[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]
milw0rm
[ linux - remote ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-07-14 Virtualmin < 3.703 Multiple Local/Remote Vulnerabilities 5985 R D Filip Palian
2009-06-04 Kloxo 5.75 (24 Issues) Multiple Remote Vulnerabilities 28512 R D n/a
2009-04-29 Adobe Reader 8.1.4/9.1 GetAnnots() Remote Code Execution Exploit 12083 R D Arr1val
2009-04-29 Adobe 8.1.4/9.1 customDictionaryOpen() Code Execution Exploit 11619 R D Arr1val
2009-04-28 Linux Kernel 2.6.x SCTP FWD Memory Corruption Remote Exploit 18691 R D sgrakkyu
2009-04-09 net2ftp <= 0.97 Cross-Site Scripting/Request Forgery Vulnerabilities 3761 R D cicatriz
2009-01-08 Samba < 3.0.20 Remote Heap Overflow Exploit (oldie but goodie) 12519 R D zuc
2008-11-21 verlihub <= 0.9.8d-RC2 Remote Command Execution Vulnerability 10402 R D v4lkyrius
2008-11-18 No-IP DUC <= 2.1.7 Remote Code Execution Exploit 16020 R D XenoMuta
2008-07-17 Debian OpenSSH Remote SELinux Privilege Elevation Exploit (auth) 25330 R D eliteboy
2008-07-12 trixbox 2.6.1 (langChoice) Remote Root Exploit (py) 11387 R D loganWHD
2008-07-09 trixbox (langChoice) Local File Inclusion Exploit (connect-back) v2 9999 R D Jean-Michel BESNARD
2008-06-01 Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit (Python) 18011 R D WarCat team
2008-04-06 Apache Tomcat Connector jk2-2.0.2 (mod_jk2) Remote Overflow Exploit 17406 R D INetCop Security
2008-03-20 CenterIM <= 4.22.3 Remote Command Execution Vulnerability 7871 R D Brian Fonfara
2008-03-09 VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit 10405 R D DarkFig
2008-01-21 Axigen <= 5.0.2 AXIMilter Remote Format String Exploit 4479 R D hempel
2008-01-07 ClamAV 0.91.2 libclamav MEW PE Buffer Overflow Exploit 7070 R D Thomas Pollet
2007-10-21 Apache Tomcat (webdav) Remote File Disclosure Exploit (ssl support) 22343 R D h3rcul3s
2007-10-16 Boa 0.93.15 HTTP Basic Authentication Bypass Exploit 10711 R D ikki
2007-10-15 eXtremail <= 2.1.1 (LOGIN) Remote Stack Overflow Exploit 7108 R D mu-b
2007-10-15 eXtremail <= 2.1.1 PLAIN authentication Remote Stack Overflow Exploit 7898 R D mu-b
2007-10-10 Eggdrop Server Module Message Handling Remote BoF Exploit 7162 R D bangus/magnum
2007-10-01 smbftpd 0.96 SMBDirList-function Remote Format String Exploit 9231 R D Jerry Illikainen
2007-09-20 Lighttpd <= 1.4.17 FastCGI Header Overflow Remote Exploit 13621 R D andi
2007-09-04 Web Oddity Web Server 0.09b Directory Transversal Exploit 5376 R D Katatafish
2007-08-27 BitchX 1.1 Final MODE Remote Heap Overflow Exploit (0-day) 8258 R D bannedit
2007-08-25 SIDVault LDAP Server Preauth Remote Buffer Overflow Exploit 5096 R D Joxean Koret
2007-08-24 ProFTPD 1.x (module mod_tls) Remote Buffer Overflow Exploit 29734 R D netris
2007-07-29 corehttp 0.5.3alpha (httpd) Remote Buffer Overflow Exploit 6706 R D vade79
2007-07-08 Apache Tomcat Connector (mod_jk) Remote Exploit (exec-shield) 25728 R D Xpl017Elz
2007-06-21 BitchX 1.1-final (EXEC) Remote Command Execution Exploit 9531 R D clarity_
2007-05-14 webdesproxy 0.0.1 (GET Request) Remote Root Exploit (exec-shield) 6965 R D Xpl017Elz
2007-05-02 3proxy 0.5.3g proxy.c logurl() Remote Overflow Exploit (exec-shield) 7780 R D Xpl017Elz
2007-04-30 3proxy 0.5.3g proxy.c logurl() Remote Buffer Overflow Exploit (linux) 6935 R D vade79
2007-04-29 Fenice OMS server 1.10 Remote Buffer Overflow Exploit (exec-shield) 6979 R D Xpl017Elz
2007-04-24 GNU Mailutils imap4d 0.6 Remote Format String Exploit (exec-shield) 7518 R D Xpl017Elz
2007-04-12 Aircrack-ng 0.7 (specially crafted 802.11 packets) Remote BoF Exploit 12478 R D Jonathan So
2007-04-10 Kerberos 1.5.1 Kadmind Remote Root Buffer Overflow Vulnerability 8703 R D c0ntex
2007-03-30 Snort 2.6.1 DCE/RPC Preprocessor Remote Buffer Overflow Exploit (linux) 7623 R D Winny Thomas
2007-03-30 dproxy-nexgen Remote Root Buffer Overflow Exploit (x86-lnx) 7860 R D mu-b
2007-03-23 dproxy <= 0.5 Remote Buffer Overflow Exploit (meta 2.7) 5162 R D Alexander Klink
2007-03-01 madwifi <= 0.9.2.1 WPA/RSN IE Remote Kernel Buffer Overflow Exploit 8305 R D Massimiliano Oldani
2007-02-18 Axigen eMail Server 2.0.0b2 (pop3) Remote Format String Exploit 7879 R D fuGich
2007-01-08 Berlios GPSD <= 2.7 Remote Format String Exploit (meta) 5591 R D Enseirb
2006-12-19 Oracle <= 9i / 10g File System Access via utl_file Exploit 11155 R D Marco Ivaldi
2006-12-15 OpenLDAP <= 2.4.3 (KBIND) Remote Buffer Overflow Exploit 11343 R D Solar Eclipse
2006-12-15 GNU InetUtils ftpd 1.4.2 (ld.so.preload) Remote Root Exploit 10233 R D kcope
2006-11-28 Evince Document Viewer (DocumentMedia) Buffer Overflow Exploit 8123 R D K-sPecial
2006-11-27 ProFTPD 1.3.0 (sreplace) Remote Stack Overflow Exploit (meta) 36469 R D Evgeny Legerov
2006-08-29 Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit 9191 R D Expanders
2006-08-14 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit (3) 11787 R D K-sPecial
2006-05-21 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit 14371 R D kcope
2006-05-05 Quake 3 Engine 1.32b R_RemapShader() Remote Client BoF Exploit 21644 R D landser
2006-05-02 MySQL <= 5.0.20 COM_TABLE_DUMP Memory Leak/Remote BoF Exploit 24884 R D Stefano Di Paola
2006-05-02 MySQL (<= 4.1.18, 5.0.20) Local/Remote Information Leakage Exploit 19535 R D Stefano Di Paola
2006-04-25 Fenice OMS 1.10 (long get request) Remote Buffer Overflow Exploit 8879 R D c0d3r
2006-03-13 crossfire-server <= 1.9.0 SetUp() Remote Buffer Overflow Exploit 9079 R D landser
