[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]
milw0rm
[ linux - remote ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-07-14 Virtualmin < 3.703 Multiple Local/Remote Vulnerabilities 6969 R D Filip Palian
2009-06-04 Kloxo 5.75 (24 Issues) Multiple Remote Vulnerabilities 30538 R D n/a
2009-04-29 Adobe Reader 8.1.4/9.1 GetAnnots() Remote Code Execution Exploit 13264 R D Arr1val
2009-04-29 Adobe 8.1.4/9.1 customDictionaryOpen() Code Execution Exploit 12267 R D Arr1val
2009-04-28 Linux Kernel 2.6.x SCTP FWD Memory Corruption Remote Exploit 20672 R D sgrakkyu
2009-04-09 net2ftp <= 0.97 Cross-Site Scripting/Request Forgery Vulnerabilities 4236 R D cicatriz
2009-01-08 Samba < 3.0.20 Remote Heap Overflow Exploit (oldie but goodie) 13632 R D zuc
2008-11-21 verlihub <= 0.9.8d-RC2 Remote Command Execution Vulnerability 11023 R D v4lkyrius
2008-11-18 No-IP DUC <= 2.1.7 Remote Code Execution Exploit 16826 R D XenoMuta
2008-07-17 Debian OpenSSH Remote SELinux Privilege Elevation Exploit (auth) 27046 R D eliteboy
2008-07-12 trixbox 2.6.1 (langChoice) Remote Root Exploit (py) 11973 R D loganWHD
2008-07-09 trixbox (langChoice) Local File Inclusion Exploit (connect-back) v2 10410 R D Jean-Michel BESNARD
2008-06-01 Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit (Python) 19197 R D WarCat team
2008-04-06 Apache Tomcat Connector jk2-2.0.2 (mod_jk2) Remote Overflow Exploit 18257 R D INetCop Security
2008-03-20 CenterIM <= 4.22.3 Remote Command Execution Vulnerability 8248 R D Brian Fonfara
2008-03-09 VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit 10913 R D DarkFig
2008-01-21 Axigen <= 5.0.2 AXIMilter Remote Format String Exploit 4790 R D hempel
2008-01-07 ClamAV 0.91.2 libclamav MEW PE Buffer Overflow Exploit 7456 R D Thomas Pollet
2007-10-21 Apache Tomcat (webdav) Remote File Disclosure Exploit (ssl support) 23286 R D h3rcul3s
2007-10-16 Boa 0.93.15 HTTP Basic Authentication Bypass Exploit 11488 R D ikki
2007-10-15 eXtremail <= 2.1.1 (LOGIN) Remote Stack Overflow Exploit 7464 R D mu-b
2007-10-15 eXtremail <= 2.1.1 PLAIN authentication Remote Stack Overflow Exploit 8220 R D mu-b
2007-10-10 Eggdrop Server Module Message Handling Remote BoF Exploit 7499 R D bangus/magnum
2007-10-01 smbftpd 0.96 SMBDirList-function Remote Format String Exploit 9646 R D Jerry Illikainen
2007-09-20 Lighttpd <= 1.4.17 FastCGI Header Overflow Remote Exploit 14227 R D andi
2007-09-04 Web Oddity Web Server 0.09b Directory Transversal Exploit 5642 R D Katatafish
2007-08-27 BitchX 1.1 Final MODE Remote Heap Overflow Exploit (0-day) 8674 R D bannedit
2007-08-25 SIDVault LDAP Server Preauth Remote Buffer Overflow Exploit 5410 R D Joxean Koret
2007-08-24 ProFTPD 1.x (module mod_tls) Remote Buffer Overflow Exploit 30909 R D netris
2007-07-29 corehttp 0.5.3alpha (httpd) Remote Buffer Overflow Exploit 7053 R D vade79
2007-07-08 Apache Tomcat Connector (mod_jk) Remote Exploit (exec-shield) 26747 R D Xpl017Elz
2007-06-21 BitchX 1.1-final (EXEC) Remote Command Execution Exploit 9872 R D clarity_
2007-05-14 webdesproxy 0.0.1 (GET Request) Remote Root Exploit (exec-shield) 7398 R D Xpl017Elz
