[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]

[ multiple - remote ] -::DATE -::DESCRIPTION -::HITS -::AUTHOR 2008-08-13 BIND 9.5.0-P2 (randomized ports) Remote DNS Cache Poisoning Exploit 8390 R D Zbr 2008-08-11 Apache Tomcat <= 6.0.18 UTF8 Directory Traversal Vulnerability 15772 R D Simon Ryeo 2008-07-25 BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (c) 17024 R D Marc Bevand 2008-07-24 BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (py) 12695 R D Julien Desfossez 2008-07-23 BIND 9.4.1-9.4.2 Remote DNS Cache Poisoning Flaw Exploit (meta) 16443 R D I)ruid 2008-06-12 SNMPv3 HMAC validation error Remote Authentication Bypass Exploit 6338 R D Maurizio Agazzini 2008-05-16 Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit (ruby) 15442 R D L4teral 2008-05-15 Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit 28328 R D Markus Mueller 2008-05-03 HLDS WebMod 0.48 Multiple Remote Vulnerabilties 5204 R D Luigi Auriemma 2008-04-11 HP OpenView Network Node Manager <= 7.53 Multiple Vulnerabilities 4962 R D Luigi Auriemma 2008-03-14 Dovecot IMAP 1.0.10 <= 1.1rc2 Remote Email Disclosure Exploit 4628 R D kcope 2008-03-06 Ruby 1.8.6 (Webrick Httpd 1.3.1) Directory Traversal Vulnerability 5667 R D DSecRG 2008-01-09 SAP MaxDB <= 7.6.03.07 pre-auth Remote Command Execution Exploit 5244 R D Luigi Auriemma 2007-12-21 Sendmail with clamav-milter < 0.91.2 Remote Root Exploit 10733 R D eliteb0y 2007-11-29 Apple QuickTime 7.2/7.3 RSTP Response Universal Exploit (win/osx) 10750 R D Subreption LLC. 2007-10-24 Jakarta Slide <= 2.1 RC1 Remote File Disclosure Exploit 6229 R D kcope 2007-10-22 LiteSpeed Web Server <= 3.2.3 Remote Source Code Disclosure Vuln 6116 R D Tr3mbl3r 2007-10-14 Apache Tomcat (webdav) Remote File Disclosure Exploit 14752 R D eliteb0y 2007-09-12 Apple Quicktime (Multiple Browsers) Command Execution PoC (0day) 10822 R D X pdp 2007-09-10 Lighttpd <= 1.4.16 FastCGI Header Overflow Remote Exploit 6155 R D Mattias Bengtsson 2007-08-07 BIND 9 DNS Cache Poisoning Exploit (v0.3beta) 17174 R D posedge 2007-06-22 Apache mod_jk 1.2.19/1.2.20 Remote Buffer Overflow Exploit 12248 R D eliteboy 2007-04-11 MiniWebsvr 0.0.7 Remote Directory Transversal Exploit 4917 R D shinnai 2007-04-03 HP Mercury Quality Center 9.0 build 9.1.0.4352 SQL Execution Exploit 4551 R D Isma Khan 2007-03-27 Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit v2 4608 R D bunker 2007-03-27 Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit 5523 R D bunker 2007-03-23 Ethernet Device Drivers Frame Padding Info Leakage Exploit (Etherleak) 3412 R D Jon Hart 2007-03-10 PHP <= 5.2.0 ext/filter FDF Post Filter Bypass Exploit 7532 R D Stefan Esser 2007-03-07 mod_security <= 2.1.0 (ASCIIZ byte) POST Rules Bypass Vulnerability 4948 R D Stefan Esser 2007-03-04 PHP 4.4.3 - 4.4.6 phpinfo() Remote XSS Vulnerability 13143 R D Stefan Esser 2007-02-26 Oracle 10g KUPW$WORKER.MAIN SQL