2006-03-12 PeerCast <= 0.1216 (nextCGIarg) Remote Buffer Overflow Exploit (2) 7860 RM D darkeagle
2006-03-11 PeerCast <= 0.1216 (nextCGIarg) Remote Buffer Overflow Exploit 7116 RM D prdelka
2006-02-10 Power Daemon <= 2.0.2 (WHATIDO) Remote Format String Exploit 8936 R D Gotfault Security
2006-02-10 OpenVMPSd <= 1.3 Remote Format String Exploit (Multiple Targets) 7127 R D Gotfault Security
2006-02-07 Mozilla Firefox 1.5 location.QueryInterface() Code Execution (linux) 30877 RM D H D Moore
2006-01-28 SHOUTcast <= 1.9.4 File Request Format String Exploit (Leaked) 13526 R D crash-x
2005-12-03 sobexsrv 1.0.0_pre3 Bluetooth syslog() Remote Format String Exploit 6906 R D Kevin Finisterre
2005-11-11 Snort <= 2.4.2 Back Orifice Pre-Preprocessor Remote Exploit (4) 7790 R D xwings
2005-11-05 linux-ftpd-ssl 0.17 (MKD/CWD) Remote Root Exploit 22205 R D kcope
2005-11-04 gpsdrive <= 2.09 (friendsd2) Remote Format String Exploit (ppc) 11647 R D Kevin Finisterre
2005-11-04 gpsdrive <= 2.09 (friendsd2) Remote Format String Exploit (x86) 11317 R D Kevin Finisterre
2005-11-02 Lynx <= 2.8.6dev.13 Remote Buffer Overflow Exploit (port bind) 7639 R D xwings
2005-10-25 Snort <= 2.4.2 Back Orifice Parsing Remote Buffer Overflow Exploit 8279 R D rd
2005-10-18 e107 <= 0.6172 (resetcore.php) Remote SQL Injection Exploit 14032 R D rgod
2005-10-16 Half-Life Server 3.1.1.0 Remote Buffer Overflow Exploit 4484 R D greuff
2005-10-11 phpBB 2.0.13 (admin_styles.php) Remote Command Execution Exploit 41500 R D RusH
2005-10-10 xine-lib <= 1.1 (media player library) Remote Format String Exploit 5978 R D Ulf Harnhammar
2005-10-02 Prozilla <= 1.3.7.4 (ftpsearch) Results Handling Buffer Overflow Exploit 6253 R D taviso
2005-09-26 RealPlayer/Helix Player Remote Format String Exploit (linux) 8445 R D c0ntex
2005-09-24 WzdFTPD <= 0.5.4 Remote Command Execution Exploit 8605 RM D kcope
2005-09-10 GNU Mailutils imap4d 0.6 (search) Remote Format String Exploit 10765 RM D Clément Lecigne
2005-08-22 Elm < 2.5.8 (Expires Header) Remote Buffer Overflow Exploit 6990 R D c0ntex
2005-08-06 Ethereal 10.x AFP Protocol Dissector Remote Format String Exploit 7047 R D vade79
2005-08-05 nbSMTP <= 0.99 (util.c) Client-Side Command Execution Exploit 5210 R D CoKi
2005-08-01 GNU Mailutils imap4d <= 0.6 Remote Format String Exploit 6585 RM D CoKi
2005-08-01 IPSwitch IMail Server <= 8.15 IMAPD Remote Root Exploit 12837 R D kcope
2005-06-20 PeerCast <= 0.1211 Remote Format String Exploit 6495 R D darkeagle
2005-06-14 ViRobot Advanced Server 2.0 (addschup) Remote Cookie Exploit 7426 R D Kevin Finisterre
2005-06-10 GNU Mailutils imap4d 0.5 < 0.6.90 Remote Format String Exploit 6245 RM D qobaiashi
2005-05-31 Ethereal <= 0.10.10 (SIP) Protocol Dissector Remote BoF Exploit 5989 R D Team W00dp3ck3r
2005-05-05 dSMTP Mail Server 3.1b Linux Remote Root Format String Exploit 7685 R D cybertronic
2005-05-03 Subversion 0.3.7/1.0.0 Remote Buffer Overflow Exploit 4387 R D greuff
2005-04-29 Snmppd SNMP Proxy Daemon Remote Format String Exploit 6963 R D cybertronic
2005-04-14 Sumus 0.2.2 httpd Remote Buffer Overflow Exploit 8395 R D vade79
2005-04-13 gld 1.4 (Postfix Greylisting Daemon) Remote Format String Exploit 8031 R D Xpl017Elz
2005-04-05 MailEnable Enterprise 1.x Imapd Remote Exploit 7029 RM D Expanders
2005-03-29 mtftpd <= 0.0.3 Remote Root Exploit 8343 R D darkeagle
2005-03-29 Cyrus imapd 2.2.4 - 2.2.8 (imapmagicplus) Remote Exploit 6848 R D crash-x
2005-03-28 Smail 3.2.0.120 Remote Root Heap Overflow Exploit 6448 R D infamous41md
2005-03-14 Ethereal <= 0.10.9 "3G-A11" Remote Buffer Overflow Exploit 5631 R D Diego Giagio
2005-02-20 GNU Cfengine 2.17p1 RSA Authentication Heap Overflow Exploit 4803 R D jsk
2005-02-18 Medal of Honor Spearhead Server Remote Buffer Overflow (Linux) 6794 R D millhouse
2005-02-12 Exim <= 4.43 auth_spa_server() Remote PoC Exploit 7920 R D Yuri Gushin
2005-02-09 Prozilla <= 1.3.7.3 Remote Format String Exploit 4756 R D Serkan Akpolat
2005-02-03 ngIRCd <= 0.8.2 Remote Format String Exploit 6055 R D CoKi
2005-02-03 Newspost 2.1 socket_getline() Remote Buffer Overflow Exploit v2 6417 R D cybertronic
2005-01-26 Berlios gpsd <= 2.7.x Remote Format String Vulnerability 5004 R D JohnH
2004-12-23 SHOUTcast DNAS/Linux 1.9.4 Format String Remote Exploit 7240 R D pucik
2004-12-12 Citadel/UX <= 6.27 Remote Root Format String Exploit 4545 R D CoKi
2004-11-27 PHP <= 4.3.7/ 5.0.0RC3 memory_limit Remote Exploit 10145 R D Gyan Chawdhary
2004-11-23 Prozilla 1.3.6 Remote Stack Overflow Exploit 4541 R D Serkan Akpolat
2004-11-09 Qwik SMTP 0.3 Remote Root Format String Exploit 4799 R D Carlos Barros
2004-10-28 WvTFTPd 0.9 Remote Root Heap Overflow Exploit 5014 R D infamous41md
2004-10-28 zgv 5.5 Multiple Arbitrary Code Execution PoC Exploits 4740 R D infamous41md
2004-10-17 Monit <= 4.2 Basic Authentication Remote Root Exploit 4589 R D rtk
2004-10-17 ProFTPD <= 1.2.10 Remote Users Enumeration Exploit 28035 R D Leon Juranic
2004-09-09 Citadel/UX <= 6.23 Remote USER Directive Exploit (Private Version) 4517 R D Nebunu
2004-08-30 Citadel/UX Remote Buffer Overflow Exploit 4682 R D Nebunu
2004-08-25 Hafiye 1.0 Remote Terminal Escape Sequence Injection Vulnerability 4705 R D Serkan Akpolat
2004-08-24 MusicDaemon <= 0.0.3 v2 Remote DoS and /etc/shadow Stealer 4344 R D Tal0n
2004-08-21 Qt BMP Parsing Bug Heap Overflow Exploit 4482 R D infamous41md
2004-08-20 XV 3.x BMP Parsing Local Buffer Overflow Exploit 4518 R D infamous41md