2007-05-02 3proxy 0.5.3g proxy.c logurl() Remote Overflow Exploit (exec-shield) 8115 R D Xpl017Elz
2007-04-30 3proxy 0.5.3g proxy.c logurl() Remote Buffer Overflow Exploit (linux) 7429 R D vade79
2007-04-29 Fenice OMS server 1.10 Remote Buffer Overflow Exploit (exec-shield) 7384 R D Xpl017Elz
2007-04-24 GNU Mailutils imap4d 0.6 Remote Format String Exploit (exec-shield) 7898 R D Xpl017Elz
2007-04-12 Aircrack-ng 0.7 (specially crafted 802.11 packets) Remote BoF Exploit 12985 R D Jonathan So
2007-04-10 Kerberos 1.5.1 Kadmind Remote Root Buffer Overflow Vulnerability 9115 R D c0ntex
2007-03-30 Snort 2.6.1 DCE/RPC Preprocessor Remote Buffer Overflow Exploit (linux) 8208 R D Winny Thomas
2007-03-30 dproxy-nexgen Remote Root Buffer Overflow Exploit (x86-lnx) 8276 R D mu-b
2007-03-23 dproxy <= 0.5 Remote Buffer Overflow Exploit (meta 2.7) 5452 R D Alexander Klink
2007-03-01 madwifi <= 0.9.2.1 WPA/RSN IE Remote Kernel Buffer Overflow Exploit 8693 R D Massimiliano Oldani
2007-02-18 Axigen eMail Server 2.0.0b2 (pop3) Remote Format String Exploit 8264 R D fuGich
2007-01-08 Berlios GPSD <= 2.7 Remote Format String Exploit (meta) 5838 R D Enseirb
2006-12-19 Oracle <= 9i / 10g File System Access via utl_file Exploit 11769 R D Marco Ivaldi
2006-12-15 OpenLDAP <= 2.4.3 (KBIND) Remote Buffer Overflow Exploit 11679 R D Solar Eclipse
2006-12-15 GNU InetUtils ftpd 1.4.2 (ld.so.preload) Remote Root Exploit 10735 R D kcope
2006-11-28 Evince Document Viewer (DocumentMedia) Buffer Overflow Exploit 8423 R D K-sPecial
2006-11-27 ProFTPD 1.3.0 (sreplace) Remote Stack Overflow Exploit (meta) 37809 R D Evgeny Legerov
2006-08-29 Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit 9476 R D Expanders
2006-08-14 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit (3) 12167 R D K-sPecial
2006-05-21 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit 14817 R D kcope
2006-05-05 Quake 3 Engine 1.32b R_RemapShader() Remote Client BoF Exploit 22096 R D landser
2006-05-02 MySQL <= 5.0.20 COM_TABLE_DUMP Memory Leak/Remote BoF Exploit 25678 R D Stefano Di Paola
2006-05-02 MySQL (<= 4.1.18, 5.0.20) Local/Remote Information Leakage Exploit 20379 R D Stefano Di Paola
2006-04-25 Fenice OMS 1.10 (long get request) Remote Buffer Overflow Exploit 9110 R D c0d3r
2006-03-13 crossfire-server <= 1.9.0 SetUp() Remote Buffer Overflow Exploit 9306 R D landser
2006-03-12 PeerCast <= 0.1216 (nextCGIarg) Remote Buffer Overflow Exploit (2) 8131 RM D darkeagle
2006-03-11 PeerCast <= 0.1216 (nextCGIarg) Remote Buffer Overflow Exploit 7408 RM D prdelka
2006-02-10 Power Daemon <= 2.0.2 (WHATIDO) Remote Format String Exploit 9191 R D Gotfault Security
2006-02-10 OpenVMPSd <= 1.3 Remote Format String Exploit (Multiple Targets) 7362 R D Gotfault Security
2006-02-07 Mozilla Firefox 1.5 location.QueryInterface() Code Execution (linux) 31369 RM D H D Moore
2006-01-28 SHOUTcast <= 1.9.4 File Request Format String Exploit (Leaked) 13927 R D crash-x
2005-12-03 sobexsrv 1.0.0_pre3 Bluetooth syslog() Remote Format String Exploit 7182 R D Kevin Finisterre
