Exploitdb Exploits

4,759 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-0766 EXPLOITDB python VERIFIED
Remotesoft .NET Explorer 2.0.1 - Buffer Overflow
Stack-based buffer overflow in Remotesoft .NET Explorer 2.0.1 allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long line in a .cpp file.
by shinnai
CVE-2007-0449 EXPLOITDB python VERIFIED
Broadcom Brightstor Arcserve Backup L... - Memory Corruption
Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200.
by Winny Thomas
CVE-2007-0643 EXPLOITDB python VERIFIED
Bloodshed Software Dev-c++ - Buffer Overflow
Stack-based buffer overflow in Bloodshed Dev-C++ 4.9.9.2 allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long line in a .cpp file.
by shinnai
CVE-2007-0449 EXPLOITDB python VERIFIED
Broadcom Brightstor Arcserve Backup L... - Memory Corruption
Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200.
by Winny Thomas
CVE-2007-0031 EXPLOITDB python VERIFIED
Microsoft Excel - Buffer Overflow
Heap-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted remote attackers to execute arbitrary code via a BIFF8 spreadsheet with a PALETTE record that contains a large number of entries.
by LifeAsaGeek
CVE-2007-0562 EXPLOITDB python VERIFIED
Microsoft Windows Explorer - Denial of Service
Windows Explorer (explorer.exe) 6.0.2900.2180 in Microsoft Windows XP SP2 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted .avi file, which triggers the crash when the user right clicks on the file.
by shinnai
CVE-2007-0540 EXPLOITDB python VERIFIED
Wordpress < 2.0 - Denial of Service
WordPress allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data.
by Blake Matheny
CVE-2007-0548 EXPLOITDB python VERIFIED
Karjasoft Sami HTTP Server - Denial of Service
KarjaSoft Sami HTTP Server 2.0.1 allows remote attackers to cause a denial of service (daemon hang) via a large number of requests for nonexistent objects.
by shinnai
EIP-2026-115501 EXPLOITDB python VERIFIED
KarjaSoft Sami HTTP Server 1.0.4/1.0.5/2.0.1 - Request Remote Denial of Service
by shinnai
CVE-2007-1772 EXPLOITDB python VERIFIED
HP Jetdirect - Denial of Service
The FTP service in HP JetDirect print servers allows remote attackers to cause a denial of service (engine crash) via a RETR command with a long pathname.
by Handrix
EIP-2026-116163 EXPLOITDB python VERIFIED
RealNetwork RealPlayer 10.5 - '.MID' File Handling Remote Denial of Service
by shinnai
CVE-2007-0256 EXPLOITDB python VERIFIED
Videolan Vlc Media Player - Denial of Service
VideoLAN VLC 0.8.6a allows remote attackers to cause a denial of service (application crash) via a crafted .wmv file.
by shinnai
CVE-2007-0256 EXPLOITDB python VERIFIED
Videolan Vlc Media Player - Denial of Service
VideoLAN VLC 0.8.6a allows remote attackers to cause a denial of service (application crash) via a crafted .wmv file.
by shinnai
CVE-2007-0228 EXPLOITDB python VERIFIED
Eiqnetworks Enterprise Security Analyzer - Denial of Service
The DataCollector service in EIQ Networks Network Security Analyzer allows remote attackers to cause a denial of service (service crash) via a (1) &CONNECTSERVER& (2) &ADDENTRY& (3) &FIN& (4) &START& (5) &LOGPATH& (6) &FWADELTA& (7) &FWALOG& (8) &SETSYNCHRONOUS& (9) &SETPRGFILE&, or (10) &SETREPLYPORT& string to TCP port 10618, which triggers a NULL pointer dereference.
by Ethan Hunt
CVE-2007-0126 EXPLOITDB python VERIFIED
Opera Browser - Memory Corruption
Heap-based buffer overflow in Opera 9.02 allows remote attackers to execute arbitrary code via a JPEG file with an invalid number of index bytes in the Define Huffman Table (DHT) marker.
by posidron
CVE-2007-0107 EXPLOITDB python VERIFIED
Wordpress < 2.0.5 - SQL Injection
WordPress before 2.0.6, when mbstring is enabled for PHP, decodes alternate character sets after escaping the SQL query, which allows remote attackers to bypass SQL injection protection schemes and execute arbitrary SQL commands via multibyte charsets, as demonstrated using UTF-7.
by Stefan Esser
CVE-2006-6917 EXPLOITDB python VERIFIED
Broadcom Brightstor Arcserve Backup Server - Buffer Overflow
Multiple buffer overflows in Computer Associates (CA) BrightStor ARCserve Backup R11.5 Server before SP2 allows remote attackers to execute arbitrary code in the Tape Engine (tapeeng.exe) via a crafted RPC request with (1) opnum 38, which is not properly handled in TAPEUTIL.dll 11.5.3884.0, or (2) opnum 37, which is not properly handled in TAPEENG.dll 11.5.3884.0.
by Winny Thomas
CVE-2007-0015 EXPLOITDB python VERIFIED
Apple Quicktime - Buffer Overflow
Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI.
by Winny Thomas
CVE-2006-5551 EXPLOITDB python VERIFIED
Qksoft QK SMTP < 3.0.1 - Buffer Overflow
Stack-based buffer overflow in QK SMTP 3.01 and earlier might allow remote attackers to execute arbitrary code via a long argument to the RCPT TO command.
by Jacopo Cervini
CVE-2006-6855 EXPLOITDB python VERIFIED
AIDeX Mini-WebServer 1.1 - DoS
AIDeX Mini-WebServer 1.1 early release 3 allows remote attackers to cause a denial of service (daemon crash) via a flood of HTTP GET requests, possibly related to display of HTTP log data by the GUI. NOTE: some of these details are obtained from third party information.
by shinnai
CVE-2006-6723 EXPLOITDB python VERIFIED
Microsoft Windows <XP SP2 - DoS
The Workstation service in Microsoft Windows 2000 SP4 and XP SP2 allows remote attackers to cause a denial of service (memory consumption) via a large maxlen value in an NetrWkstaUserEnum RPC request.
by h07
CVE-2006-6801 EXPLOITDB python VERIFIED
SH-News 0.93 - Code Injection
PHP remote file inclusion vulnerability in misc.php in SH-News 0.93, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via the news_cfg[path] parameter.
by bd0rk
CVE-2006-6751 EXPLOITDB python VERIFIED
XM Easy Personal FTP Server <5.2.1 - DoS
Format string vulnerability in XM Easy Personal FTP Server 5.2.1 allows remote attackers to cause a denial of service (application crash) via format string specifiers in the USER command or certain other available or nonexistent commands. NOTE: It was later reported that 5.3.0 is also vulnerable.
by shinnai
CVE-2006-6673 EXPLOITDB python VERIFIED
WinFtp Server 2.0.2 - DoS
WinFtp Server 2.0.2 allows remote attackers to cause a denial of service (crash) via long (1) PASV, (2) LIST, (3) USER, (4) PORT, and possibly other commands.
by shinnai
EIP-2026-101022 EXPLOITDB python VERIFIED
HP Printer FTP Print Server 2.4.5 - 'LIST' Buffer Overflow
by Joxean Koret
By Source
All 4,759 Writeup 54,687 Exploitdb 50,186 Nomisec 21,443 Metasploit 3,228 Github 2,587 Vulncheck_xdb 904 Inthewild 518 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,364 ruby 5,960 python 5,949 c 3,580 perl 2,854 html 2,056 php 1,334 bash 459 java 362 javascript 260 c++ 250 shell 95 go 55 postscript 25 xml 24