Injection Exploit v2 5524 R D bunker 2007-02-26 Oracle 10g KUPV$FT.ATTACH_JOB SQL Injection Exploit v2 4179 R D bunker 2007-02-26 Oracle 9i/10g DBMS_METADATA.GET_DDL SQL Injection Exploit v2 4990 R D bunker 2007-02-26 Oracle 9i/10g ACTIVATE_SUBSCRIPTION SQL Injection Exploit v2 4199 R D bunker 2007-02-23 Oracle 9i/10g DBMS_METADATA.GET_DDL SQL Injection Exploit 6544 R D bunker 2007-02-22 Oracle 10g KUPW$WORKER.MAIN Grant/Revoke dba Permission Exploit 5414 R D bunker 2007-02-22 Oracle 10g KUPV$FT.ATTACH_JOB Grant/Revoke dba Permission Exploit 4708 R D bunker 2007-02-13 Portable OpenSSH <= 3.6.1p-PAM / 4.1-SUSE Timing Attack Exploit 9293 R D Marco Ivaldi 2007-02-05 Oracle 9i/10g DBMS_EXPORT_EXTENSION SQL Injection Exploit 6224 R D bunker 2007-01-01 Apple Quicktime (rtsp URL Handler) Stack Buffer Overflow Exploit 7863 R D MoAB 2006-12-19 Oracle <= 9i / 10g (extproc) Local/Remote Command Execution Exploit 10069 R D Marco Ivaldi 2006-11-23 Oracle <= 9i / 10g (read/write/execute) Exploitation Suite 9717 R D Marco Ivaldi 2006-11-14 Links 1.00pre12 (smbclient) Remote Code Execution Exploit 6342 R D X Teemu Salmela 2006-07-28 Mozilla Firefox <= 1.5.0.4 Javascript Navigator Object Code Execution PoC 18594 R D X H D Moore 2006-07-23 Apache Tomcat < 5.5.17 Remote Directory Listing Vulnerability 19430 R D ScanAlert Security 2006-07-21 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit (2) 5923 R D bannedit 2006-07-15 Webmin < 1.290 / Usermin < 1.220 Arbitrary File Disclosure Exploit (perl) 21051 R D UmZ 2006-07-09 Webmin < 1.290 / Usermin < 1.220 Arbitrary File Disclosure Exploit 14952 R D joffer 2006-05-17 RealVNC 4.1.0 - 4.1.1 (VNC Null Authentication) Vulnerability Scanners 44947 R D class101 2006-05-16 RealVNC 4.1.0 - 4.1.1 (VNC Null Authentication) Auth Bypass Patch/EXE 46224 R M D redsand 2006-05-15 RealVNC 4.1.0 - 4.1.1 (Null Authentication) Auth Bypass Exploit (meta) 26646 R M D H D Moore 2006-03-22 BomberClone < 0.11.6.2 (Error Messages) Remote Buffer Overflow Exploit 6574 R M D esca zoo 2005-12-12 Mozilla Firefox <= 1.04 compareTo() Remote Code Execution Exploit 10394 R M D X Aviv Raff 2005-11-04 WzdFTPD <= 0.5.4 (SITE) Remote Command Execution Exploit (meta) 9012 R M D David Maciejak 2005-10-20 Veritas NetBackup <= 6.0 (bpjava-msvc) Remote Exploit (linux) 7309 R D Kevin Finisterre 2005-08-30 HP OpenView Network Node Manager <= 7.50 Remote Exploit 5456 R D Lympex 2005-05-21 Mozilla Firefox view-source:javascript url Code Execution Exploit 12072 R D X mikx 2005-03-14 LimeWire 4.1.2 - 4.5.6 Inappropriate Get Request Remote Exploit 6681 R D lammat 2005-02-18 Knox Arkeia Server Backup 5.3.x Remote Root Exploit 3968 R M D John Doe 2005-02-09 ELOG <= 2.5.6 Remote Shell Exploit 4616 R D n4rk0tix 2005-01-08 Webmin Web Brute Force v1.5 (cgi-version) 10443 R D ZzagorR 2005-01-08 Webmin BruteForce + Command Execution v1.5 9374 R D ZzagorR 2004-12-22 Webmin BruteForce and Command