Exploitdb Exploits

4,759 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-3612 EXPLOITDB python VERIFIED
Visual Irc - Buffer Overflow
Stack-based buffer overflow in Visual IRC (ViRC) 2.0 allows remote IRC servers to execute arbitrary code via a long response to a JOIN command.
by h07
CVE-2007-3492 EXPLOITDB python VERIFIED
Conti Ftpserver - Denial of Service
Conti FtpServer 1.0 allows remote authenticated users to cause a denial of service (daemon crash) via a certain string containing "//A:" in the argument to the LIST command.
by 35c666
CVE-2007-3334 EXPLOITDB python VERIFIED
CA Etrust Secure Content Manager - Buffer Overflow
Multiple heap-based buffer overflows in the (1) Communications Server (iigcc.exe) and (2) Data Access Server (iigcd.exe) components for Ingres Database Server 3.0.3, as used in CA (Computer Associates) products including eTrust Secure Content Manager r8 on Windows, allow remote attackers to execute arbitrary code via unknown vectors.
by anonymous
CVE-2007-3161 EXPLOITDB python VERIFIED
Visicom Media Ace-ftp - Buffer Overflow
Buffer overflow in Ace-FTP Client 1.24a allows user-assisted, remote FTP servers to execute arbitrary code via a long response.
by n00b
CVE-2007-0038 EXPLOITDB python VERIFIED
Microsoft Windows 2000 - Memory Corruption
Stack-based buffer overflow in the animated cursor code in Microsoft Windows 2000 SP4 through Vista allows remote attackers to execute arbitrary code or cause a denial of service (persistent reboot) via a large length value in the second (or later) anih block of a RIFF .ANI, cur, or .ico file, which results in memory corruption when processing cursors, animated cursors, and icons, a variant of CVE-2005-0416, as originally demonstrated using Internet Explorer 6 and 7. NOTE: this might be a duplicate of CVE-2007-1765; if so, then CVE-2007-0038 should be preferred.
by RISE Security
CVE-2007-3077 EXPLOITDB python VERIFIED
Eqdkp < 1.3.2 - SQL Injection
SQL injection vulnerability in listmembers.php in EQdkp 1.3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the rank parameter.
by Silentz
EIP-2026-118670 EXPLOITDB python VERIFIED
IBM Tivoli Provisioning Manager - Remote Overflow (Egghunter)
by muts
CVE-2007-3166 EXPLOITDB python VERIFIED
Qualcomm Eudora - Buffer Overflow
Buffer overflow in Qualcomm Eudora 7.1.0.9 allows user-assisted, remote IMAP servers to execute arbitrary code via a long FLAGS response to a SELECT INBOX command.
by h07
CVE-2007-2888 EXPLOITDB python VERIFIED
UltraISO <8.6.2.2011 - Buffer Overflow
Stack-based buffer overflow in UltraISO 8.6.2.2011 and earlier allows user-assisted remote attackers to execute arbitrary code via a long FILE string (filename) in a .cue file, a related issue to CVE-2007-2761. NOTE: some details are obtained from third party information.
by Thomas Pollet
EIP-2026-102708 EXPLOITDB python VERIFIED
OpenOffice 2.2 Writer Component - Remote Denial of Service
by shinnai
CVE-2007-2773 EXPLOITDB python VERIFIED
Zomplog <3.8 - SQL Injection
SQL injection vulnerability in plugins/mp3playlist/mp3playlist.php in Zomplog 3.8 and earlier allows remote attackers to execute arbitrary SQL commands via the speler parameter.
by NeoMorphS
CVE-2007-2783 EXPLOITDB python VERIFIED
Rational Soft Hidden Administrator <1.7 - Auth Bypass/Code Injection
Unspecified vulnerability in Rational Soft Hidden Administrator 1.7 and earlier allows remote attackers to bypass authentication and execute arbitrary code via unspecified vectors. NOTE: this issue has no actionable information, and perhaps should not be included in CVE.
by Ahmed Siddiqui
CVE-2007-5332 EXPLOITDB python VERIFIED
Broadcom Brightstor Arcserve Backup - Resource Management Error
Multiple unspecified vulnerabilities in (1) mediasvr and (2) caloggerd in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, have unknown impact and attack vectors related to memory corruption.
