[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]

[ multiple - remote ] -::DATE -::DESCRIPTION -::HITS -::AUTHOR 2008-08-13 BIND 9.5.0-P2 (randomized ports) Remote DNS Cache Poisoning Exploit 6471 R D Zbr 2008-08-11 Apache Tomcat <= 6.0.18 UTF8 Directory Traversal Vulnerability 11937 R D Simon Ryeo 2008-07-25 BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (c) 15080 R D Marc Bevand 2008-07-24 BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (py) 11158 R D Julien Desfossez 2008-07-23 BIND 9.4.1-9.4.2 Remote DNS Cache Poisoning Flaw Exploit (meta) 14233 R D I)ruid 2008-06-12 SNMPv3 HMAC validation error Remote Authentication Bypass Exploit 5937 R D Maurizio Agazzini 2008-05-16 Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit (ruby) 14830 R D L4teral 2008-05-15 Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit 26651 R D Markus Mueller 2008-05-03 HLDS WebMod 0.48 Multiple Remote Vulnerabilties 4765 R D Luigi Auriemma 2008-04-11 HP OpenView Network Node Manager <= 7.53 Multiple Vulnerabilities 4724 R D Luigi Auriemma 2008-03-14 Dovecot IMAP 1.0.10 <= 1.1rc2 Remote Email Disclosure Exploit 4263 R D kcope 2008-03-06 Ruby 1.8.6 (Webrick Httpd 1.3.1) Directory Traversal Vulnerability 5413 R D DSecRG 2008-01-09 SAP MaxDB <= 7.6.03.07 pre-auth Remote Command Execution Exploit 4988 R D Luigi Auriemma 2007-12-21 Sendmail with clamav-milter < 0.91.2 Remote Root Exploit 10271 R D eliteb0y 2007-11-29 Apple QuickTime 7.2/7.3 RSTP Response Universal Exploit (win/osx) 10423 R D Subreption LLC. 2007-10-24 Jakarta Slide <= 2.1 RC1 Remote File Disclosure Exploit 6002 R D kcope 2007-10-22 LiteSpeed Web Server <= 3.2.3 Remote Source Code Disclosure Vuln 5855 R D Tr3mbl3r 2007-10-14 Apache Tomcat (webdav) Remote File Disclosure Exploit 13976 R D eliteb0y 2007-09-12 Apple Quicktime (Multiple Browsers) Command Execution PoC (0day) 10575 R D X pdp 2007-09-10 Lighttpd <= 1.4.16 FastCGI Header Overflow Remote Exploit 5913 R D Mattias Bengtsson 2007-08-07 BIND 9 DNS Cache Poisoning Exploit (v0.3beta) 16666 R D posedge 2007-06-22 Apache mod_jk 1.2.19/1.2.20 Remote Buffer Overflow Exploit 11812 R D eliteboy 2007-04-11 MiniWebsvr 0.0.7 Remote Directory Transversal Exploit 4764 R D shinnai 2007-04-03 HP Mercury Quality Center 9.0 build 9.1.0.4352 SQL Execution Exploit 4388 R D Isma Khan 2007-03-27 Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit v2 4398 R D bunker 2007-03-27 Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit 5290 R D bunker 2007-03-23 Ethernet Device Drivers Frame Padding Info Leakage Exploit (Etherleak) 3281 R D Jon Hart 2007-03-10 PHP <= 5.2.0 ext/filter FDF Post Filter Bypass Exploit 7397 R D Stefan Esser 2007-03-07 mod_security <= 2.1.0 (ASCIIZ byte) POST Rules Bypass Vulnerability 4843 R D Stefan Esser 2007-03-04 PHP 4.4.3 - 4.4.6 phpinfo() Remote XSS Vulnerability 12887 R D Stefan Esser 2007-02-26 Oracle 10g KUPW$WORKER.MAIN SQL