary directories via directory traversal sequences in an MKD command or (2) create files with any contents in arbitrary directories via directory traversal sequences in a file upload request. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by zhangmc
CVSS 6.5
FtpXQ 3.0 - (Authenticated) Remote Denial of Service
by Marc Doudiet
Novell eDirectory 8.8 SP5 - iConsole Buffer Overflow
by ryujin
HP Power Manager - Buffer Overflow
Stack-based buffer overflow in the login form in the management web server in HP Power Manager allows remote attackers to execute arbitrary code via the Login variable.
by ryujin
Novell eDirectory 883ftf3 - nldap module Denial of Service
by ryujin
Home FTP Server <1.10.1.139 - DoS
Home FTP Server 1.10.1.139 allows remote attackers to cause a denial of service (daemon outage) via multiple invalid SITE INDEX commands.
by zhangmc
XM Easy Personal FTP Server 5.8.0 - DoS
XM Easy Personal FTP Server 5.8.0 allows remote authenticated users to cause a denial of service (crash) by uploading or creating a large number of files or directories, then performing a LIST command.
by zhangmc
Microsoft Windows Server 2008 - Resource Management Error
Array index error in the SMBv2 protocol implementation in srv2.sys in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold and SP2, and Windows 7 RC allows remote attackers to execute arbitrary code or cause a denial of service (system crash) via an & (ampersand) character in a Process ID High header field in a NEGOTIATE PROTOCOL REQUEST packet, which triggers an attempted dereference of an out-of-bounds memory location, aka "SMBv2 Negotiation Vulnerability." NOTE: some of these details are obtained from third party information.
by laurent gaffie
Linux Kernel < 2.6.31.14 - Race Condition
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.
by Matthew Bergin
CVSS 7.0
Konae Alleycode Html Editor - Memory Corruption
Stack-based buffer overflow in the Meta Content Optimizer in Konae Technologies Alleycode HTML Editor 2.21 allows user-assisted remote attackers to execute arbitrary code via a long value in a TITLE tag.
by Dr_IDE
Adobe Acrobat < 9.1.3 - Memory Corruption
Buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 might allow attackers to execute arbitrary code via unspecified vectors.
by Felipe Andres Manzano
xp-AntiSpy 3.9.7-4 - '.xpas' File Buffer Overflow
by Dr_IDE
Gpg4win - Denial of Service
gpg2.exe in Gpg4win 2.0.1, as used in KDE Kleopatra 2.0.11, allows remote attackers to cause a denial of service (application crash) via a long certificate signature.
by Dr_IDE
Joomla! Plugin JD-WordPress 2.0 RC2 - Remote File Inclusion
by Don Tukulesto
Zoiper < 2.22 - Denial of Service
ZoIPer 2.22, and possibly other versions before 2.24 Library 5324, allows remote attackers to cause a denial of service (crash) via a SIP INVITE request with an empty Call-Info header.
by Tomer Bitton
Free WMA MP3 Converter 1.1 - '.wav' Local Buffer Overflow
by KriPpLer
Ada Image Server 0.6.7 - 'imgsrv.exe' Remote Buffer Overflow
by blake
Vmware Ace - Format String Vulnerability
VMware Authentication Daemon 1.0 in vmware-authd.exe in the VMware Authorization Service in VMware Workstation 7.0 before 7.0.1 build 227600 and 6.5.x before 6.5.4 build 246459, VMware Player 3.0 before 3.0.1 build 227600 and 2.5.x before 2.5.4 build 246459, VMware ACE 2.6 before 2.6.1 build 227600 and 2.5.x before 2.5.4 build 246459, and VMware Server 2.x allows remote attackers to cause a denial of service (process crash) via a \x25\xFF sequence in the USER and PASS commands, related to a "format string DoS" issue. NOTE: some of these details are obtained from third party information.
by shinnai
Core FTP Server 1.0 build 304 - Denial of Service
by Dr_IDE
By Source