Python Exploits

6,700 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-118474 EXPLOITDB python VERIFIED
Easy FTP 1.7.0.11 - 'NLST' / 'NLST -al' / 'APPE' / 'RETR' / 'SIZE' / 'XCWD' Remote Buffer Overflow
by Rabih Mohsen
EIP-2026-116197 EXPLOITDB python VERIFIED
Rosoft Media Player 4.4.4 - Buffer Overflow (SEH) (PoC)
by anonymous
EIP-2026-115879 EXPLOITDB python VERIFIED
Mthree Development MP3 to WAV Decoder - Denial of Service
by Oh Yaw Theng
CVE-2010-2561 EXPLOITDB python VERIFIED
Microsoft XML Core Services 3.0 - Remote Code Execution via Crafted HTTP Response
Microsoft XML Core Services (aka MSXML) 3.0 does not properly handle HTTP responses, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted response, aka "Msxml2.XMLHTTP.3.0 Response Handling Memory Corruption Vulnerability."
by Skylined
CVE-2010-2550 EXPLOITDB python VERIFIED
Microsoft Windows SMB Server - Remote Code Execution via Crafted SMB Packet
The SMB Server in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly validate fields in an SMB request, which allows remote attackers to execute arbitrary code via a crafted SMB packet, aka "SMB Pool Overflow Vulnerability."
by laurent gaffie
CVE-2009-4962 EXPLOITDB python VERIFIED
Fat Player 0.6b - Remote Code Execution via Long String in WAV File
Stack-based buffer overflow in Fat Player 0.6b allows remote attackers to execute arbitrary code via a long string in a .wav file. NOTE: some of these details are obtained from third party information.
by Praveen Darshanam
EIP-2026-116501 EXPLOITDB python VERIFIED
Visual MP3 Splitter & Joiner 6.1 - Denial of Service
by Oh Yaw Theng
EIP-2026-116139 EXPLOITDB python VERIFIED
Quintessential Media Player 5.0.121 - '.m3u' Buffer Overflow
by Abhishek Lyall
EIP-2026-116119 EXPLOITDB python VERIFIED
QQ Computer Manager - 'TSKsp.sys' Local Denial of Service
by Lufeng Li
CVE-2010-1173 EXPLOITDB python VERIFIED
Linux Kernel < 2.6.33.3 - Denial of Service via SCTPChunkInit Packet with Invalid Parameters
The sctp_process_unk_param function in net/sctp/sm_make_chunk.c in the Linux kernel 2.6.33.3 and earlier, when SCTP is enabled, allows remote attackers to cause a denial of service (system crash) via an SCTPChunkInit packet containing multiple invalid parameters that require a large amount of error data.
by Jon Oberheide
CVE-2010-20123 EXPLOITDB HIGH python VERIFIED
Steinberg MyMP3Player <3.0.0.67 - Buffer Overflow
Steinberg MyMP3Player version 3.0 (build 3.0.0.67) is vulnerable to a stack-based buffer overflow when parsing .m3u playlist files. The application fails to properly validate the length of input data within the playlist, allowing a specially crafted file to overwrite critical memory structures and execute arbitrary code. This vulnerability can be exploited locally by convincing a user to open a malicious .m3u file.
by Oh Yaw Theng
EIP-2026-115610 EXPLOITDB python VERIFIED
MediaMonkey 3.2.1.1297 - Denial of Service (PoC)
by anonymous
CVE-2009-1330 EXPLOITDB python VERIFIED
Easy RM to MP3 Converter - Stack-based Buffer Overflow via Long Filename in Playlist File
Stack-based buffer overflow in Easy RM to MP3 Converter allows remote attackers to execute arbitrary code via a long filename in a playlist (.pls) file.
by Oh Yaw Theng
EIP-2026-117613 EXPLOITDB python VERIFIED
Mini-stream RM-MP3 Converter/WMDownloader/ASX to MP3 Converter - Local Stack Buffer Overflow
by Praveen Darshanam
CVE-2010-10017 EXPLOITDB HIGH python VERIFIED
WM Downloader 3.1.2.2 - Buffer Overflow
WM Downloader version 3.1.2.2 is vulnerable to a buffer overflow when processing a specially crafted .m3u playlist file. The application fails to properly validate input length, allowing an attacker to overwrite structured exception handler (SEH) records and execute arbitrary code. Exploitation occurs locally when a user opens the malicious file, and the payload executes with the privileges of the current user.
by fdiskyou
EIP-2026-119239 EXPLOITDB python VERIFIED
UPlusFTP Server 1.7.1.01 - (Authenticated) HTTP Remote Buffer Overflow
by Karn Ganeshen & corelanc0d3r
EIP-2026-117809 EXPLOITDB python VERIFIED
QQPlayer 2.3.696.400p1 - '.smi' File Buffer Overflow
by Lufeng Li
EIP-2026-117808 EXPLOITDB python VERIFIED
QQPlayer - '.cue' File Buffer Overflow
by Lufeng Li
EIP-2026-117807 EXPLOITDB python VERIFIED
QQPlayer - '.asx' File Processing Buffer Overflow
by Li Qingshan
CVE-2010-20121 EXPLOITDB CRITICAL python VERIFIED
EasyFTP Server <= 1.7.0.11 - Unauthenticated Stack-based Buffer Overflow via CWD Command
EasyFTP Server versions up to 1.7.0.11 contain a stack-based buffer overflow vulnerability in the FTP command parser. When processing the CWD (Change Working Directory) command, the server fails to properly validate the length of the input string, allowing attackers to overwrite memory on the stack. This flaw enables remote code execution without authentication, as EasyFTP allows anonymous access by default. The vulnerability was resolved in version 1.7.0.12, after which the product was renamed “UplusFtp.”
by fdiskyou
CVSS 9.8
EIP-2026-116161 EXPLOITDB python VERIFIED
Really Simple IM 1.3beta - Denial of Service (PoC)
by loneferret
EIP-2026-118485 EXPLOITDB python VERIFIED
EasyFTP Server 1.7.0.11 - 'MKD' (Authenticated) Remote Buffer Overflow
by Karn Ganeshen
EIP-2026-118482 EXPLOITDB python VERIFIED
EasyFTP Server 1.7.0.11 - 'LIST' (Authenticated) Remote Buffer Overflow
by Karn Ganeshen
EIP-2026-116085 EXPLOITDB python VERIFIED
Power/Personal FTP Server - RETR Denial of Service
by antrhacks
CVE-2010-0822 EXPLOITDB python VERIFIED
MS11-038 Microsoft Office Excel Malformed OBJ Record Handling Overflow
Stack-based buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via an Excel file with a crafted OBJ (0x5D) record, aka "Excel Object Stack Overflow Vulnerability."
by webDEViL