Execution Exploit 7786 R D Di42lo 2004-12-15 wget <= 1.9 Directory Traversal Exploit 4916 R D jjminar 2004-07-10 MySQL 4.1/5.0 zero-length password Auth. Bypass Exploit 14514 R D Eli Kara 2004-06-25 CVS Remote Entry Line Heap Overflow Root Exploit (Linux/FreeBSD) 5087 R D Ac1dB1tCh3z 2003-08-25 Real Server 7/8/9 Remote Root Exploit (Windows & Linux) 4632 R M D Johnny Cyberpunk 2003-07-28 Apache 1.3.x mod_mylo Remote Code Execution Exploit 21267 R D Carl Livitt 2002-05-01 SSH (x2) Remote Root Exploit 18370 R D Teso 2000-12-21 HP OpenView OmniBack II Generic Remote Exploit 4318 R M D DiGiT 2000-11-21 wu-ftpd 2.6.0 Remote Root Exploit 6199 R D venglin [ multiple - local ] -::DATE -::DESCRIPTION -::HITS -::AUTHOR 2008-01-28 Oracle 10g R1 pitrig_drop PLSQL Injection (get users hash) 3848 R D Sh2kerr 2008-01-28 Oracle 10g R1 pitrig_truncate PLSQL Injection (get users hash) 4060 R D Sh2kerr 2008-01-28 Oracle 10g R1 xdb.xdb_pitrig_pkg PLSQL Injection (change sys password) 5465 R D Sh2kerr 2007-10-27 Oracle 10g/11g SYS.LT.FINDRICSET Local SQL Injection Exploit 3482 R D bunker 2007-10-27 Oracle 10g/11g SYS.LT.FINDRICSET Local SQL Injection Exploit (2) 4773 R D bunker 2007-10-27 Oracle 10g LT.FINDRICSET Local SQL Injection Exploit (IDS evasion) 6032 R D Sh2kerr 2007-10-23 Oracle 10g CTX_DOC.MARKUP SQL Injection Exploit 6761 R D Sh2kerr 2007-09-10 PHP <= 4.4.7 / 5.2.3 MySQL/MySQLi Safe Mode Bypass Vulnerability 18825 R D Mattias Bengtsson 2007-07-19 Oracle 9i/10g evil views Change Passwords Exploit (CVE-2007-3855) 6315 R D bunker 2007-03-23 PHP 5.2.1 unserialize() Local Information Leak Exploit 4994 R D Stefan Esser 2007-03-09 PHP 4.4.6 cpdf_open() Local Source Code Discslosure PoC 4959 R D rgod 2007-03-07 PHP <= 5.2.1 substr_compare() Information Leak Exploit 4418 R D Stefan Esser 2007-03-04 PHP < 4.4.5 / 5.2.1 php_binary Session Deserialization Information Leak 5101 R D Stefan Esser 2007-03-04 PHP < 4.4.5 / 5.2.1 WDDX Session Deserialization Information Leak 4476 R D Stefan Esser 2007-01-23 Oracle 10g SYS.DBMS_CDC_IMPDP.BUMP_SEQUENCE PL/SQL Injection 5643 R D Joxean Koret 2007-01-23 Oracle 10g SYS.KUPW$WORKER.MAIN PL/SQL Injection Exploit 4148 R D Joxean Koret 2007-01-23 Oracle 10g SYS.KUPV$FT.ATTACH_JOB PL/SQL Injection Exploit 3972 R D Joxean Koret 2006-06-18 Sun iPlanet Messaging Server 5.2 HotFix 1.16 Root Password Disclosure 4530 R D php0t 2006-04-26 Oracle <= 10g Release 2 (DBMS_EXPORT_EXTENSION) Local SQL Exploit 8012 R D N1V1Hd 2006-03-05 LibTiff 3.7.1 (BitsPerSample Tag) Local Buffer Overflow Exploit 4778 R D Agustin Gianni 2005-07-25 vim 6.3 < 6.3.082 (modlines) Local Command Execution Exploit 5877 R D Georgi Guninski 2004-11-14 Multiple AntiVirus (zip file) Detection Bypass Exploit 4817 R D oc192 2001-03-04 Progress Database Server 8.3b (prodb) Local Root Exploit 3621 R D the itch 1996-08-13 Linux & BSD umount Local Root Exploit 3979 R D bloodmask [ multiple - dos ] -::DATE -::DESCRIPTION -::HITS -::AUTHOR 2008-09-29 Wireshark 1.0.x Malformed .ncf packet capture Local Denial of Service 1775 R D Shinnok 2008-09-16 QuickTime 7.5.5 / ITunes 8.0 Remote off by one Crash Exploit 4480 R D securfrog 2008-09-16 Postfix < 2.4.9, 2.5.5, 2.6-20080902 (.forward) Local DoS Exploit 1523 R D Albert Sellares 2008-08-23 VLC 0.8.6i MMS Protocol Handling Heap Overflow PoC 2602 R D g_ 2008-08-16 VLC 0.8.6i tta File Parsing Heap Overflow PoC 2577 R D g_ 2008-08-13 Ventrilo <= 3.0.2 NULL pointer Remote DoS Exploit 3021 R D Luigi Auriemma 2008-08-13 Ruby <= 1.9 (regex engine) Remote Socket Memory Leak Exploit 2290 R D laurent gaffié 2008-08-10 Sun xVM VirtualBox < 1.6.4 Privilege Escalation Vulnerability PoC 1568 R D Core Security 2008-07-31 F-PROT antivirus 6.2.1.4252 (malformed archive) Infinite Loop DoS Exploit 2340 R D kokanin 2008-07-19 Oracle Internet Directory 10.1.4 Remote Preauth DoS Exploit 3303 R D Joxean Koret 2008-07-12 reSIProcate 1.3.2 Remote Denial of Service PoC 1497 R D Mu Security 2008-07-08 Multiple Vendors Malicious SVG File Denial of Service PoC 2097 R D Kristian Hermansen 2008-06-05 Asterisk (SIP channel driver / in pedantic mode) Remote Crash Exploit 3883 R D Armando Oliveira 2008-06-01 Samba (client) receive_smb_raw() Buffer Overflow Vulnerability PoC 3784 R D Guido Landi 2008-05-27 PHP 5.2.6 sleep() Local Memory Exhaust Exploit 5323 R D Gogulas 2008-03-24 snircd <= 1.3.4 (send_user_mode) Denial of Service Vulnerability 2176 R D Chris Porter 2008-03-17 Apple Safari (webkit) Remote Denial of Service Exploit (iphone/osx/win) 5846 R D X Georgi Guninski 2008-03-10 ASG-Sentry <= 7.0.0 Multiple Remote Vulnerabilities 2233 R D Luigi Auriemma 2008-02-26 Apple Mac OS X xnu <= 1228.3.13 ipv6-ipcomp Remote kernel DoS PoC 4863 R D mu-b 2008-02-19 X.Org xorg-server <= 1.1.1-48.13 Probe for Files Exploit PoC 3832 R D vl4dZ 2008-01-28 Oracle 10g R1 xdb.xdb_pitrig_pkg Buffer Overflow Exploit (PoC) 4170 R D Sh2kerr 2008-01-09 McAfee E-Business Server Remote pre-auth Code Execution / DoS PoC 2522 R D Leon Juranic 2008-01-06 Half-Life CSTRIKE Server 1.6 Denial of Service Exploit (no-steam) 9178 R D Eugene Minaev 2007-12-23 OpenSSL < 0.9.7l / 0.9.8d SSLv2 Client Crash Exploit 6246 R D Noam Rathaus 2007-11-23 Apple QuickTime 7.2/7.3 RTSP Response Remote SEH Overwrite PoC 8698 R D h07 2007-11-09 MySQL <= 5.0.45 (Alter) Denial of Service Vulnerability 11651 R D Kristian Hermansen 2007-11-02 Ubuntu 6.06 DHCPd bug Remote Denial of Service Exploit 6000 R D RoMaNSoFt 2007-10-23 DNS Recursion bandwidth amplification Denial of Service PoC 6086 R D Shadow 2007-10-22 Mozilla Firefox <= 2.0.0.7 Remote Denial of Service Exploit 10803 R D BugReport.IR 2007-10-16 GCALDaemon <= 1.0-beta13 Remote Denial of Service Exploit 3158 R D ikki 2007-09-19 Sun jre1.6.0_X isInstalled.dnsResolve Function Overflow PoC 6032 R D X YAG KOHHA 2007-09-03 Apple Quicktime < 7.2 SMIL Remote Integer Overflow PoC 3558 R D David Vaartjes 2007-08-06 PHP mSQL (msql_connect) Local Buffer Overflow PoC 4894 R D NetJackal 2007-07-31 Asterisk < 1.2.22, 1.4.8 IAX2 channel driver Remote Crash Exploit 3365 R D tenkei_ev 2007-07-18 Asterisk < 1.2.22 / 1.4.8 / 2.2.1 chan_skinny Remote Denial of Service 3054 R D fbffff 2007-07-14 PHP 5.2.3 glob() Denial of Service Exploit 8593 R D shinnai 2007-07-12 PHP 5.2.3 bz2 com_print_typeinfo() Denial of Service Exploit 5380 R D shinnai 2007-06-06 DRDoS - Distributed Reflection Denial of Service 6374 R D whoppix 2007-05-08 Opera 9.10 alert() Remote Denial of Service Exploit 4417 R D X Dj7xpl 2007-05-04 Multiple vendors ZOO file decompression Infinite Loop DoS PoC 2315 R D Jean-Sébastien 2007-04-23 Opera 9.2 (torrent File) Remote Denial of Service Exploit 4481 R D n00b 2007-04-13 Ettercap-NG 0.7.3 Remote Denial of Service Exploit 4128 R D evilrabbi 2007-04-11 Gran Paradiso 3.0a3 non-existent applet Denial of Service Exploit 4290 R D X shinnai 2007-03-29 Mozilla Firefox 2.0.0.3 / Gran Paradiso 3.0a3 DoS Hang / Crash Exploit 9654 R D shinnai 2007-03-25 Asterisk <= 1.2.16 / 1.4.1 SIP INVITE Remote Denial of Service Exploit 3673 R D MADYNES 2007-03-08 Snort 2.6.1.1/2.6.1.2/2.7.0 (fragementation) Remote DoS Exploit 4033 R D Antimatt3r 2007-03-04 PHP wddx_deserialize() String Append Crash Exploit 3124 R D Stefan Esser 2007-03-04 Asterisk <= 1.2.15 / 1.4.0 pre-auth Remote Denial of Service Exploit 3179 R D fbffff 2007-03-01 PHP 4 Userland ZVAL Reference Counter Overflow Exploit PoC 4073 R D Stefan Esser 2007-02-23 Snort 2.6.1 DCE/RPC Preprocessor Remote Buffer Overflow DoS Exploit 4871 R D Trirat Puttaraksa 2007-01-08 Opera <= 9.10 JPG Image DHT Marker Heap Corruption Vulnerabilities 8411 R D posidron 2006-12-19 Intel 2200BG 802.11 Beacon frame Kernel Memory Corruption Exploit 3987 R D Breno Silva Pinto 2006-12-18 wget <= 1.10.2 (Unchecked Boundary Condition) Denial of Service Exploit 4271 R D Federico L. Bossi Bonin 2006-12-10 Sophos Antivirus CHM File Heap Overflow PoC 2919 R D Damian Put 2006-12-10 Sophos Antivirus CHM Chunk Name Length Memory Corruption PoC 2596 R D Damian Put 2006-12-10 Sophos / Trend Micro Antivirus RAR File Denial of Service PoC 3039 R D Damian Put 2006-11-27 PHP <= 4.4.4/5.1.6 htmlentities() Local Buffer Overflow PoC 5461 R D Nick Kezhaya 2006-10-31 Mozilla Firefox <= 1.5.0.7/ 2.0 (createRange) Remote DoS Exploit 10096 R D X Gotfault Security 2006-10-19 Asterisk <= 1.0.12 / 1.2.12.1 (chan_skinny) Remote Heap Overflow (PoC) 4084 R D Noam Rathaus 2006-10-17 Clam AntiVirus <= 0.88.4 CHM Chunk Name Length DoS PoC 3213 R D Damian Put 2006-10-17 Clam AntiVirus <= 0.88.4 (rebuildpe) Remote Heap Overflow PoC 2956 R D Damian Put 2006-10-11 Kmail <= 1.9.1 (IMG SRC) Remote Denial of Service Vulnerability 4069 R D nnp 2006-09-27 OpenSSH <= 4.3 p1 (Duplicated Block) Remote Denial of Service Exploit 19803