Injection Exploit v2 5268 R D bunker 2007-02-26 Oracle 10g KUPV$FT.ATTACH_JOB SQL Injection Exploit v2 3966 R D bunker 2007-02-26 Oracle 9i/10g DBMS_METADATA.GET_DDL SQL Injection Exploit v2 4663 R D bunker 2007-02-26 Oracle 9i/10g ACTIVATE_SUBSCRIPTION SQL Injection Exploit v2 4026 R D bunker 2007-02-23 Oracle 9i/10g DBMS_METADATA.GET_DDL SQL Injection Exploit 6189 R D bunker 2007-02-22 Oracle 10g KUPW$WORKER.MAIN Grant/Revoke dba Permission Exploit 5201 R D bunker 2007-02-22 Oracle 10g KUPV$FT.ATTACH_JOB Grant/Revoke dba Permission Exploit 4439 R D bunker 2007-02-13 Portable OpenSSH <= 3.6.1p-PAM / 4.1-SUSE Timing Attack Exploit 8998 R D Marco Ivaldi 2007-02-05 Oracle 9i/10g DBMS_EXPORT_EXTENSION SQL Injection Exploit 6028 R D bunker 2007-01-01 Apple Quicktime (rtsp URL Handler) Stack Buffer Overflow Exploit 7622 R D MoAB 2006-12-19 Oracle <= 9i / 10g (extproc) Local/Remote Command Execution Exploit 9867 R D Marco Ivaldi 2006-11-23 Oracle <= 9i / 10g (read/write/execute) Exploitation Suite 9513 R D Marco Ivaldi 2006-11-14 Links 1.00pre12 (smbclient) Remote Code Execution Exploit 6210 R D X Teemu Salmela 2006-07-28 Mozilla Firefox <= 1.5.0.4 Javascript Navigator Object Code Execution PoC 18274 R D X H D Moore 2006-07-23 Apache Tomcat < 5.5.17 Remote Directory Listing Vulnerability 18848 R D ScanAlert Security 2006-07-21 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit (2) 5782 R D bannedit 2006-07-15 Webmin < 1.290 / Usermin < 1.220 Arbitrary File Disclosure Exploit (perl) 20367 R D UmZ 2006-07-09 Webmin < 1.290 / Usermin < 1.220 Arbitrary File Disclosure Exploit 14697 R D joffer 2006-05-17 RealVNC 4.1.0 - 4.1.1 (VNC Null Authentication) Vulnerability Scanners 43782 R D class101 2006-05-16 RealVNC 4.1.0 - 4.1.1 (VNC Null Authentication) Auth Bypass Patch/EXE 45051 R M D redsand 2006-05-15 RealVNC 4.1.0 - 4.1.1 (Null Authentication) Auth Bypass Exploit (meta) 25959 R M D H D Moore 2006-03-22 BomberClone < 0.11.6.2 (Error Messages) Remote Buffer Overflow Exploit 6482 R M D esca zoo 2005-12-12 Mozilla Firefox <= 1.04 compareTo() Remote Code Execution Exploit 10155 R M D X Aviv Raff 2005-11-04 WzdFTPD <= 0.5.4 (SITE) Remote Command Execution Exploit (meta) 8903 R M D David Maciejak 2005-10-20 Veritas NetBackup <= 6.0 (bpjava-msvc) Remote Exploit (linux) 7020 R D Kevin Finisterre 2005-08-30 HP OpenView Network Node Manager <= 7.50 Remote Exploit 5338 R D Lympex 2005-05-21 Mozilla Firefox view-source:javascript url Code Execution Exploit 11665 R D X mikx 2005-03-14 LimeWire 4.1.2 - 4.5.6 Inappropriate Get Request Remote Exploit 6549 R D lammat 2005-02-18 Knox Arkeia Server Backup 5.3.x Remote Root Exploit 3867 R M D John Doe 2005-02-09 ELOG <= 2.5.6 Remote Shell Exploit 4504 R D n4rk0tix 2005-01-08 Webmin Web Brute Force v1.5 (cgi-version) 10055 R D ZzagorR 2005-01-08 Webmin BruteForce + Command Execution v1.5 9105 R D ZzagorR 2004-12-22 Webmin BruteForce and