2004-08-19 PlaySMS <= 0.7 SQL Injection Exploit 5261 R D Noam Rathaus
2004-08-18 GV PostScript Viewer Remote Buffer overflow Exploit (2) 4325 R D infamous41md
2004-08-13 GV PostScript Viewer Remote Buffer overflow Exploit 4366 R D infamous41md
2004-08-13 Remote CVS <= 1.11.15 (error_prog_name) Remote Exploit 5698 R D Gyan Chawdhary
2004-08-11 LibPNG Graphics Library Remote Buffer Overflow Exploit 5040 R D infamous41md
2004-08-09 xine 0.99.2 Remote Stack Overflow Exploit 5668 R D c0ntex
2004-08-09 Dropbear SSH <= 0.34 Remote Root Exploit 12315 R D livenn
2004-08-08 Pavuk Digest Authentication Buffer Overflow Remote Exploit 4241 R D infamous41md
2004-08-06 CVSTrac Remote Arbitrary Code Execution Exploit 6575 R D n/a
2004-08-04 OpenFTPD <= 0.30.1 (message system) Remote Shell Exploit 5375 R D infamous41md
2004-08-03 OpenFTPD (<= 0.30.2) Remote Exploit 6231 R D andi
2004-07-22 Drcat 0.5.0-beta (drcatd) Remote Root Exploit 4264 R D Taif
2004-07-22 Samba <= 3.0.4 SWAT Authorization Buffer Overflow Exploit 7910 R D Noam Rathaus
2004-07-04 MPlayer <= 1.0pre4 GUI filename handling Overflow Exploit 5562 R D c0ntex
2004-06-25 Borland Interbase <= 7.x Remote Exploit 4500 R D Aviram Jenik
2004-06-25 Subversion 1.0.2 svn_time_from_cstring() Remote Exploit 5791 RM D Gyan Chawdhary
2004-06-25 rlpr <= 2.04 msg() Remote Format String Exploit 4175 R D jaguar
2004-05-05 XChat 1.8.0/2.0.8 socks5 Remote Buffer overflow Exploit 6447 R D vade79
2004-04-12 Monit <= 4.2 Remote Root Buffer Overflow Exploit 4485 R D Abhisek Datta
2004-04-09 Monit <= 4.1 Remote Root Buffer Overflow Exploit 4281 R D gsicht
2004-03-28 Ethereal 0.10.0-0.10.2 IGAP Overflow Remote Root Exploit 5082 R D Abhisek Datta
2004-01-14 lftp <= 2.6.9 Remote Stack based Overflow Exploit 6057 R D Li0n7
2003-12-27 Cyrus IMSPD v1.7 abook_dbname Remote Root Exploit 5028 R D SpikE
2003-12-06 Apache 1.3.*-2.0.48 mod_userdir Remote Users Disclosure Exploit 33141 R D m00
2003-11-20 Apache mod_gzip (with debug_mode) <= 1.2.26.1a Remote Exploit 8893 R D xCrZx
2003-10-15 ProFTPD <= 1.2.9 rc2 (ASCII File) Remote Root Exploit 8724 R D Solar Eclipse
2003-10-13 ProFTPD 1.2.7 - 1.2.9rc2 Remote Root & brute-force Exploit 14310 R D Haggis
2003-10-04 ProFTPD 1.2.9rc2 ASCII File Remote Root Exploit 12909 R D bkbll
2003-09-20 Knox Arkeia Pro 5.1.12 Backup Remote Root Exploit 6397 R D n/a
2003-09-16 Pine <= 4.56 Remote Buffer Overflow Exploit 4387 R D sorbo
2003-09-14 MySQL 3.23.x/4.0.x Remote Exploit 16441 R D bkbll
2003-08-29 Linux pam_lib_smb < 1.1.6 /bin/login Remote Exploit 5841 R D vertex
2003-08-28 GtkFtpd 1.0.4 Remote Root Buffer Overflow Exploit 5356 R D vade79
2003-08-22 Gopherd <= 3.0.5 FTP Gateway Remote Overflow Exploit 5601 R D vade79
2003-08-11 wu-ftpd 2.6.2 Remote Root Exploit (advanced version) 12425 R D Xpl017Elz
2003-08-03 wu-ftpd 2.6.2 off-by-one Remote Root Exploit 7942 R D Xpl017Elz
2003-07-25 miniSQL (mSQL) 1.3 Remote GID Root Exploit 4911 R D the itch
2003-07-17 Citadel/UX BBS 6.07 Remote Exploit 4835 R D Carl Livitt
2003-07-13 Samba 2.2.8 (Bruteforce Method) Remote Root Exploit 8641 R D Schizoprenic
2003-07-02 Linux eXtremail 1.5.x Remote Format Strings Exploit 5734 R D B-r00t
2003-06-27 Kerio MailServer 5.6.3 Remote Buffer Overflow Exploit 5686 R D B-r00t
2003-06-19 ProFTPD 1.2.9RC1 (mod_sql) Remote SQL Injection Exploit 9349 R D Spaine
2003-06-10 Atftpd 0.6 Remote Root Exploit (atftpdx.c) 5036 R D gunzip
2003-06-10 mnoGoSearch 3.1.20 Remote Command Execution Exploit 5313 R D pokleyzz
2003-06-08 Apache <= 2.0.45 APR Remote Exploit -Apache-Knacker.pl 21555 R D Matthew Murphy
2003-05-29 Webfroot Shoutbox < 2.32 (Apache) Remote Exploit 12156 R D n/a
2003-05-22 WsMp3d 0.x Remote Root Heap Overflow Exploit 5613 R D Xpl017Elz
2003-05-05 CommuniGate Pro Webmail 4.0.6 Session Hijacking Exploit 5174 R D Yaroslav Polyakov
2003-05-02 OpenSSH/PAM <= 3.6.1p1 Remote Users Ident (gossh.sh) 13825 R D Nicolas Couture
2003-04-30 Sendmail <= 8.12.8 prescan() BSD Remote Root Exploit 12278 R D bysin
2003-04-30 OpenSSH/PAM <= 3.6.1p1 Remote Users Discovery Tool 13125 R D Maurizio Agazzini
2003-04-25 PoPToP PPTP <= 1.1.4-b3 Remote Root Exploit (poptop-sane.c) 6360 RM D blightninjas
2003-04-23 Snort <=1.9.1 Remote Root Exploit (p7snort191.sh) 7362 R D truff
2003-04-18 PoPToP PPTP <= 1.1.4-b3 Remote Root Exploit 6686 RM D einstein
2003-04-10 Samba 2.2.8 Remote Root Exploit - sambal.c 10144 R D eSDee
2003-04-08 SETI@home Clients Buffer Overflow Exploit 4680 R D zillion
2003-04-07 Samba 2.2.x Remote Root Buffer Overflow Exploit 10874 RM D H D Moore
2003-04-04 Apache OpenSSL Remote Exploit (Multiple Targets) (OpenFuckV2.c) 31441 R D spabam
2002-12-24 Melange Chat Server 1.10 Remote Buffer Overflow Exploit 5460 R D innerphobia
2002-06-25 WU-IMAP 2000.287(1-2) Remote Exploit 5570 R D Teso
2002-05-14 Squid 2.4.1 Remote Buffer Overflow Exploit 9947 R D Teso
2002-05-14 wu-ftpd <= 2.6.1 Remote Root Exploit 10039 R D Teso
2002-01-01 rsync <= 2.5.1 Remote Exploit 5716 R D Teso
2002-01-01 rsync <= 2.5.1 Remote Exploit (2) 5472 R D Teso
2001-12-20 Solaris /bin/login Remote Root Exploit (SPARC/x86) 7794 R D Teso
2001-05-08 BeroFTPD 1.3.4(1) Linux x86 Remote Root Exploit 4270 R D qitest1
2001-03-03 IMAP4rev1 12.261/12.264/2000.284 (lsub) Remote Exploit 5984 R D SkyLaZarT
2001-03-02 BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit (4) 8201 R D multiple
2001-03-01 BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit 6602 R D Gneisenau
2001-03-01 BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit (2) 6175 R D LSD-PLaNET
