Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-116929 EXPLOITDB c
BS.Player 2.56 build 1043 - 'mfc71loc.dll' DLL Hijacking
by diwr
CVE-2010-3126 EXPLOITDB c
avast! Free Antivirus <5.0.594 - RCE
Untrusted search path vulnerability in avast! Free Antivirus version 5.0.594 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse mfc90loc.dll that is located in the same folder as an avast license (.avastlic) file.
by diwr
CVE-2010-5241 EXPLOITDB c VERIFIED
Autodesk AutoCAD 2010 - Privilege Escalation
Multiple untrusted search path vulnerabilities in Autodesk AutoCAD 2010 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) IBFS32.DLL file in the current working directory, as demonstrated by a directory that contains a .dwg file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by xsploited security
EIP-2026-116805 EXPLOITDB c
Apple Safari 5.0.1 - 'dwmapi.dll' DLL Hijacking
by Secfence
CVE-2010-3150 EXPLOITDB c
Adobe Premier Pro CS4 4.0.0 - Untrusted Search Path and DLL Hijacking via Trojan Horse DLL
Untrusted search path vulnerability in Adobe Premier Pro CS4 4.0.0 (314 (MC: 160820)) allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as a .pproj, .prfpset, .prexport, .prm, .prmp, .prpreset, .prproj, .prsl, .prtl, or .vpr file.
by Glafkos Charalambous
CVE-2010-3127 EXPLOITDB c
Adobe Photoshop CS2-CS5 - Untrusted Search Path DLL Hijacking via Trojan Horse DLL
Untrusted search path vulnerability in Adobe PhotoShop CS2 through CS5 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or Wintab32.dll that is located in the same folder as a PSD or other file that is processed by PhotoShop. NOTE: some of these details are obtained from third party information.
by storm
CVE-2010-3151 EXPLOITDB c
Adobe On Location CS4 Build 315 - RCE
Untrusted search path vulnerability in Adobe On Location CS4 Build 315 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as an OLPROJ file.
by Glafkos Charalambous
CVE-2010-3153 EXPLOITDB c
Adobe InDesign CS4 6.0 - Untrusted Search Path Vulnerability via Trojan Horse DLL
Untrusted search path vulnerability in Adobe InDesign CS4 6.0, InDesign CS5 7.0.2 and earlier, Adobe InDesign Server CS5 7.0.2 and earlier, and Adobe InCopy CS5 7.0.2 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as an .indl, .indp, .indt, or .inx file.
by Glafkos Charalambous
CVE-2010-3152 EXPLOITDB c
Adobe Illustrator CS4 14.0.0, CS5 15.0.1 and earlier - Untrusted Search Path and DLL Hijacking via Trojan Horse DLL
Untrusted search path vulnerability in Adobe Illustrator CS4 14.0.0, CS5 15.0.1 and earlier, and possibly other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or aires.dll that is located in the same folder as an .ait or .eps file.
by Glafkos Charalambous
CVE-2010-3154 EXPLOITDB c VERIFIED
Adobe Extension Manager CS5 5.0.298 - RCE
Untrusted search path vulnerability in Adobe Extension Manager CS5 5.0.298 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .mxi or .mxp file.
by LiquidWorm
CVE-2010-3155 EXPLOITDB c VERIFIED
Adobe ExtendScript Toolkit (ESTK) CS5 3.5.0.52 - RCE
Untrusted search path vulnerability in Adobe ExtendScript Toolkit (ESTK) CS5 3.5.0.52 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .jsx file.
by LiquidWorm
CVE-2010-3132 EXPLOITDB c
Adobe Dreamweaver CS5 11.0 build 4916 and 4909 - Untrusted Search Path and DLL Hijacking via Trojan Horse DLL
Untrusted search path vulnerability in Adobe Dreamweaver CS5 11.0 build 4916, build 4909, and probably other versions, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) mfc90loc.dll or (2) dwmapi.dll that is located in the same folder as a CSS, PHP, ASP, or other file that automatically launches Dreamweaver.
by diwr
CVE-2010-3149 EXPLOITDB c
Adobe Device Central CS5 <3.0.1.0 - RCE
Untrusted search path vulnerability in Adobe Device Central CS5 3.0.0(376), 3.0.1.0 (3027), and probably other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse qtcf.dll that is located in the same folder as an ADCP file.
by Glafkos Charalambous
EIP-2026-115254 EXPLOITDB text
Flash Movie Player 1.5 - File Magic Denial of Service
by Matthew Bergin
EIP-2026-112095 EXPLOITDB text VERIFIED
Simple Forum PHP - Multiple Vulnerabilities
by arnab_s
EIP-2026-105870 EXPLOITDB text
ClanSphere 2010 - Multiple Vulnerabilities
by Sweet
EIP-2026-105511 EXPLOITDB text VERIFIED
BlastChat Client 3.3 - Cross-Site Scripting
by Aung Khant
EIP-2026-103389 EXPLOITDB text VERIFIED
Adobe Acrobat Reader < 9.x - Memory Corruption
by ITSecTeam
EIP-2026-103388 EXPLOITDB python VERIFIED
Adobe Acrobat and Reader 9.3.4 - 'AcroForm.api' Memory Corruption
by ITSecTeam
CVE-2003-0990 EXPLOITDB ruby VERIFIED
SquirrelMail 1.4.0 - GPG Plugin 1.1 - Command Injection
The parseAddress code in (1) SquirrelMail 1.4.0 and (2) GPG Plugin 1.1 allows remote attackers to execute commands via shell metacharacters in the "To:" field.
by Metasploit
CVE-2001-0414 EXPLOITDB ruby VERIFIED
ntpd < 4.0.99k - Buffer Overflow via Long readvar Argument
Buffer overflow in ntpd ntp daemon 4.0.99k and earlier (aka xntpd and xntp3) allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long readvar argument.
by Metasploit
CVE-2010-3141 EXPLOITDB c
Microsoft PowerPoint 2010 - DLL Hijacking via Untrusted Search Path
Untrusted search path vulnerability in Microsoft PowerPoint 2010 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse pptimpconv.dll that is located in the same folder as a .odp, .pot, .potm, .potx, .ppa, .pps, .ppsm, .ppsx, .ppt, .pptm, .pptx, .pwz, .sldm, or .sldx file.
by TheLeader
CVE-2010-3129 EXPLOITDB c VERIFIED
uTorrent <= 2.0.3 - DLL Hijacking via Trojan Horse DLL in Torrent File Directory
Untrusted search path vulnerability in uTorrent 2.0.3 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse plugin_dll.dll, userenv.dll, shfolder.dll, dnsapi.dll, dwmapi.dll, iphlpapi.dll, dhcpcsvc.dll, dhcpcsvc6.dll, or rpcrtremote.dll that is located in the same folder as a .torrent or .btsearch file.
by TheLeader
CVE-2010-3133 EXPLOITDB c VERIFIED
Wireshark 0.8.4-1.0.15 and 1.2.0-1.2.10 - Untrusted Search Path DLL Hijacking via Trojan Horse DLL
Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 through 1.2.10 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse airpcap.dll, and possibly other DLLs, that is located in the same folder as a file that automatically launches Wireshark.
by TheLeader
CVE-2010-3128 EXPLOITDB c
TeamViewer < 5.0.8703 - Untrusted Search Path and DLL Hijacking via Trojan Horse dwmapi.dll
Untrusted search path vulnerability in TeamViewer 5.0.8703 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .tvs or .tvc file.
by Glafkos Charalambous