CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

54 matches found

seebug.org•added 2006/03/22 12:0 a.m.•32 views

BomberClone < 0.11.6.2 (Error Messages) Remote Buffer Overflow Exploit

No description provided by source. / bomberclone 0.11.6.2 remote exploit CVE-2006-0460 3/14/06 [email protected] / include stdio.h include stdlib.h include string.h include unistd.h include sys/types.h include sys/socket.h include netinet/in.h include arpa/inet.h / fork + bind port 31337 - ty izi...

7.5CVSS0.1AI score0.67754EPSS

Exploits8

Exploit DB•added 2005/05/06 12:0 a.m.•35 views

ZeroBoard - Worm Source Code

/ The worm exploits a vulnerability in ZeroBoard, allowing an attacker to inject arbitrary PHP code. /str0ke / / ZeroBoard -1day INE w0rm / include include include include include include include include include ifdef sun include endif / SunOS / define DEBUGING undef DEBUGING define TMPFILE...

7.4AI score

Exploits0

exploitpack•added 2005/05/03 12:0 a.m.•9 views

HP-UX FTPD 1.1.214.4 - REST Remote Brute Force

HP-UX FTPD 1.1.214.4 - REST Remote Brute Force / Author: phased /str0ke / include include include include include include include int main int argc, char argv int sock, rc; long int i; struct sockaddrin saddr; struct hostent h; char buf256; printf"DMhpux FTPd - REST bug brute forcer\n"; printf"by...

7.5AI score

Exploits0

Exploit DB•added 2005/02/07 12:0 a.m.•36 views

Foxmail 2.0 - 'MAIL FROM:' Denial of Service

!/usr/bin/python Code by OYXin oyxinatsegfault.cn import socket import sys import getopt def usage: print "Usage: foxserver.py -h host -p port" sys.exit0 if name == 'main': try: opts, args = getopt.getoptsys.argv1:, "h:p:" except getopt.GetoptError, msg: print msg usage for o,a in opts: if o in...

7.4AI score

Exploits0

FreeBSD•added 2005/01/14 12:0 a.m.•19 views

newspost -- server response buffer overflow vulnerability

The newspost program uses a function named socketgetline to read server responses from the network socket. Unfortunately this function does not check the length of the buffer in which the read data is stored and only stops reading when a newline character is found. A malicious NNTP server could u...

7.5CVSS6.6AI score0.15874EPSS

Exploits1References1

Exploit DB•added 2005/01/08 12:0 a.m.•60 views

Webmin 1.5 - Web Brute Force (CGI)

!/usr/bin/perl use CGI qw:standard; use IO::Socket; $CGI::HEADERSONCE = 1; $CGI = new CGI; $atak = $CGI-param"atak"; $host = $CGI-param"host"; $wlist = $CGI-param"wlist"; $cmd = $CGI-param"cmd"; print $CGI-header-type='text/html',-charset='windows-1254'; print qqWebmin Web Brute Force v1.5 - cgi...

7.4AI score

Exploits0

0day.today•added 2004/12/05 12:0 a.m.•46 views

phpBB v1.0.0 - 2.0.10 admin_cash.php remote exploit

Exploit for unknown platform in category web applications =================================================== phpBB v1.0.0 - 2.0.10 admincash.php remote exploit =================================================== / exploit for phpBB 1.0.0 - 2.0.10 edit the b4b0.php file with the correct url to yo...

7.1AI score

Exploits0

RedHat Linux•added 2004/10/04 3:56 p.m.•3 views

security flaw

XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions...

7.5CVSS5.9AI score0.02477EPSS

Exploits0References4

securityvulns•added 2004/09/27 12:0 a.m.•27 views

Possible DoS attack against jabberd 1.4.3 and jadc2s 0.9.0

jabberd up to and including version 1.4.3 and jadc2s up to and including version 0.9.0 are vulnerable against a DoS attack reported by Jose Antonio Calvo yesterday on the jabberd mailing list. http://jabberstudio.org/pipermail/jabberd/2004-September/002004.html An attacker can crash a running...

0.6AI score

Exploits0

Exploit DB•added 2004/07/10 12:0 a.m.•104 views

MySQL 4.1/5.0 - Zero-Length Password Authentication Bypass

!/usr/bin/perl The script connects to MySQL and attempts to log in using a zero-length password Based on the vuln found by NGSSecurity The following Perl script can be used to test your version of MySQL. It will display the login packet sent to the server and it's reply. Exploit copyright c 2004 ...

7.4AI score

Exploits0

Exploit DB•added 2003/12/21 12:0 a.m.•48 views

phpBB 2.0.6 - 'search_id' SQL Injection / MD5 Hash

!/usr/bin/perl -w use IO::Socket; PROOF-OF-CONCEPT work only with mysql ver 4.0 work only with post 1 Example: C:\r57phpbb-poc.pl 127.0.0.1 phpBB2 2 2 prepare to connect... + connected prepare to send data... + OK wait for response... + MD5 Hash for user with id=2 is:...

7.4AI score

Exploits0

Exploit DB•added 2003/05/22 12:0 a.m.•46 views

WsMp3d 0.x - Remote Heap Overflow

/ Title: Remote Heap Corruption Overflow vulnerability in WsMp3d + Exploit: 0x82-Remote.WsMp3d.again.c bash$ ./0x82--Remote.WsMp3d.again -h 61.37.xxx.xx -t2 WsMp3 Server Heap Corruption Remote root exploit by Xpl017Elz. + Hostname: 61.37.xxx.xx + Port num: 8000 + Retloc address: 0x8058d8c + Retad...

7.4AI score

Exploits0

Packet Storm•added 2002/04/23 12:0 a.m.•63 views

iisfux0r.txt

/ iisfux0r.c - Microsoft IIS W3SVC Denial of Service, c Filip Maertens - PoC BUG-ID : 2002009 CVE : CAN-2002-0072 Advisory : Peter Grundle @ KPMG Dave Aitel @ AtStake This will bring down the Inetinfo.exe process, in which you create a Denial of Service condition on your webserver. Please, confir...

5CVSS6.5AI score0.56627EPSS

Exploits1

exploitpack•added 2001/01/12 12:0 a.m.•27 views

Fastgrafs whois.cgi - Remote Command Execution

Fastgrafs whois.cgi - Remote Command Execution !/usr/bin/perl whois.pl - Marco van Berkum - [email protected] homepage: http://ws.obit.nl - exploits Fastgraf's whois.cgi DO NOT EDIT THIS HEADER, else the bedbugs will bite Greets to sigmo for finding stupid POST examples Also greetings to DUCKEL...

0.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by