2001-01-19 IMAP4rev1 10.190 Authentication Stack Overflow Exploit 5575 R D teleh0r
2001-01-02 Linux Kernel 2.2 (TCP/IP Weakness) Exploit 8012 R D Stealth
2000-12-15 LPRng 3.6.24-1 Remote Root Exploit 4970 R D venomous
2000-12-11 BFTPd 1.0.12 Remote Exploit 4800 R D korty
2000-12-11 LPRng 3.6.22/23/24 Remote Root Exploit 4722 R D sk8
2000-12-11 LPRng (RedHat 7.0) lpd Remote Root Format String Exploit 5604 R D DiGiT
2000-12-06 PHP 3.0.16/4.0.2 Remote Format Overflow Exploit 6987 R D Gneisenau
2000-11-30 INND/NNRP < 1.6.X Remote Root Overflow Exploit 4932 R D Babcia Padlina
2000-11-29 BFTPd vsprintf() Format Strings Exploit 5179 R D DiGiT
2000-11-16 Half Life (rcon) Remote Buffer Overflow Exploit 11240 R D Sao Paulo
1997-06-24 Linux imapd Remote Overflow File Retrieve Exploit 6673 R D p1

[ linux - local ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-09-17 Changetrack 4.3-3 Local Privilege Escalation Vulnerability 4182 R D Rick
2009-09-11 Linux Kernel 2.4/2.6 sock_sendpage() Local Root Exploit [3] 9644 R D Ramon Valle
2009-09-10 Enlightenment - Linux Null PTR Dereference Exploit Framework 11088 R D spender
2009-09-09 HTMLDOC 1.8.27 (html File Handling) Stack Buffer Overflow Exploit 1521 R D Pankaj Kohli
2009-09-09 Linux Kernel 2.4/2.6 sock_sendpage() Local Root Exploit [2] 9804 R D Ramon Valle
2009-09-09 GemStone/S 6.3.1 (stoned) Local Buffer Overflow Exploit 1285 R D Jeremy Brown
2009-09-02 Linux Kernel < 2.6.19 udp_sendmsg Local Root Exploit (x86/x64) 7843 R D spender
2009-09-02 Linux Kernel < 2.6.19 udp_sendmsg Local Root Exploit 13816 R D andi
2009-08-31 Linux Kernel 2.6 < 2.6.19 (32bit) ip_append_data() ring0 Root Exploit 8494 R D INetCop Security
2009-08-31 Linux Kernel < 2.6.31-rc7 AF_IRDA 29-Byte Stack Disclosure Exploit 3099 R D Jon Oberheide
2009-08-31 Linux Kernel 2.4/2.6 sock_sendpage() Local Root Exploit (ppc) 12627 R D Ramon Valle
2009-08-26 Linux Kernel <= 2.6.30 atalk_getname() 8-bytes Stack Disclosure Exploit 4651 R D Clément Lecigne
2009-08-25 Linux Kernel <= 2.6.31-rc7 AF_LLC getsockname 5-Byte Stack Disclosure 3781 R D Jon Oberheide
2009-08-24 Linux Kernel 2.4/2.6 sock_sendpage() ring0 Root Exploit (simple ver) 13080 R D INetCop Security
2009-08-18 Linux Kernel 2.x sock_sendpage() Local Root Exploit (Android Edition) 10052 R D Zinx
2009-08-14 Linux Kernel 2.x sock_sendpage() Local Ring0 Root Exploit 20319 R D spender
2009-08-14 Linux Kernel 2.x sock_sendpage() Local Root Exploit #2 19658 R D Przemyslaw Frasunek
2009-08-05 Linux Kernel < 2.6.14.6 procfs Kernel Memory Disclosure Exploit 3551 R D Jon Oberheide
2009-08-04 Linux Kernel <= 2.6.31-rc5 sigaltstack 4-Byte Stack Disclosure Exploit 5024 R D Jon Oberheide
2009-07-30 Compface 1.1.5 (.xbm File) Local Buffer Overflow Exploit 1341 R D His0k4
2009-07-20 PulseAudio (setuid) Priv. Escalation Exploit (ubu/9.04)(slack/12.2.0) 2150 R D n/a
2009-07-17 Linux 2.6.30+/SELinux/RHEL5 Test Kernel Local Root Exploit 0day 23796 R D spender
2009-07-13 Openswan <= 2.4.12/2.6.16 Insecure Temp File Creation Root Exploit 1874 R D nofame
2009-07-09 Linux Kernel <= 2.6.28.3 set_selection() UTF-8 Off By One Local Exploit 12986 R D sgrakkyu
2009-05-14 Linux Kernel 2.6.29 ptrace_attach() Local Root Race Condition Exploit 18825 R D prdelka
2009-05-13 Linux Kernel 2.6.x ptrace_attach Local Privilege Escalation Exploit 17118 R D s0m3b0dy
2009-04-30 Linux Kernel 2.6 UDEV < 141 Local Privilege Escalation Exploit 16917 R D Jon Oberheide
2009-04-27 libvirt_proxy <= 0.5.1 Local Privilege Escalation Exploit 4123 R D Jon Oberheide
2009-04-20 Linux Kernel 2.6 UDEV Local Privilege Escalation Exploit 28614 R D kcope
2009-04-17 cTorrent/DTorrent (.Torrent File) Buffer Overflow Exploit 4478 R D Michael Brooks
2009-04-08 Linux Kernel < 2.6.29 exit_notify() Local Privilege Escalation Exploit 23114 R D gat3way
2009-03-29 pam-krb5 < 3.13 Local Privilege Escalation Exploit 4707 R D Jon Oberheide
2009-01-25 PostgreSQL 8.2/8.3/8.4 UDF for Command Execution 4116 R D Bernardo Damele
2009-01-25 MySQL 4/5/6 UDF for Command Execution 15354 R D Bernardo Damele
2009-01-06 Debian GNU/Linux XTERM (DECRQSS/comments) Weakness Vulnerability 5696 R D Paul Szabo
2008-12-29 Linux Kernel < 2.6.26.4 SCTP Kernel Memory Disclosure Exploit 11201 R D Jon Oberheide
2008-12-09 PHP safe_mode bypass via proc_open() and custom environment 9591 R D gat3way
2008-12-01 Debian GNU/Linux (symlink attack in login) Arbitrary File Ownership PoC 9328 R D Paul Szabo
2008-11-20 Oracle Database Vault ptrace(2) Privilege Escalation Exploit 6420 R D Jakub Wartak
2008-10-27 Linux Kernel < 2.6.22 ftruncate()/open() Local Exploit 21461 R D gat3way
2008-08-31 Postfix <= 2.6-20080814 (symlink) Local Privilege Escalation Exploit 12191 R D RoMaNSoFt
2008-07-08 Poppler <= 0.8.4 libpoppler uninitialized pointer Code Execution PoC 7269 R D Felipe Andres Manzano
2008-06-18 screen 4.0.3 Local Authentication Bypass Vulnerability (OpenBSD) 16890 R D Rembrandt
2008-04-10 Alsaplayer < 0.99.80-rc3 Vorbis Input Local Buffer Overflow Exploit 6022 R D Albert Sellares
2008-02-21 X.Org xorg-x11-xfs <= 1.0.2-3.1 Local Race Condition Exploit 12033 R D vl4dZ
2008-02-09 Linux Kernel 2.6.17 - 2.6.24.1 vmsplice Local Root Exploit 229183 R D qaaz
2008-02-09 Linux Kernel 2.6.23 - 2.6.24 vmsplice Local Root Exploit 74332 R D qaaz
2007-12-18 Linux Kernel < 2.6.11.5 BLUETOOTH Stack Local Root Exploit 16935 R D Backdoored
2007-12-06 Send ICMP Nasty Garbage (sing) Append File Logrotate Exploit 7080 R D bannedit
