Exploitdb Exploits

4,759 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-2382 EXPLOITDB python VERIFIED
QEMU < 0.9.1 and KVM < 79 - Denial of Service via VNC Protocol Message
The protocol_client_msg function in vnc.c in the VNC server in (1) Qemu 0.9.1 and earlier and (2) KVM kvm-79 and earlier allows remote attackers to cause a denial of service (infinite loop) via a certain message.
by Alfredo Ortega
CVE-2008-5664 EXPLOITDB python VERIFIED
Realtek Media Player <1.15.0.0 - Buffer Overflow
Stack-based buffer overflow in Realtek Media Player (aka Realtek Sound Manager, RtlRack, or rtlrack.exe) 1.15.0.0 allows remote attackers to execute arbitrary code via a crafted playlist (PLA) file.
by shinnai
CVE-2008-5895 EXPLOITDB python VERIFIED
Mediatheka 4.2 - SQL Injection via User Parameter
SQL injection vulnerability in connection.php in Mediatheka 4.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter.
by StAkeR
EIP-2026-113339 EXPLOITDB python VERIFIED
WebPhotoPro - Multiple SQL Injections
by baltazar
EIP-2026-115947 EXPLOITDB python VERIFIED
Nokia N70 and N73 - Malformed OBEX Name Header Remote Denial of Service
by NCNIPC
CVE-2008-6497 EXPLOITDB python VERIFIED
Neostrada Livebox ADSL Router - Denial of Service via Multiple HTTP Requests for /- URI
The Neostrada Livebox ADSL Router allows remote attackers to cause a denial of service (network outage) via multiple HTTP requests for the /- URI.
by 0in
CVE-2008-6363 EXPLOITDB python VERIFIED
DesignWorks Professional 4.3.1 and 5.0.7 - Stack-Based Buffer Overflow via Crafted .cct File
Stack-based buffer overflow in DesignWorks Professional 4.3.1 and 5.0.7 allows remote attackers to execute arbitrary code via a crafted .cct file. NOTE: some of these details are obtained from third party information.
by Cnaph
CVE-2008-5405 EXPLOITDB python VERIFIED
Cain & Abel <4.9.24 - Buffer Overflow
Stack-based buffer overflow in the RDP protocol password decoder in Cain & Abel 4.9.23 and 4.9.24, and possibly earlier, allows remote attackers to execute arbitrary code via an RDP file containing a long string.
by Encrypt3d.M!nd
CVE-2008-5383 EXPLOITDB python VERIFIED
National Instruments Electronics Workbench - Buffer Overflow
Stack-based buffer overflow in National Instruments Electronics Workbench allows user-assisted attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted .ewb file.
by Zigma
CVE-2008-5405 EXPLOITDB python VERIFIED
Cain & Abel <4.9.24 - Buffer Overflow
Stack-based buffer overflow in the RDP protocol password decoder in Cain & Abel 4.9.23 and 4.9.24, and possibly earlier, allows remote attackers to execute arbitrary code via an RDP file containing a long string.
by Encrypt3d.M!nd
CVE-2008-4250 EXPLOITDB CRITICAL python VERIFIED
Microsoft Windows Server Service - Remote Code Execution via Crafted RPC Request
The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Beta allows remote attackers to execute arbitrary code via a crafted RPC request that triggers the overflow during path canonicalization, as exploited in the wild by Gimmiv.A in October 2008, aka "Server Service Vulnerability."
by Debasis Mohanty
CVSS 9.8
CVE-2008-5112 EXPLOITDB python VERIFIED
Microsoft Windows 2000 SP4 and Server 2003 SP1/SP2 - User Enumeration via LDAP Bind Requests
The LDAP server in Active Directory in Microsoft Windows 2000 SP4 and Server 2003 SP1 and SP2 responds differently to a failed bind attempt depending on whether the user account exists and is permitted to login, which allows remote attackers to enumerate valid usernames via a series of LDAP bind requests, as demonstrated by ldapuserenum.
by Bernardo Damele
CVE-2008-5132 EXPLOITDB python VERIFIED
MemHT Portal 4.0.1 - SQL Injection via X-Forwarded-For Header
SQL injection vulnerability in inc/ajax/ajax_rating.php in MemHT Portal 4.0.1 allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For HTTP header.
