Exploitdb Exploits
4,759 exploits tracked across all sources.
Microsoft Windows XP SP1 - Denial of Service via Empty Datagram to Raw IP over IP Socket
Microsoft Windows XP SP1 allows local users to cause a denial of service (system crash) via an empty datagram to a raw IP over IP socket (IP protocol 4), as originally demonstrated using code in Python 2.3.
MailEnable Standard 1.8 - Denial of Service via Format String in Mailto Field
Format string vulnerability in MailEnable 1.8 allows remote attackers to cause a denial of service (application crash) via format string specifiers in the mailto field.
by Tal Zeltzer
Cerulean Studios Trillian 3.0 - Remote '.png' Image File Parsing Buffer Overflow
by Tal Zeltzer
Trillian 3.0 and Pro 3.0 - Buffer Overflow via Crafted PNG Image
Buffer overflow in Trillian 3.0 and Pro 3.0 allows remote attackers to execute arbitrary code via a crafted PNG image file.
by Tal Zeltzer
PHPNews 1.2.4 - Remote File Inclusion via auth.php path Parameter
PHP remote file inclusion vulnerability in auth.php in PHPNews 1.2.4 and possibly 1.2.3, allows remote attackers to execute arbitrary PHP code via the path parameter.
by mozako
Savant Web Server 3.1 - Remote Code Execution via Long HTTP Request
Buffer overflow in Savant Web Server 3.1 allows remote attackers to execute arbitrary code via a long HTTP request.
by Jerome Athias
Foxmail Email Server 2.0 - Remote Code Execution via USER Command Format String
Format string vulnerability in Foxmail Server 2.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format strings in the USER command.
by OYXin
Savant Web Server 3.1 - Remote Code Execution via Long HTTP Request
Buffer overflow in Savant Web Server 3.1 allows remote attackers to execute arbitrary code via a long HTTP request.
by Tal Zeltzer
Mercury (Pegasus) Mail 4.01 - Remote Code Execution via IMAP SELECT Command
Buffer overflow in the IMAP service of Mercury (Pegasus) Mail 4.01 allows remote attackers to execute arbitrary code via a long SELECT command.
by muts
Jabber Server - Buffer Overflow via Long Username
Buffer overflow in the C2S module in the open source Jabber 2.x server (Jabberd) allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long username.
by icbm
SLMail 5.1.0.4420 - Buffer Overflow
Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe, (2) a long XTRN argument to slmail.exe, (3) a long string to POPPASSWD, or (4) a long password to the POP3 server.
by muts
YoungZSoft CCProxy < 6.2 - Remote Code Execution via Long Ping Command
Buffer overflow in YoungZSoft CCProxy 6.2 and earlier allows remote attackers to execute arbitrary code via a long address in a ping (p) command to the Telnet proxy service, a different vector than CVE-2004-2416.
by KaGra
MailCarrier 2.51 - Buffer Overflow via EHLO Command
Buffer overflow in MailCarrier 2.51 allows remote attackers to execute arbitrary code via a long (1) EHLO and possibly (2) HELO command.
by muts
BaSoMail - Multiple Buffer Overflow (Denial of Service) (PoC) Vulnerabilities
by muts
Ability Server 2.25, 2.32, 2.34 - Remote Code Execution via Long APPE Command
Buffer overflow in Ability Server 2.25, 2.32, 2.34, and possibly other versions, allows remote attackers to execute arbitrary code via a long APPE command.
by KaGra
Ability Server 2.34 - Remote Code Execution via Long STOR Command
Buffer overflow in Ability Server 2.34, and possibly other versions, allows remote attackers to execute arbitrary code via a long STOR command.
by muts
Cfengine 2.0.0-2.1.7p1 - Remote Code Execution via Long SAUTH Command
Heap-based buffer overflow in the AuthenticationDialogue function in cfservd for Cfengine 2.0.0 to 2.1.7p1 allows remote attackers to execute arbitrary code via a long SAUTH command during RSA authentication.
by Juan Pablo Martinez Kuhn
rlpr 2.0.4 - Remote Code Execution via Format String in msg Function
Format string vulnerability in the msg function for rlpr daemon (rlprd) 2.0.4 allows remote attackers to execute arbitrary code via format string specifiers in a buffer that can not be resolved, which is provided to the syslog function.
by jaguar
rlpr 2.0.4 - Remote Code Execution via Format String in msg Function
Format string vulnerability in the msg function for rlpr daemon (rlprd) 2.0.4 allows remote attackers to execute arbitrary code via format string specifiers in a buffer that can not be resolved, which is provided to the syslog function.
Microsoft Outlook Express 6.0 - Remote Denial of Service
by Ben Rampling
Microsoft Windows XP and Vista - Denial of Service via Gratuitous ARP
Microsoft Windows XP and Vista overwrites ARP table entries included in gratuitous ARP, which allows remote attackers to cause a denial of service (loss of network access) by sending a gratuitous ARP for the address of the Vista host.
by Kristian Hermansen
Sambar Server <6.0 - Buffer Overflow
Stack-based buffer overflow in results.stm for Sambar Server before the 6.0 production release allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP POST request with a long query parameter.
bremsserver 1.2.4 - Directory Traversal via URL
Directory traversal vulnerability in BremsServer 1.2.4 allows remote attackers to read arbitrary files via ".." (dot dot) sequences in the URL.
by Donato Ferrante
NullSoft Shoutcast Server 1.9.2 - Denial of Service via Long icy-name or icy-url Parameters
Buffer overflow in NullSoft Shoutcast Server 1.9.2 allows local users to cause a denial of service via (1) icy-name followed by a long server name or (2) icy-url followed by a long URL.
by airsupply
Microsoft Windows Server 2000 - Active Directory Remote Stack Overflow
by Core Security
By Source