2007-09-27 Linux Kernel 2.4/2.6 x86-64 System Call Emulation Exploit 31750 R D Robert Swiecki
2007-07-10 Linux Kernel < 2.6.20.2 IPV6_Getsockopt_Sticky Memory Leak PoC 14241 R D dreyer
2007-04-13 ProFTPD 1.3.0/1.3.0a (mod_ctrls) Local Overflow Exploit (exec-shield) 14090 R D Xpl017Elz
2007-03-28 Linux Kernel <= 2.6.20 with DCCP Support Memory Disclosure Exploit v2 12788 R D Robert Swiecki
2007-03-27 Linux Kernel <= 2.6.20 with DCCP Support Memory Disclosure Exploit 10872 R D Robert Swiecki
2007-03-25 PHP < 4.4.5 / 5.2.1 _SESSION unset() Local Exploit 7590 R D Stefan Esser
2007-03-25 PHP < 4.4.5 / 5.2.1 _SESSION Deserialization Overwrite Exploit 7279 R D Stefan Esser
2007-03-20 PHP <= 4.4.6 / 5.2.1 ext/gd Already Freed Resources Usage Exploit 6873 R D Stefan Esser
2007-03-20 PHP <= 5.2.1 hash_update_file() Freed Resource Usage Exploit 7983 R D Stefan Esser
2007-03-16 PHP <= 4.4.6 / 5.2.1 array_user_key_compare() ZVAL dtor Local Exploit 7640 R D Stefan Esser
2007-03-14 PHP <= 5.2.1 session_regenerate_id() Double Free Exploit 5785 R D Stefan Esser
2007-03-14 PHP 5.2.0/5.2.1 Rejected Session ID Double Free Exploit 7883 R D Stefan Esser
2007-03-09 PHP 5.2.0 / PHP with PECL ZIP <= 1.8.3 zip:// URL Wrapper BoF Exploit 7742 R D Stefan Esser
2007-03-07 PHP < 4.4.5 / 5.2.1 (shmop Functions) Local Code Execution Exploit 6644 R D Stefan Esser
2007-03-07 PHP < 4.4.5 / 5.2.1 (shmop) SSL RSA Private-Key Disclosure Exploit 6872 R D Stefan Esser
2007-02-28 Ubuntu/Debian Apache 1.3.33/1.3.34 (CGI TTY) Local Root Exploit 24612 R D Kristian Hermansen
2007-02-21 Nortel SSL VPN Linux Client <= 6.0.3 Local Privilege Escalation Exploit 4771 R D Jon Hart
2007-02-19 ProFTPD 1.3.0/1.3.0a (mod_ctrls support) Local Buffer Overflow Exploit 2 10466 R D Revenge
2007-02-18 ProFTPD 1.3.0/1.3.0a (mod_ctrls support) Local Buffer Overflow Exploit 11077 R D Revenge
2007-01-28 Trend Micro VirusWall 3.81 (vscan/VSAPI) Local Buffer Overflow Exploit 5543 R D Sebastian Wolfgarten
2007-01-18 GNU/Linux mbse-bbs <= 0.70.0 Local Buffer Overflow Exploit 6742 R D prdelka
2006-10-16 NVIDIA Graphics Driver <= 8774 Local Buffer Overflow Exploit 7507 R D Rapid7 Security
2006-10-08 Infecting Elf Binaries to Gain Local Root Exploit 10978 R D Sha0
2006-10-01 cPanel <= 10.8.x (cpwrap via mysqladmin) Local Root Exploit 22408 R D Clint Torrez
2006-09-20 Dr.Web Antivirus 4.33 (LHA long directory name) Local Overflow Exploit 4844 R D Guay-Leroux
2006-09-09 openmovieeditor <= 0.0.20060901 (name) Local Buffer Overflow Exploit 5809 R D Qnix
2006-08-16 PHP <= 4.4.3 / 5.1.4 (sscanf) Local Buffer Overflow Exploit 13726 R D andi
2006-08-08 liblesstif <= 2-0.93.94-4mdk (DEBUG_FILE) Local Root Exploit 7895 R D Karol Wiesek
2006-07-18 Linux Kernel 2.6.13 <= 2.6.17.4 prctl() Local Root Exploit (logrotate) 34030 R D Marco Ivaldi
2006-07-15 Linux Kernel <= 2.6.17.4 (proc) Local Root Exploit 45186 R D h00lyshit
2006-07-15 Rocks Clusters <= 4.1 (umount-loop) Local Root Exploit 5210 R D Xavier de Leon
2006-07-15 Rocks Clusters <= 4.1 (mount-loop) Local Root Exploit 5698 R D Xavier de Leon
2006-07-14 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit (4) 28275 R D Sunay
2006-07-13 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit (3) 24751 R D Marco Ivaldi
2006-07-12 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit (2) 24702 R D Julien Tinnes
2006-07-11 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit 25870 R D dreyer & RoMaNSoFt
2006-05-26 tiffsplit (libtiff <= 3.8.2) Local Stack Buffer Overflow PoC 6899 R D nitr0us
2006-03-20 X.Org X11 (X11R6.9.0/X11R7.0) Local Root Privilege Escalation Exploit 16957 R D H D Moore
2006-03-18 Python <= 2.4.2 realpath() Local Stack Overflow Exploit 11262 R D Gotfault Security
2006-03-12 Ubuntu Breezy 5.10 Installer Password Disclosure Vulnerability 9616 R D Kristian Hermansen
2006-02-20 MySQL 4.x/5.0 User-Defined Function Local Privilege Escalation Exploit 16563 R D Marco Ivaldi
2006-01-25 SquirrelMail 3.1 Change Passwd Plugin Local Buffer Overflow Exploit 9850 R D rod hedor
2006-01-24 Eterm LibAST < 0.7 (-X Option) Local Privilege Escalation Exploit 4797 R D Johnny Mast
2006-01-21 Xmame <= 0.102 (-pb/-lang/-rec) Local Buffer Overflow Exploit 5847 R D sj
2006-01-13 Xmame 0.102 (-lang) Local Buffer Overflow Exploit (c code) 6225 R D Qnix
2006-01-10 Xmame 0.102 (-lang) Local Buffer Overflow Exploit 5819 R D xwings
2005-12-30 Linux Kernel <= 2.6.11 (CPL 0) Local Root Exploit (k-rad3.c) 36960 R D alert7
2005-11-12 Veritas Storage Foundation 4.0 VCSI18N_LANG Local Overflow Exploit 7301 R D Kevin Finisterre
2005-11-09 Operator Shell (osh) 1.7-14 Local Root Exploit 10349 R D Charles Stevenson
2005-11-09 Sudo <= 1.6.8p9 (SHELLOPTS/PS4 ENV variables) Local Root Exploit 11761 R D Breno Silva Pinto
2005-11-08 SuSE Linux <= 9.3, 10 (chfn) Local Root Privilege Escalation Exploit 11660 R D Hunger
2005-11-07 F-Secure Internet Gatekeeper for linux < 2.15.484 Local Root Exploit 4959 R D Xavier de Leon
2005-10-26 Linux Kernel 2.4/2.6 bluez Local Root Privilege Escalation Exploit (update) 30497 R D qobaiashi
2005-10-20 XMail 1.21 (-t Command Line Option) Local Root Buffer Overflow Exploit 6819 R D qaaz
2005-09-24 Qpopper <= 4.0.8 (poppassd) Local Root Exploit (linux) 10551 R D kcope
2005-09-14 Wireless Tools 26 (iwconfig) Local Root Exploit (some setuid) 9970 R D Qnix
2005-09-13 VisualBoyAdvanced 1.7.x Local Shell Exploit (non suid) (updated) 7378 R D Qnix