Command Execution Exploit 7518 R D Di42lo 2004-12-15 wget <= 1.9 Directory Traversal Exploit 4801 R D jjminar 2004-07-10 MySQL 4.1/5.0 zero-length password Auth. Bypass Exploit 13785 R D Eli Kara 2004-06-25 CVS Remote Entry Line Heap Overflow Root Exploit (Linux/FreeBSD) 4939 R D Ac1dB1tCh3z 2003-08-25 Real Server 7/8/9 Remote Root Exploit (Windows & Linux) 4454 R M D Johnny Cyberpunk 2003-07-28 Apache 1.3.x mod_mylo Remote Code Execution Exploit 20589 R D Carl Livitt 2002-05-01 SSH (x2) Remote Root Exploit 17827 R D Teso 2000-12-21 HP OpenView OmniBack II Generic Remote Exploit 4189 R M D DiGiT 2000-11-21 wu-ftpd 2.6.0 Remote Root Exploit 6022 R D venglin [ multiple - local ] -::DATE -::DESCRIPTION -::HITS -::AUTHOR 2008-01-28 Oracle 10g R1 pitrig_drop PLSQL Injection (get users hash) 3590 R D Sh2kerr 2008-01-28 Oracle 10g R1 pitrig_truncate PLSQL Injection (get users hash) 3764 R D Sh2kerr 2008-01-28 Oracle 10g R1 xdb.xdb_pitrig_pkg PLSQL Injection (change sys password) 5137 R D Sh2kerr 2007-10-27 Oracle 10g/11g SYS.LT.FINDRICSET Local SQL Injection Exploit 3301 R D bunker 2007-10-27 Oracle 10g/11g SYS.LT.FINDRICSET Local SQL Injection Exploit (2) 4567 R D bunker 2007-10-27 Oracle 10g LT.FINDRICSET Local SQL Injection Exploit (IDS evasion) 5738 R D Sh2kerr 2007-10-23 Oracle 10g CTX_DOC.MARKUP SQL Injection Exploit 6549 R D Sh2kerr 2007-09-10 PHP <= 4.4.7 / 5.2.3 MySQL/MySQLi Safe Mode Bypass Vulnerability 18255 R D Mattias Bengtsson 2007-07-19 Oracle 9i/10g evil views Change Passwords Exploit (CVE-2007-3855) 6072 R D bunker 2007-03-23 PHP 5.2.1 unserialize() Local Information Leak Exploit 4843 R D Stefan Esser 2007-03-09 PHP 4.4.6 cpdf_open() Local Source Code Discslosure PoC 4727 R D rgod 2007-03-07 PHP <= 5.2.1 substr_compare() Information Leak Exploit 4264 R D Stefan Esser 2007-03-04 PHP < 4.4.5 / 5.2.1 php_binary Session Deserialization Information Leak 4959 R D Stefan Esser 2007-03-04 PHP < 4.4.5 / 5.2.1 WDDX Session Deserialization Information Leak 4370 R D Stefan Esser 2007-01-23 Oracle 10g SYS.DBMS_CDC_IMPDP.BUMP_SEQUENCE PL/SQL Injection 5475 R D Joxean Koret 2007-01-23 Oracle 10g SYS.KUPW$WORKER.MAIN PL/SQL Injection Exploit 3994 R D Joxean Koret 2007-01-23 Oracle 10g SYS.KUPV$FT.ATTACH_JOB PL/SQL Injection Exploit 3822 R D Joxean Koret 2006-06-18 Sun iPlanet Messaging Server 5.2 HotFix 1.16 Root Password Disclosure 4424 R D php0t 2006-04-26 Oracle <= 10g Release 2 (DBMS_EXPORT_EXTENSION) Local SQL Exploit 7879 R D N1V1Hd 2006-03-05 LibTiff 3.7.1 (BitsPerSample Tag) Local Buffer Overflow Exploit 4665 R D Agustin Gianni 2005-07-25 vim 6.3 < 6.3.082 (modlines) Local Command Execution Exploit 5754 R D Georgi Guninski 2004-11-14 Multiple AntiVirus (zip file) Detection Bypass Exploit 4686 R D oc192 2001-03-04 Progress Database Server 8.3b (prodb) Local Root Exploit 3512 R D the itch 1996-08-13 Linux & BSD umount Local Root Exploit 3877 R D bloodmask [ multiple - dos ] -::DATE -::DESCRIPTION -::HITS -::AUTHOR 2008-08-23 VLC 0.8.6i MMS Protocol Handling Heap Overflow PoC 1511 R D g_ 2008-08-16 VLC 0.8.6i tta File Parsing Heap Overflow PoC 1906 R D g_ 2008-08-13 Ventrilo <= 3.0.2 NULL pointer Remote DoS Exploit 2075 R D Luigi Auriemma 2008-08-13 Ruby <= 1.9 (regex engine) Remote Socket Memory Leak Exploit 1640 R D laurent gaffie 2008-08-10 Sun xVM VirtualBox < 1.6.4 Privilege Escalation Vulnerability PoC 1203 R D Core Security 2008-07-31 F-PROT antivirus 6.2.1.4252 (malformed archive) Infinite Loop DoS Exploit 1998 R D kokanin 2008-07-19 Oracle Internet Directory 10.1.4 Remote Preauth DoS Exploit 2872 R D Joxean Koret 2008-07-12 reSIProcate 1.3.2 Remote Denial of Service PoC 1274 R D Mu Security 2008-07-08 Multiple Vendors Malicious SVG File Denial of Service PoC 1937 R D Kristian Hermansen 2008-06-05 Asterisk (SIP channel driver / in pedantic mode) Remote Crash Exploit 3662 R D Armando Oliveira 2008-06-01 Samba (client) receive_smb_raw() Buffer Overflow Vulnerability PoC 3346 R D Guido Landi 2008-05-27 PHP 5.2.6 sleep() Local Memory Exhaust Exploit 4844 R D Gogulas 2008-03-24 snircd <= 1.3.4 (send_user_mode) Denial of Service Vulnerability 2021 R D Chris Porter 2008-03-17 Apple Safari (webkit) Remote Denial of Service Exploit (iphone/osx/win) 5401 R D X Georgi Guninski 2008-03-10 ASG-Sentry <= 7.0.0 Multiple Remote Vulnerabilities 2036 R D Luigi Auriemma 2008-02-26 Apple Mac OS X xnu <= 1228.3.13 ipv6-ipcomp Remote kernel DoS PoC 4585 R D mu-b 2008-02-19 X.Org xorg-server <= 1.1.1-48.13 Probe for Files Exploit PoC 3705 R D vl4dZ 2008-01-28 Oracle 10g R1 xdb.xdb_pitrig_pkg Buffer Overflow Exploit (PoC) 3850 R D Sh2kerr 2008-01-09 McAfee E-Business Server Remote pre-auth Code Execution / DoS PoC 2390 R D Leon Juranic 2008-01-06 Half-Life CSTRIKE Server 1.6 Denial of Service Exploit (no-steam) 8399 R D Eugene Minaev 2007-12-23 OpenSSL < 0.9.7l / 0.9.8d SSLv2 Client Crash Exploit 5874 R D Noam Rathaus 2007-11-23 Apple QuickTime 7.2/7.3 RTSP Response Remote SEH Overwrite PoC 8337 R D h07 2007-11-09 MySQL <= 5.0.45 (Alter) Denial of Service Vulnerability 11124 R D Kristian Hermansen 2007-11-02 Ubuntu 6.06 DHCPd bug Remote Denial of Service Exploit 5524 R D RoMaNSoFt 2007-10-23 DNS Recursion bandwidth amplification Denial of Service PoC 5934 R D Shadow 2007-10-22 Mozilla Firefox <= 2.0.0.7 Remote Denial of Service Exploit 10203 R D BugReport.IR 2007-10-16 GCALDaemon <= 1.0-beta13 Remote Denial of Service Exploit 3042 R D ikki 2007-09-19 Sun jre1.6.0_X isInstalled.dnsResolve Function Overflow PoC 5794 R D X YAG KOHHA 2007-09-03 Apple Quicktime < 7.2 SMIL Remote Integer Overflow PoC 3429 R D David Vaartjes 2007-08-06 PHP mSQL (msql_connect) Local Buffer Overflow PoC 4729 R D NetJackal 2007-07-31 Asterisk < 1.2.22, 1.4.8 IAX2 channel driver Remote Crash Exploit 3230 R D tenkei_ev 2007-07-18 Asterisk < 1.2.22 / 1.4.8 / 2.2.1 