2005-11-11 Snort <= 2.4.2 Back Orifice Pre-Preprocessor Remote Exploit (4) 8309 R D xwings
2005-11-05 linux-ftpd-ssl 0.17 (MKD/CWD) Remote Root Exploit 23419 R D kcope
2005-11-04 gpsdrive <= 2.09 (friendsd2) Remote Format String Exploit (ppc) 12512 R D Kevin Finisterre
2005-11-04 gpsdrive <= 2.09 (friendsd2) Remote Format String Exploit (x86) 12192 R D Kevin Finisterre
2005-11-02 Lynx <= 2.8.6dev.13 Remote Buffer Overflow Exploit (port bind) 7959 R D xwings
2005-10-25 Snort <= 2.4.2 Back Orifice Parsing Remote Buffer Overflow Exploit 8812 R D rd
2005-10-18 e107 <= 0.6172 (resetcore.php) Remote SQL Injection Exploit 14414 R D rgod
2005-10-16 Half-Life Server 3.1.1.0 Remote Buffer Overflow Exploit 4775 R D greuff
2005-10-11 phpBB 2.0.13 (admin_styles.php) Remote Command Execution Exploit 42559 R D RusH
2005-10-10 xine-lib <= 1.1 (media player library) Remote Format String Exploit 6188 R D Ulf Harnhammar
2005-10-02 Prozilla <= 1.3.7.4 (ftpsearch) Results Handling Buffer Overflow Exploit 6491 R D taviso
2005-09-26 RealPlayer/Helix Player Remote Format String Exploit (linux) 8768 R D c0ntex
2005-09-24 WzdFTPD <= 0.5.4 Remote Command Execution Exploit 9014 RM D kcope
2005-09-10 GNU Mailutils imap4d 0.6 (search) Remote Format String Exploit 11020 RM D Clément Lecigne
2005-08-22 Elm < 2.5.8 (Expires Header) Remote Buffer Overflow Exploit 7258 R D c0ntex
2005-08-06 Ethereal 10.x AFP Protocol Dissector Remote Format String Exploit 7326 R D vade79
2005-08-05 nbSMTP <= 0.99 (util.c) Client-Side Command Execution Exploit 5444 R D CoKi
2005-08-01 GNU Mailutils imap4d <= 0.6 Remote Format String Exploit 6826 RM D CoKi
2005-08-01 IPSwitch IMail Server <= 8.15 IMAPD Remote Root Exploit 13362 R D kcope
2005-06-20 PeerCast <= 0.1211 Remote Format String Exploit 6763 R D darkeagle
2005-06-14 ViRobot Advanced Server 2.0 (addschup) Remote Cookie Exploit 7698 R D Kevin Finisterre
2005-06-10 GNU Mailutils imap4d 0.5 < 0.6.90 Remote Format String Exploit 6481 RM D qobaiashi
2005-05-31 Ethereal <= 0.10.10 (SIP) Protocol Dissector Remote BoF Exploit 6250 R D Team W00dp3ck3r
2005-05-05 dSMTP Mail Server 3.1b Linux Remote Root Format String Exploit 7979 R D cybertronic
2005-05-03 Subversion 0.3.7/1.0.0 Remote Buffer Overflow Exploit 4693 R D greuff
2005-04-29 Snmppd SNMP Proxy Daemon Remote Format String Exploit 7246 R D cybertronic
2005-04-14 Sumus 0.2.2 httpd Remote Buffer Overflow Exploit 8762 R D vade79
2005-04-13 gld 1.4 (Postfix Greylisting Daemon) Remote Format String Exploit 8377 R D Xpl017Elz
2005-04-05 MailEnable Enterprise 1.x Imapd Remote Exploit 7315 RM D Expanders
2005-03-29 mtftpd <= 0.0.3 Remote Root Exploit 8617 R D darkeagle
2005-03-29 Cyrus imapd 2.2.4 - 2.2.8 (imapmagicplus) Remote Exploit 7120 R D crash-x
2005-03-28 Smail 3.2.0.120 Remote Root Heap Overflow Exploit 6691 R D infamous41md
2005-03-14 Ethereal <= 0.10.9 "3G-A11" Remote Buffer Overflow Exploit 5890 R D Diego Giagio
2005-02-20 GNU Cfengine 2.17p1 RSA Authentication Heap Overflow Exploit 5020 R D jsk
2005-02-18 Medal of Honor Spearhead Server Remote Buffer Overflow (Linux) 7168 R D millhouse