2005-08-30 Gopher <= 3.0.9 (+VIEWS) Remote (Client Side) Buffer Overflow Exploit 5531 R D vade79
2005-08-16 Operator Shell (osh) 1.7-13 Local Root Exploit 6988 R D Charles Stevenson
2005-06-04 ePSXe <= 1.6.0 nogui() Local Exploit 7334 R D Qnix
2005-05-25 Exim <= 4.41 dns_build_reverse Local Exploit 5933 R D Plugger
2005-05-17 Linux Mandrake <= 10.2 cdrdao Local Root Exploit (unfixed) 7914 R D newbug
2005-05-01 ARPUS/Ce Local File Overwrite Exploit (setuid) 6419 R D Kevin Finisterre
2005-05-01 ARPUS/Ce Local Overflow Exploit (setuid) (perl) 7083 R D Kevin Finisterre
2005-04-21 BitchX <= 1.0c20 Local Buffer Overflow Exploit 5128 R D sk
2005-04-08 sash <= 3.7 Local Buffer Overflow Exploit 5081 R D lammat
2005-04-05 Aeon 0.2a Local Linux Exploit (perl code) 5368 R D lammat
2005-04-05 Aeon 0.2a Local Linux Exploit (c code) 4309 R D patr0n
2005-03-22 Linux Kernel 2.4.x / 2.6.x uselib() Local Privilege Escalation Exploit 28888 R D sd
2005-03-21 PostScript Utilities - psnup Argument Buffer Overflow 4733 R D lammat
2005-03-14 PaX Double-Mirrored VMA munmap Local Root Exploit 5707 R D Christophe Devine
2005-03-14 Frank McIngvale LuxMan 0.41 Local Buffer Overflow Exploit 5837 R D Kevin Finisterre
2005-02-13 GNU a2ps "Anything to PostScript" Local Exploit (not suid) 4396 R D lizard
2005-02-07 Setuid perl PerlIO_Debug() overflow 7177 R D Kevin Finisterre
2005-02-07 Setuid perl PerlIO_Debug() root owned file creation 7919 R D Kevin Finisterre
2005-02-07 Exim <= 4.42 Local Root Exploit 7478 R D darkeagle
2005-02-05 Operator Shell (osh) 1.7-12 Local Root Exploit 5914 R D Charles Stevenson
2005-01-30 Linux ncpfs Local Exploit 6465 R D super
2005-01-27 Linux Kernel 2.4 uselib() Privilege Elevation Exploit 16645 R D Tim Hsu
2005-01-26 /usr/bin/trn Local Exploit (not suid) 5882 R D ZzagorR
2005-01-20 fkey <= 0.0.2 Local File Accessibility Exploit 4961 R D vade79
2005-01-15 Exim <= 4.41 dns_build_reverse Local Exploit PoC 4963 R D Rafael Carrasco
2005-01-07 Linux Kernel <= 2.4.29-rc2 uselib() Privilege Elevation 13204 R D Paul Starzetz
2005-01-05 HTGET <= 0.9.x Local Root Exploit 4679 R D nekd0
2004-12-24 Linux Kernel 2.6.x chown() Group Ownership Alteration Exploit 13962 R D Marco Ivaldi
2004-12-24 MySQL 4.0.17 UDF Dynamic Library Exploit 7760 R D Marco Ivaldi
2004-12-17 Cscope <= 15.5 Symlink Vulnerability Exploit 3987 R D Gangstuck
2004-12-14 TipxD <= 1.1.1 Local Format String Vulnerability (not setuid) 4219 R D CoKi
2004-12-01 Aspell (word-list-compress) Command Line Stack Overflow 6000 R D c0d3r
2004-11-25 atari800 Local Root Exploit 5139 R D pi3
2004-11-10 Linux Kernel (<= 2.4.27 , 2.6.8) binfmt_elf Executable File Read Exploit 13005 R D Paul Starzetz
2004-10-26 GD Graphics Library Heap Overflow Proof of Concept Exploit 6254 R D n/a
2004-10-26 libxml 2.6.12 nanoftp Remote Buffer Overflow Proof of Concept Exploit 5361 R D infamous41md
2004-10-23 socat <= 1.4.0.2 Local Format String Exploit (not setuid) 4356 R D CoKi
2004-10-21 Apache <= 1.3.31 mod_include Local Buffer Overflow Exploit 14926 R D xCrZx
2004-10-20 BitchX 1.0c19 Local Root Exploit (suid?) 5062 R D Sha0
2004-09-25 GNU Sharutils <= 4.2.1 Local Format String PoC Exploit 4213 R D n4rk0tix
2004-09-23 glFTPd Local Stack Overflow Exploit (PoC) (Slackware 9.0/9.1/10.0) 5249 R D CoKi
2004-09-21 SudoEdit 1.6.8 Local Change Permission Exploit 5584 R D Angelo Rosiello
2004-09-19 CDRecord's ReadCD Local Root Privileges 4436 R D Max Vozeler
2004-09-16 htpasswd Apache 1.3.31 Local Exploit 17203 R D Luiz Fernando Camargo
2004-09-11 cdrecord $RSH exec() SUID Shell Creation 5296 R D I)ruid
2004-09-07 CDRDAO Local Root Exploit 4851 R D Karol Wiêsek
2004-08-25 SquirrelMail (chpasswd) Local Root Bruteforce Exploit 8427 R D Bytes
2004-08-13 LibPNG <= 1.2.5 png_jmpbuf() Local Buffer Overflow Exploit 6966 R D n/a
2004-08-13 ProFTPd Local pr_ctrls_connect Vuln - ftpdctl 7143 R D pi3
2004-08-04 SoX Local Buffer Overflow Exploiter (Via Crafted WAV File) 4403 R D Rave
2004-08-04 Linux Kernel File Offset Pointer Handling Memory Disclosure Exploit 6520 R D Paul Starzetz
2004-08-01 SoX Local Buffer Overflow Exploit 4529 R D Serkan Akpolat
2004-04-20 SquirrelMail chpasswd buffer overflow 8437 R D x314
2004-03-01 Linux Kernel 2.x mremap missing do_munmap Exploit 9818 R D Paul Starzetz
2004-02-18 Linux Kernel "mremap()"#2 Local Proof-of-concept 6901 R D Christophe Devine
2004-02-13 rsync <= 2.5.7 Local stack overflow Root Exploit 5332 R D Abhisek Datta
2004-01-15 SuSE linux 9.0 YaST config Skribt Local Exploit 6981 R D l0om
2004-01-15 Linux Kernel 2.4.x mremap() bound checking Root Exploit 13531 R D Paul Starzetz
2004-01-07 Linux Kernel "do_mremap" Local Proof of Concept II 6563 R D Christophe Devine
2004-01-06 Linux Kernel "do_mremap" Local Proof of Concept 6161 R D Christophe Devine
2004-01-02 Xsok v1.02 "-xsokdir" local buffer overflow game exploit 4024 R D c0wboy
2003-12-05 Linux Kernel <= 2.4.22 (do_brk) Local Root Exploit (working) 16616 R D Wojciech Purczynski
2003-12-02 Linux Kernel 2.4.22 "do_brk()" local Root Exploit (PoC) 11940 R D Christophe Devine
2003-11-13 TerminatorX <= 3.81 stack overflow local root exploit 4458 R D Li0n7
2003-09-27 IBM DB2 Universal Database 7.2 (db2licm) Local Exploit 5294 R D Juan Escriba
2003-09-21 hztty 2.0 Local root exploit (Tested on Red Hat 9.0) 5341 R D c0wboy
2003-09-09 RealPlayer 9 *nix Local Privilege Escalation Exploit 5206 R D Jon Hart
2003-09-05 Stunnel <= 3.24, 4.00 Daemon Hijacking Proof of Concept Exploit 4244 R D Steve Grubb