by Ams
CVE-2008-5177 EXPLOITDB python VERIFIED
Yosemite Backup 8.7 - Buffer Overflow
Stack-based buffer overflow in the DtbClsLogin function in Yosemite Backup 8.7 allows remote attackers to (1) execute arbitrary code on a Linux platform, related to libytlindtb.so; or (2) cause a denial of service (application crash) and possibly execute arbitrary code on a Windows platform, related to ytwindtb.dll; via a long username field during authentication.
by Abdul-Aziz Hariri
CVE-2008-4864 EXPLOITDB python VERIFIED
Python 1.5.2-2.5.1 - Integer Overflow in imageop.c crop Function
Multiple integer overflows in imageop.c in the imageop module in Python 1.5.2 through 2.5.1 allow context-dependent attackers to break out of the Python VM and execute arbitrary code via large integer values in certain arguments to the crop function, leading to a buffer overflow, a different vulnerability than CVE-2007-4965 and CVE-2008-1679.
by Chris Evans
CVE-2008-4627 EXPLOITDB python VERIFIED
rgallery_plugin 1.09 - SQL Injection via itemID Parameter
SQL injection vulnerability in the rGallery plugin 1.09 for WoltLab Burning Board (WBB) allows remote attackers to execute arbitrary SQL commands via the itemID parameter in the RGalleryImageWrapper page in index.php.
by Five-Three-Nine
CVE-2008-6082 EXPLOITDB python VERIFIED
Titan FTP Server 6.26 build 630 - Denial of Service via SITE WHO Command
Titan FTP Server 6.26 build 630 allows remote attackers to cause a denial of service (CPU consumption) via the SITE WHO command.
by dmnt
CVE-2008-5626 EXPLOITDB python VERIFIED
XM Easy Personal FTP Server 5.6.0 - DoS
XM Easy Personal FTP Server 5.6.0 allows remote authenticated users to cause a denial of service via a crafted argument to the NLST command, as demonstrated by a -1 argument.
by shinnai
CVE-2008-6186 EXPLOITDB python VERIFIED
RaidenFTPD 2.4 build 3620 - Authenticated Stack-Based Buffer Overflow via CWD or MLST Commands
Stack-based buffer overflow in RaidenFTPD 2.4 build 3620 allows remote authenticated users to cause a denial of service (crash) or execute arbitrary code via long (1) CWD and (2) MLST commands.
by dmnt
CVE-2008-4572 EXPLOITDB python VERIFIED
GuildFTPd 0.999.14 - Denial of Service and Possible Remote Code Execution via Long CWD and LIST Arguments
GuildFTPd 0.999.14, and possibly other versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long arguments to the CWD and LIST commands, which triggers heap corruption related to an improper free call, and possibly triggering a heap-based buffer overflow.
by dmnt
CVE-2008-6185 EXPLOITDB python VERIFIED
NoticeWare Email Server NG 5.1.2.2 - Denial of Service via Long POP3 PASS Command
NoticeWare Email Server NG 5.1.2.2 allows remote attackers to cause a denial of service (crash) via multiple POP3 requests with a long PASS command.
by rAWjAW
CVE-2008-5666 EXPLOITDB python VERIFIED
WinFTP FTP Server 2.3.0 - Authenticated Denial of Service via Invalid NLST Command
WinFTP FTP Server 2.3.0, when passive (aka PASV) mode is used, allows remote authenticated users to cause a denial of service via a sequence of FTP sessions that include an invalid "NLST -1" command.
by dmnt
CVE-2008-4509 EXPLOITDB python VERIFIED
FOSS Gallery 1.0 beta - Unauthenticated Arbitrary File Upload via processFiles.php
Unrestricted file upload vulnerability in processFiles.php in FOSS Gallery Admin and FOSS Gallery Public 1.0 beta allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the root directory.
by Pepelux
EIP-2026-113197 EXPLOITDB python VERIFIED
WCMS 1.0b - Arbitrary Add Admin
by CWH Underground
EIP-2026-101428 EXPLOITDB python VERIFIED
Sagem F@ST Routers - DHCP Hostname Cross-Site Request Forgery
by Zigma