2005-02-12 Exim <= 4.43 auth_spa_server() Remote PoC Exploit 8252 R D Yuri Gushin
2005-02-09 Prozilla <= 1.3.7.3 Remote Format String Exploit 4994 R D Serkan Akpolat
2005-02-03 ngIRCd <= 0.8.2 Remote Format String Exploit 6291 R D CoKi
2005-02-03 Newspost 2.1 socket_getline() Remote Buffer Overflow Exploit v2 6721 R D cybertronic
2005-01-26 Berlios gpsd <= 2.7.x Remote Format String Vulnerability 5237 R D JohnH
2004-12-23 SHOUTcast DNAS/Linux 1.9.4 Format String Remote Exploit 7588 R D pucik
2004-12-12 Citadel/UX <= 6.27 Remote Root Format String Exploit 4778 R D CoKi
2004-11-27 PHP <= 4.3.7/ 5.0.0RC3 memory_limit Remote Exploit 10479 R D Gyan Chawdhary
2004-11-23 Prozilla 1.3.6 Remote Stack Overflow Exploit 4763 R D Serkan Akpolat
2004-11-09 Qwik SMTP 0.3 Remote Root Format String Exploit 5053 R D Carlos Barros
2004-10-28 WvTFTPd 0.9 Remote Root Heap Overflow Exploit 5252 R D infamous41md
2004-10-28 zgv 5.5 Multiple Arbitrary Code Execution PoC Exploits 4972 R D infamous41md
2004-10-17 Monit <= 4.2 Basic Authentication Remote Root Exploit 4818 R D rtk
2004-10-17 ProFTPD <= 1.2.10 Remote Users Enumeration Exploit 29279 R D Leon Juranic
2004-09-09 Citadel/UX <= 6.23 Remote USER Directive Exploit (Private Version) 4750 R D Nebunu
2004-08-30 Citadel/UX Remote Buffer Overflow Exploit 4909 R D Nebunu
2004-08-25 Hafiye 1.0 Remote Terminal Escape Sequence Injection Vulnerability 4939 R D Serkan Akpolat
2004-08-24 MusicDaemon <= 0.0.3 v2 Remote DoS and /etc/shadow Stealer 4555 R D Tal0n
2004-08-21 Qt BMP Parsing Bug Heap Overflow Exploit 4712 R D infamous41md
2004-08-20 XV 3.x BMP Parsing Local Buffer Overflow Exploit 4726 R D infamous41md
2004-08-19 PlaySMS <= 0.7 SQL Injection Exploit 5496 R D Noam Rathaus
2004-08-18 GV PostScript Viewer Remote Buffer overflow Exploit (2) 4548 R D infamous41md
2004-08-13 GV PostScript Viewer Remote Buffer overflow Exploit 4581 R D infamous41md
2004-08-13 Remote CVS <= 1.11.15 (error_prog_name) Remote Exploit 5935 R D Gyan Chawdhary
2004-08-11 LibPNG Graphics Library Remote Buffer Overflow Exploit 5318 R D infamous41md
2004-08-09 xine 0.99.2 Remote Stack Overflow Exploit 5923 R D c0ntex
2004-08-09 Dropbear SSH <= 0.34 Remote Root Exploit 12814 R D livenn
2004-08-08 Pavuk Digest Authentication Buffer Overflow Remote Exploit 4481 R D infamous41md
2004-08-06 CVSTrac Remote Arbitrary Code Execution Exploit 6833 R D n/a
2004-08-04 OpenFTPD <= 0.30.1 (message system) Remote Shell Exploit 5624 R D infamous41md
2004-08-03 OpenFTPD (<= 0.30.2) Remote Exploit 6482 R D andi
2004-07-22 Drcat 0.5.0-beta (drcatd) Remote Root Exploit 4479 R D Taif
2004-07-22 Samba <= 3.0.4 SWAT Authorization Buffer Overflow Exploit 8263 R D Noam Rathaus
2004-07-04 MPlayer <= 1.0pre4 GUI filename handling Overflow Exploit 5889 R D c0ntex
2004-06-25 Borland Interbase <= 7.x Remote Exploit 4737 R D Aviram Jenik
2004-06-25 Subversion 1.0.2 svn_time_from_cstring() Remote Exploit 6122 RM D Gyan Chawdhary
2004-06-25 rlpr <= 2.04 msg() Remote Format String Exploit 4412 R D jaguar
2004-05-05 XChat 1.8.0/2.0.8 socks5 Remote Buffer overflow Exploit 6748 R D vade79