2003-08-06 man-db 2.4.1 open_cat_stream() Local uid=man Exploit 5295 R D vade79
2003-08-01 xtokkaetama 1.0b Local Game Exploit (Red Hat 9.0) 4530 R D brahma
2003-07-31 XGalaga 2.0.34 local game exploit (Red Hat 9.0) 4779 R D c0wboy
2003-06-10 Mandrake Linux 8.2 /usr/mail local exploit (d86mail.pl) 7524 R D n/a
2003-05-14 CdRecord Version <= 2.0 Mandrake local root exploit 6480 R D n/a
2003-04-29 Qpopper 4.0.x poppassd Local Root Exploit 6070 R D Xpl017Elz
2003-04-14 Linux Kernel < 2.4.20 Module Loader Local Root Exploit 14810 R D KuRaK
2003-03-30 Linux Kernel 2.2.x - 2.4.x ptrace/kmod Local Root Exploit 16976 R D Wojciech Purczynski
2003-01-15 GLIBC locale format strings exploit 4358 R D logikal
2001-07-13 Debian 2.2 /usr/bin/pileup Local Root Exploit 6709 R D Charles Stevenson
2001-03-04 GLIBC 2.1.3 ld_preload Local Exploit 4697 R D shadow
2001-03-03 Slackware 7.1 /usr/bin/mail Local Exploit 4469 R D kengz
2001-01-26 splitvt < 1.6.5 Local Exploit 3914 R D Michel Kaempf
2001-01-25 jaZip 0.32-2 Local Buffer Overflow Exploit 4118 R D teleh0r
2001-01-25 glibc-2.2 and openssh-2.3.0p1 exploits glibc >= 2.1.9x 7918 R D krochos
2001-01-19 Redhat 6.1 man Local Exploit (egid 15) 4541 R D teleh0r
2001-01-15 Seyon Exploit / Tested Version 2.1 rev. 4b i586-Linux 4272 R D teleh0r
2001-01-01 Sendmail 8.11.x Exploit (i386-Linux) 9526 R D sd
2000-12-15 Linux xsoldier-0.96 exploit (Red Hat 6.2) 4673 R D zorgon
2000-12-15 Pine (Local Message Grabber) Exploit 4548 R D Mat
2000-12-06 Kwintv Local Buffer Overflow Exploit (gid=video(33)) 4630 R D Cody Tubbs
2000-12-06 gnome_segv local buffer overflow 4342 R D Cody Tubbs
2000-12-04 UUCP Exploit - file creation/overwriting (symlinks) 4270 R D t--zen
2000-12-04 expect (/usr/bin/expect) buffer overflow 4233 R D isox
2000-12-04 GnomeHack Local Buffer Overflow Exploit (gid=games) 4609 R D Cody Tubbs
2000-12-02 mount exploit for glibc locale bug 4715 R D sk8
2000-12-02 dislocate - Local i386 exploit in v1.3 4019 R D Michel Kaempf
2000-11-30 GLIBC (via /bin/su) Local Root Exploit 4649 R D localcore
2000-11-29 rpc Suid Privledge Exploit 5647 R D Tlabs
2000-11-29 dump 0.4b15 exploit (Redhat 6.2) 4376 R D Mat
2000-11-21 vixie-cron Local Root Exploit 5916 R D Michal Zalewski
2000-11-19 dump 0.4b15 Local Root Exploit 4711 R D Mat
2000-11-17 xsplumber - strcpy() buffer overflow 5137 R D vade79
2000-11-16 /sbin/restore exploit (rh6.2) 6118 R D n/a
2000-11-16 Oracle (oidldapd connect) Local Command Line Overflow Exploit 7408 R D n/a
2000-11-16 Restore and Dump Local Exploit 4477 R D Tlabs
2000-11-15 traceroute Local Root Exploit 5534 R D Michel Kaempf
2000-11-15 GnomeHack 1.0.5 Local Buffer Overflow Exploit 5085 R D vade79
1997-06-20 zgv $HOME overflow 4128 R D BeastMaster V
1997-05-14 LibXt XtAppInitialize() overflow *xterm exploit 3949 R D Ming Zhang
1996-10-25 BSD and Linux lpr Command Local Root Exploit 4507 R D Vadim Kolontsov
1996-08-24 Xt Library Local Root Command Execution Exploit 4049 R D b0z0 bra1n
1996-06-01 suid_perl 5.001 vulnerability 5644 R D Jon Lewis
1996-02-13 sudo.bin NLSPATH Local Root Exploit 5164 R D _Phantom_
1996-01-01 Resolv+ (RESOLV_HOST_CONF) Linux Library Local Exploit 5029 R D Jared Mauch

[ linux - dos ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-08-18 Linux Kernel < 2.6.30.5 cfg80211 Remote Denial of Service Exploit 7641 R D Jon Oberheide
2009-07-27 stftp <= 1.10 (PWD Response) Remote Stack Overflow PoC 1787 R D sqlevil
2009-07-27 ISC DHCP dhclient < 3.1.2p1 Remote Buffer Overflow PoC 9282 R D Jon Oberheide
2009-06-17 compface <= 1.5.2 (XBM File) Local Buffer Overflow PoC 2712 R D metalhoney
2009-06-15 LinkLogger 2.4.10.15 (syslog) Denial of Service Exploit 1681 R D h00die
2009-06-15 Apple QuickTime CRGN Atom Local Crash Exploit 2530 R D webDEViL
2009-04-27 iodined <= 0.4.2-2 (forged DNS packet) Denial of Service Exploit 1881 R D Albert Sellares
2009-04-17 XRDP <= 0.4.1 Remote Buffer Overflow PoC (pre-auth) 2336 R D joe walko
2009-03-12 JDKChat 1.5 Remote Integer Overflow PoC 2481 R D n3tpr0b3
2008-12-14 Linux Kernel 2.6.27.7-generic - 2.6.18 - 2.6.24-1 Local DoS Exploit 13918 R D Adurit-T
2008-12-10 Linux Kernel <= 2.6.27.8 ATMSVC Local Denial of Service Exploit 7793 R D Jon Oberheide
2008-11-18 CUPS 1.3.7 CSRF (add rss subscription) Remote Crash Exploit 4624 R D X Adrian "pagvac" Pastor
2008-11-12 Net-SNMP <= 5.1.4/5.2.4/5.4.1 Perl Module Buffer Overflow PoC 4625 R D Praveen Darshanam
2008-11-11 Linux Kernel < 2.4.36.9/2.6.27.5 Unix Sockets Local Kernel Panic Exploit 9403 R D Andrea Bittau
2008-10-10 Konqueror 3.5.9 (load) Remote Crash Vulnerability 4111 R D X Jeremy Brown
2008-10-08 Konqueror 3.5.9 (color/bgcolor) Multiple Remote Crash Vulnerabilities 3369 R D Jeremy Brown
2008-10-06 Konqueror 3.5.9 (font color) Remote Crash Vulnerability 3580 R D Jeremy Brown
2008-09-19 fhttpd 0.4.2 un64() Remote Denial of Service Exploit 3754 R D Jeremy Brown
2008-06-14 vsftpd 2.0.5 (CWD) Remote Memory Consumption Exploit (post auth) 12251 R D Praveen Darshanam
2008-05-11 rdesktop 1.5.0 process_redirect_pdu() BSS Overflow Vulnerability PoC 7313 R D Guido Landi
2008-05-08 rdesktop 1.5.0 iso_recv_msg() Integer Underflow Vulnerability PoC 6341 R D Guido Landi
2008-04-16 xine-lib <= 1.1.12 NSF demuxer Stack Overflow Vulnerability PoC 6417 R D Guido Landi
2008-03-25 MPlayer sdpplin_parse() Array Indexing Buffer Overflow Exploit PoC 8211 R D Guido Landi
2008-03-01 Galaxy FTP Server 1.0 (Neostrada Livebox DSL Router) DoS Exploit 6641 R D 0in
