Exploitdb Exploits

4,759 exploits tracked across all sources.

Sort: Activity Stars
CVE-2009-1643 EXPLOITDB python VERIFIED
Soritong MP3 Player 1.0 - Stack-Based Buffer Overflow via Crafted .m3u File
Stack-based buffer overflow in Sorinara Soritong MP3 Player 1.0 allows remote attackers to execute arbitrary code via a crafted .m3u file.
by hack4love
CVE-2009-3058 EXPLOITDB python VERIFIED
akPlayer 1.9.0 - Remote Code Execution via Long String in PLT Playlist File
Stack-based buffer overflow in akPlayer 1.9.0 allows remote attackers to execute arbitrary code via a long string in a .plt playlist file.
by TiGeR-Dz
CVE-2009-3170 EXPLOITDB python VERIFIED
AIMP2 Audio Converter < 2.53 - Stack-based Buffer Overflow via Long File1 Argument in Playlist File
Stack-based buffer overflow in AIMP2 Audio Converter 2.53 (build 330) and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long File1 argument in a (1) .pls or (2) .m3u playlist file.
by mr_me
CVE-2009-2650 EXPLOITDB python VERIFIED
Sorcerer Software MultiMedia Jukebox 4.0 - Buffer Overflow
Heap-based buffer overflow in Sorcerer Software MultiMedia Jukebox 4.0 Build 020124 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted (1) .m3u or possibly (2) .pst file.
by mr_me
CVE-2009-0812 EXPLOITDB python VERIFIED
BreakPoint Software Hex Workshop <6 - Buffer Overflow
Stack-based buffer overflow in BreakPoint Software Hex Workshop 4.23, 6.0.1.4603, and other 6.x and earlier versions allows remote attackers to execute arbitrary code via a crafted Intel Hex Code (.hex) file. NOTE: some of these details are obtained from third party information.
by hack4love
CVE-2009-2934 EXPLOITDB python VERIFIED
Programmed Integration PIPL 2.5.0 and 2.5.0D - Remote Code Execution via Long String in Playlist File
Multiple stack-based buffer overflows in xaudio.dll in Programmed Integration PIPL 2.5.0 and 2.5.0D allow remote attackers to execute arbitrary code via a long string in a (1) .pls or (2) .pl playlist file.
by mr_me
EIP-2026-117285 EXPLOITDB python VERIFIED
HTML Creator & Sender 2.3 build 697 - Local Buffer Overflow (SEH)
by Dr_IDE
CVE-2009-5134 EXPLOITDB python VERIFIED
uTorrent 1.8.3 - Buffer Overflow via Large String in Create Torrent Dialog
Buffer overflow in the "create torrent dialog" functionality in uTorrent 1.8.3 build 15772, and possibly other versions before 1.8.3 (Build 16010), allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a text file containing a large string. NOTE: some of these details are obtained from third party information.
by Dr_IDE
EIP-2026-116405 EXPLOITDB python VERIFIED
TFTPUtil GUI 1.3.0 - Remote Denial of Service
by ThE g0bL!N
EIP-2026-101113 EXPLOITDB python VERIFIED
Xerox WorkCentre (Multiple Models) - Denial of Service
by Henri Lindberg
CVE-2009-0490 EXPLOITDB python VERIFIED
Audacity < 1.3.6 - Stack-based Buffer Overflow in String_parse::get_nonspace_quoted
Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other versions before 1.3.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .gro file containing a long string.
by mr_me
CVE-2007-1404 EXPLOITDB python VERIFIED
ProSysInfo TFTP Server TFTPDWIN 0.4.2 - Denial of Service via Long UDP Packet
tftpd.exe in ProSysInfo TFTP Server TFTPDWIN 0.4.2 allows remote attackers to cause a denial of service via a long UDP packet that is not properly handled in a recv_from call. NOTE: this issue might be related to CVE-2006-4948.
by Wraith
EIP-2026-118081 EXPLOITDB python VERIFIED
VUPlayer 2.49 - '.m3u' Universal Buffer Overflow
by mr_me
CVE-2009-3041 EXPLOITDB python VERIFIED
SPIP 1.9 before 1.9.2i and 2.0.x through 2.0.8 - Unauthenticated Unauthorized Access via Install and Backup Endpoints
SPIP 1.9 before 1.9.2i and 2.0.x through 2.0.8 does not use proper access control for (1) ecrire/exec/install.php and (2) ecrire/index.php, which allows remote attackers to conduct unauthorized activities related to installation and backups, as exploited in the wild in August 2009.
by Kernel_Panik
EIP-2026-105366 EXPLOITDB python VERIFIED
BaBB 2.8 - Remote Code Injection
by Khashayar Fereidani
EIP-2026-116480 EXPLOITDB python VERIFIED
VideoLAN VLC Media Player 1.0.0/1.0.1 - 'smb://' URI Handling Buffer Overflow (PoC)
by Dr_IDE
EIP-2026-115214 EXPLOITDB python VERIFIED
EmbedThis Appweb 3.0B.2-4 - Multiple Remote Buffer Overflows (PoC)
by Dr_IDE
EIP-2026-116238 EXPLOITDB python VERIFIED
Serveez 0.1.7 - 'If-Modified-Since' Header Stack Buffer Overflow
by lvac lvac
EIP-2026-116284 EXPLOITDB python VERIFIED
SpiceWorks 3.6 - 'Accept' Overflow Crash
by David Kennedy (ReL1K)
EIP-2026-117364 EXPLOITDB python VERIFIED
JetAudio 7.1.9.4030 - '.m3u' Universal Stack Overflow (SEH)
by Dr_IDE
CVE-2009-2917 EXPLOITDB python VERIFIED
ImTOO MPEG Encoder 3.1.53 - Stack-Based Buffer Overflow via Crafted Playlist File
Stack-based buffer overflow in ImTOO MPEG Encoder 3.1.53 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted string in a (1) .cue or (2) .m3u playlist file.
by opt!x hacker
EIP-2026-115365 EXPLOITDB python VERIFIED
Groovy Media Player 1.2.0 - '.m3u' Local Buffer Overflow (PoC)
by opt!x hacker
CVE-2009-4867 EXPLOITDB python VERIFIED
Tuniac 090517c - Buffer Overflow via Long URL in .m3u Playlist File
Buffer overflow in Tuniac 090517c allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long URL in a .m3u playlist file.
by Dr_IDE
CVE-2009-1209 EXPLOITDB python VERIFIED
W3C Amaya Web Browser 11.1 - Remote Code Execution via Long Defer Attribute in Script Tag
Stack-based buffer overflow in W3C Amaya Web Browser 11.1 allows remote attackers to execute arbitrary code via a script tag with a long defer attribute.
by His0k4
CVE-2009-4988 EXPLOITDB python VERIFIED
SAP Business One 2005 A - Stack-Based Buffer Overflow via GIOP Request
Stack-based buffer overflow in NT_Naming_Service.exe in SAP Business One 2005 A 6.80.123 and 6.80.320 allows remote attackers to execute arbitrary code via a long GIOP request to TCP port 30000.
by Bruk0ut