by M. Shirk
CVE-2007-2772 EXPLOITDB python VERIFIED
CA BrightStor Backup 11.5.2.0 - DoS
(1) caloggerd.exe (camt70.dll) and (2) mediasvr.exe (catirpc.dll and rwxdr.dll) in CA BrightStor Backup 11.5.2.0 SP2 allow remote attackers to cause a denial of service (NULL dereference and application crash) via a crafted RPC packet.
by Shirkdog
CVE-2007-2772 EXPLOITDB python VERIFIED
CA BrightStor Backup 11.5.2.0 - DoS
(1) caloggerd.exe (camt70.dll) and (2) mediasvr.exe (catirpc.dll and rwxdr.dll) in CA BrightStor Backup 11.5.2.0 SP2 allow remote attackers to cause a denial of service (NULL dereference and application crash) via a crafted RPC packet.
by Shirkdog
CVE-2007-2770 EXPLOITDB python VERIFIED
Eudora 7.1 - Buffer Overflow
Stack-based buffer overflow in Eudora 7.1 allows user-assisted, remote SMTP servers to execute arbitrary code via a long SMTP reply. NOTE: the user must click through a warning about a possible buffer overflow exploit to trigger this issue.
by h07
CVE-2007-1531 EXPLOITDB python VERIFIED
Microsoft Windows Vista - Resource Management Error
Microsoft Windows XP and Vista overwrites ARP table entries included in gratuitous ARP, which allows remote attackers to cause a denial of service (loss of network access) by sending a gratuitous ARP for the address of the Vista host.
by Kristian Hermansen
CVE-2007-2711 EXPLOITDB python VERIFIED
TinyIdentD <2.2 - Buffer Overflow
Stack-based buffer overflow in TinyIdentD 2.2 and earlier allows remote attackers to execute arbitrary code via a long string to TCP port 113.
by Thomas Pollet
CVE-2007-2052 EXPLOITDB python VERIFIED
Python <2.6 - Memory Corruption
Off-by-one error in the PyLocale_strxfrm function in Modules/_localemodule.c for Python 2.4 and 2.5 causes an incorrect buffer size to be used for the strxfrm function, which allows context-dependent attackers to read portions of memory via unknown manipulations that trigger a buffer over-read due to missing null termination.
by Piotr Engelking
CVE-2007-2497 EXPLOITDB python VERIFIED
RealNetworks RealPlayer 10 Gold - DoS
RealNetworks RealPlayer 10 Gold allows remote attackers to cause a denial of service (memory consumption) via a certain .ra file. NOTE: this issue was referred to as a "memory leak," but it is not clear if this is correct.
by n00b
CVE-2007-2181 EXPLOITDB python VERIFIED
Webinsta FM Manager <0.1.4 - RCE
PHP remote file inclusion vulnerability in admin/login.php in Webinsta FM Manager 0.1.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter, a different product and vector than CVE-2005-0748.
by g00ns
CVE-2007-2195 EXPLOITDB python VERIFIED
Alvaros Messenger < 0.96 - Denial of Service
aMSN (aka Alvaro's Messenger) 0.96 and earlier allows remote attackers to cause a denial of service (application crash) by sending invalid data to TCP port 31337.
by Levent Kayan
CVE-2007-1748 EXPLOITDB python VERIFIED
Microsoft Windows 2000 - Memory Corruption
Stack-based buffer overflow in the RPC interface in the Domain Name System (DNS) Server Service in Microsoft Windows 2000 Server SP 4, Server 2003 SP 1, and Server 2003 SP 2 allows remote attackers to execute arbitrary code via a long zone name containing character constants represented by escape sequences.
by Winny Thomas
EIP-2026-116209 EXPLOITDB python VERIFIED
Sami HTTP Server 2.0.1 - POST Denial of Service
by shinnai
CVE-2007-1937 EXPLOITDB python VERIFIED
Scorp Book 1.0 - RCE
PHP remote file inclusion vulnerability in smilies.php in Scorp Book 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the config parameter.
by Dj7xpl
By Source
All 4,759 Writeup 54,687 Exploitdb 50,186 Nomisec 21,443 Metasploit 3,228 Github 2,587 Vulncheck_xdb 904 Inthewild 518 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,364 ruby 5,960 python 5,949 c 3,580 perl 2,854 html 2,056 php 1,334 bash 459 java 362 javascript 260 c++ 250 shell 95 go 55 postscript 25 xml 24