chan_skinny Remote Denial of Service 2928 R D fbffff 2007-07-14 PHP 5.2.3 glob() Denial of Service Exploit 8212 R D shinnai 2007-07-12 PHP 5.2.3 bz2 com_print_typeinfo() Denial of Service Exploit 5094 R D shinnai 2007-06-06 DRDoS - Distributed Reflection Denial of Service 6110 R D whoppix 2007-05-08 Opera 9.10 alert() Remote Denial of Service Exploit 4088 R D X Dj7xpl 2007-05-04 Multiple vendors ZOO file decompression Infinite Loop DoS PoC 2184 R D Jean-Sébastien 2007-04-23 Opera 9.2 (torrent File) Remote Denial of Service Exploit 4220 R D n00b 2007-04-13 Ettercap-NG 0.7.3 Remote Denial of Service Exploit 3943 R D evilrabbi 2007-04-11 Gran Paradiso 3.0a3 non-existent applet Denial of Service Exploit 4093 R D X shinnai 2007-03-29 Mozilla Firefox 2.0.0.3 / Gran Paradiso 3.0a3 DoS Hang / Crash Exploit 9331 R D shinnai 2007-03-25 Asterisk <= 1.2.16 / 1.4.1 SIP INVITE Remote Denial of Service Exploit 3540 R D MADYNES 2007-03-08 Snort 2.6.1.1/2.6.1.2/2.7.0 (fragementation) Remote DoS Exploit 3847 R D Antimatt3r 2007-03-04 PHP wddx_deserialize() String Append Crash Exploit 3032 R D Stefan Esser 2007-03-04 Asterisk <= 1.2.15 / 1.4.0 pre-auth Remote Denial of Service Exploit 3056 R D fbffff 2007-03-01 PHP 4 Userland ZVAL Reference Counter Overflow Exploit PoC 3945 R D Stefan Esser 2007-02-23 Snort 2.6.1 DCE/RPC Preprocessor Remote Buffer Overflow DoS Exploit 4620 R D Trirat Puttaraksa 2007-01-08 Opera <= 9.10 JPG Image DHT Marker Heap Corruption Vulnerabilities 8168 R D posidron 2006-12-19 Intel 2200BG 802.11 Beacon frame Kernel Memory Corruption Exploit 3833 R D Breno Silva Pinto 2006-12-18 wget <= 1.10.2 (Unchecked Boundary Condition) Denial of Service Exploit 4143 R D Federico L. Bossi Bonin 2006-12-10 Sophos Antivirus CHM File Heap Overflow PoC 2826 R D Damian Put 2006-12-10 Sophos Antivirus CHM Chunk Name Length Memory Corruption PoC 2523 R D Damian Put 2006-12-10 Sophos / Trend Micro Antivirus RAR File Denial of Service PoC 2923 R D Damian Put 2006-11-27 PHP <= 4.4.4/5.1.6 htmlentities() Local Buffer Overflow PoC 5289 R D Nick Kezhaya 2006-10-31 Mozilla Firefox <= 1.5.0.7/ 2.0 (createRange) Remote DoS Exploit 9825 R D X Gotfault Security 2006-10-19 Asterisk <= 1.0.12 / 1.2.12.1 (chan_skinny) Remote Heap Overflow (PoC) 3964 R D Noam Rathaus 2006-10-17 Clam AntiVirus <= 0.88.4 CHM Chunk Name Length DoS PoC 3089 R D Damian Put 2006-10-17 Clam AntiVirus <= 0.88.4 (rebuildpe) Remote Heap Overflow PoC 2866 R D Damian Put 2006-10-11 Kmail <= 1.9.1 (IMG SRC) Remote Denial of Service Vulnerability 3899 R D nnp 2006-09-27 OpenSSH <= 4.3 p1 (Duplicated Block) Remote Denial of Service Exploit 19026 R D Tavis Ormandy 2006-09-05 dsock <= 1.3 (buf) Remote Buffer Overflow PoC 5025 R D X DaveK 2006-08-22 Mozilla Firefox <= 1.5.0.6 (FTP Request) Remote Denial of Service Exploit 11301 R D Tomas Kempinsky 2006-08-21 Apache < 1.3.37, 2.0.59, 2.2.3 (mod_rewrite) Remote Overflow PoC 41906