2008-01-11 Linux Kernel <=2.6.21.1 IPv6 Jumbo Bug Remote DoS Exploit 10192 R D Clemens Kurtenbach
2007-12-14 Samba 3.0.27a send_mailslot() Remote Buffer Overflow PoC 6448 R D x86
2007-11-02 Firefly Media Server <= 0.2.4 Remote Denial of Service Exploit 4871 R D nnp
2007-10-15 eXtremail <= 2.1.1 memmove() Remote Denial of Service Exploit 5423 R D mu-b
2007-10-15 eXtremail <= 2.1.1 Remote Heap Overflow PoC 5779 R D mu-b
2007-08-31 Wireshark < 0.99.5 DNP3 Dissector Infinite Loop Exploit 5223 R D Beyond Security
2007-07-23 Xserver 0.1 Alpha Post Request Remote Buffer Overflow Exploit 4039 R D deusconstruct
2007-05-17 MagicISO <= 5.4(build239) .cue File Heap Overflow PoC 6021 R D n00b
2007-04-27 MyDNS 1.1.0 Remote Heap Overflow PoC 6491 R D mu-b
2007-04-20 eXtremail <= 2.1.1 DNS Parsing Bugs Remote Exploit PoC 7043 R D mu-b
2007-03-27 PHP 4.4.5 / 4.4.6 session_decode() Double Free Exploit PoC 9884 R D Stefan Esser
2007-03-09 Linux Omnikey Cardman 4040 driver Local Buffer Overflow Exploit PoC 3670 R D Daniel Roethlisberger
2007-03-05 Konqueror 3.5.5 (JavaScript Read of FTP Iframe) DoS Exploit 6396 R D X mark
2007-03-02 PHP <= 4.4.4 unserialize() ZVAL Reference Counter Overflow Exploit PoC 6581 R D Stefan Esser
2007-02-08 Axigen <= 2.0.0b1 Remote Denial of Service Exploit 7362 R D mu-b
2007-02-08 Axigen <= 2.0.0b1 Remote Denial of Service Exploit (2) 6943 R D mu-b
2006-12-26 KsIRC 1.3.12 (PRIVMSG) Remote Buffer Overflow PoC 5230 R D Federico L. Bossi Bonin
2006-12-19 KDE 3.5 (libkhtml) <= 4.2.0 / Unhandled HTML Parse Exception Exploit 5195 R D X Federico L. Bossi Bonin
2006-12-14 Kerio MailServer 6.2.2 preauth Remote Denial of Service PoC 4659 R D Evgeny Legerov
2006-12-13 ProFTPD <= 1.3.0a (mod_ctrls support) Local Buffer Overflow PoC 8901 R D Core Security
2006-12-04 F-Prot Antivirus 4.6.6 (ACE) Denial of Service Exploit 4905 R D Evgeny Legerov
2006-12-04 F-Prot Antivirus 4.6.6 (CHM) Heap Overflow Exploit PoC 4823 R D Evgeny Legerov
2006-11-06 OpenLDAP 2.2.29 Remote Denial of Service Exploit (meta) 5509 R D Evgeny Legerov
2006-07-21 Sendmail <= 8.13.5 Remote Signal Handling Exploit PoC 13317 R D redsand
2006-06-09 0verkill 0.16 (ASCII-ART Game) Remote Integer Overflow Crash Exploit 5366 R D Federico Fazzi
2006-06-05 Linux Kernel < 2.6.16.18 (Netfilter NAT SNMP Module) Remote DoS Exploit 11712 R D ECL Labs
2006-05-30 gxine 0.5.6 (HTTP Plugin) Remote Buffer Overflow PoC 6162 R D Federico L. Bossi Bonin
2006-05-22 portmap 5 beta (Set/Dump) Local Denial of Service Exploit 5078 R D Federico L. Bossi Bonin
2006-05-04 zawhttpd <= 0.8.23 (GET) Remote Buffer Overflow DoS 4273 R D Kamil Sienicki
2006-04-09 Linux Kernel 2.6.x sys_timer_create() Local Denial of Service Exploit 9452 R D fingerout
2006-04-04 Libxine <= 1.14 MPEG Stream Buffer Overflow Vulnerability PoC 6716 R D Federico L. Bossi Bonin
2006-04-02 mpg123 0.59r Malformed mp3 (SIGSEGV) Proof of Concept 4882 R D nitr0us
2005-09-05 CUPS Server <= 1.1 (Get Request) Denial of Service Exploit 5902 R D tracewar
2005-05-17 Linux Kernel <= 2.6.12-rc4 (ioctl_by_bdev) Local Denial of Service Exploit 8716 R D alert7
2005-05-17 Gaim <= 1.2.1 URL Handling Remote Stack Overflow Exploit 4593 R D Ron
2005-04-26 Tcpdump 3.8.x (ldp_print) Infinite Loop Denial of Service Exploit 4951 R D vade79
2005-04-26 Tcpdump 3.8.x (rt_routing_info) Infinite Loop Denial of Service Exploit 4855 R D vade79
2005-04-26 Tcpdump 3.8.x/3.9.1 (isis_print) Infinite Loop DoS Exploit 5002 R D vade79
2005-04-04 Linux Kernel PPC64/IA64 (AIO) Local Denial of Service Exploit 5483 R D Daniel McNeil
2005-03-29 Linux Kernel <= 2.6.10 Local Denial of Service Exploit 7298 R D ChoiX
2005-02-25 wu-ftpd <= 2.6.2 File Globbing Denial of Service Exploit 7002 R D str0ke
2005-02-12 CA BrightStor ARCserve Backup Remote Buffer Overlow PoC 5575 RM D cybertronic
2005-02-05 ngIRCd <= 0.8.1 Remote Denial of Service Exploit (2) 5111 R D CorryL
2004-12-16 Linux Kernel <= 2.6.9, <= 2.4.28 vc_resize int Local Overflow Exploit 12214 R D Georgi Guninski
2004-12-16 Linux Kernel <= 2.6.9, <= 2.4.28 Memory Leak Local DoS 8556 R D Georgi Guninski
2004-12-16 Linux Kernel <= 2.6.9, <= 2.4.28 ip_options_get Local Overflow 12821 R D Georgi Guninski
2004-12-14 Linux Kernel <= 2.4.28 and <= 2.6.9 scm_send local DoS Exploit 8161 R D Paul Starzetz
2004-12-14 Linux Kernel (<= 2.6.9, 2.4.22-28) (igmp.c) Local Denial of Service Exploit 8244 R D Paul Starzetz
2004-09-27 MyServer 0.7.1 (POST) Denial Of Service Exploit 4397 R D Tom Ferris
2004-08-02 Citadel/UX Remote Denial of Service Exploit (PoC) 3959 R D CoKi
2004-08-02 Apache HTTPd Arbitrary Long HTTP Headers DoS (c version) 10725 R D n/a
2004-06-25 Linux Kernel 2.4.x-2.6.x Assembler Inline Function Local DoS Exploit 7207 R D lorenzo
2004-04-21 Linux Kernel <= 2.6.3 (setsockopt) Local Denial of Service Exploit 6114 R D Julien Tinnes
2003-10-31 wu-ftpd 2.6.2 Remote Denial Of Service Exploit (wuftpd-freezer.c) 6499 R D Angelo Rosiello
2003-07-29 Linux Kernel <= 2.4.20 decode_fh Denial of Service Exploit 7325 R D Jared Stanbrough
2003-04-11 Apache <= 2.0.44 Linux Remote Denial of Service Exploit 11053 R D Daniel Nyström
2001-01-15 APC UPS 3.7.2 (apcupsd) Local Denial of Service Exploit 4491 R D the itch
2001-01-03 ml2 - local users can crash processes 4427 R D Stealth
2001-01-02 Redhat 6.1 / 6.2 TTY Flood Users Exploit 5865 R D teleh0r
2000-11-17 Slackware Linux /usr/bin/ppp-off Insecure /tmp Call Exploit 5358 R D sinfony



send all submissions to submit[at]milw0rm.com [gpg]
Copyright © 2004-2009 milw0rm