2004-04-12 Monit <= 4.2 Remote Root Buffer Overflow Exploit 4725 R D Abhisek Datta
2004-04-09 Monit <= 4.1 Remote Root Buffer Overflow Exploit 4513 R D gsicht
2004-03-28 Ethereal 0.10.0-0.10.2 IGAP Overflow Remote Root Exploit 5336 R D Abhisek Datta
2004-01-14 lftp <= 2.6.9 Remote Stack based Overflow Exploit 6341 R D Li0n7
2003-12-27 Cyrus IMSPD v1.7 abook_dbname Remote Root Exploit 5283 R D SpikE
2003-12-06 Apache 1.3.*-2.0.48 mod_userdir Remote Users Disclosure Exploit 34260 R D m00
2003-11-20 Apache mod_gzip (with debug_mode) <= 1.2.26.1a Remote Exploit 9268 R D xCrZx
2003-10-15 ProFTPD <= 1.2.9 rc2 (ASCII File) Remote Root Exploit 9249 R D Solar Eclipse
2003-10-13 ProFTPD 1.2.7 - 1.2.9rc2 Remote Root & brute-force Exploit 14753 R D Haggis
2003-10-04 ProFTPD 1.2.9rc2 ASCII File Remote Root Exploit 13407 R D bkbll
2003-09-20 Knox Arkeia Pro 5.1.12 Backup Remote Root Exploit 6643 R D n/a
2003-09-16 Pine <= 4.56 Remote Buffer Overflow Exploit 4625 R D sorbo
2003-09-14 MySQL 3.23.x/4.0.x Remote Exploit 17095 R D bkbll
2003-08-29 Linux pam_lib_smb < 1.1.6 /bin/login Remote Exploit 6132 R D vertex
2003-08-28 GtkFtpd 1.0.4 Remote Root Buffer Overflow Exploit 5604 R D vade79
2003-08-22 Gopherd <= 3.0.5 FTP Gateway Remote Overflow Exploit 5862 R D vade79
2003-08-11 wu-ftpd 2.6.2 Remote Root Exploit (advanced version) 12930 R D Xpl017Elz
2003-08-03 wu-ftpd 2.6.2 off-by-one Remote Root Exploit 8260 R D Xpl017Elz
2003-07-25 miniSQL (mSQL) 1.3 Remote GID Root Exploit 5135 R D the itch
2003-07-17 Citadel/UX BBS 6.07 Remote Exploit 5090 R D Carl Livitt
2003-07-13 Samba 2.2.8 (Bruteforce Method) Remote Root Exploit 9055 R D Schizoprenic
2003-07-02 Linux eXtremail 1.5.x Remote Format Strings Exploit 5989 R D B-r00t
2003-06-27 Kerio MailServer 5.6.3 Remote Buffer Overflow Exploit 5922 R D B-r00t
2003-06-19 ProFTPD 1.2.9RC1 (mod_sql) Remote SQL Injection Exploit 9770 R D Spaine
2003-06-10 Atftpd 0.6 Remote Root Exploit (atftpdx.c) 5267 R D gunzip
2003-06-10 mnoGoSearch 3.1.20 Remote Command Execution Exploit 5590 R D pokleyzz
2003-06-08 Apache <= 2.0.45 APR Remote Exploit -Apache-Knacker.pl 22764 R D Matthew Murphy
2003-05-29 Webfroot Shoutbox < 2.32 (Apache) Remote Exploit 12715 R D n/a
2003-05-22 WsMp3d 0.x Remote Root Heap Overflow Exploit 5872 R D Xpl017Elz
2003-05-05 CommuniGate Pro Webmail 4.0.6 Session Hijacking Exploit 5417 R D Yaroslav Polyakov
2003-05-02 OpenSSH/PAM <= 3.6.1p1 Remote Users Ident (gossh.sh) 14306 R D Nicolas Couture
2003-04-30 Sendmail <= 8.12.8 prescan() BSD Remote Root Exploit 12786 R D bysin
2003-04-30 OpenSSH/PAM <= 3.6.1p1 Remote Users Discovery Tool 13705 R D Maurizio Agazzini
2003-04-25 PoPToP PPTP <= 1.1.4-b3 Remote Root Exploit (poptop-sane.c) 6716 RM D blightninjas
2003-04-23 Snort <=1.9.1 Remote Root Exploit (p7snort191.sh) 7876 R D truff
2003-04-18 PoPToP PPTP <= 1.1.4-b3 Remote Root Exploit 7068 RM D einstein
2003-04-10 Samba 2.2.8 Remote Root Exploit - sambal.c 10638 R D eSDee
2003-04-08 SETI@home Clients Buffer Overflow Exploit 4942 R D zillion
2003-04-07 Samba 2.2.x Remote Root Buffer Overflow Exploit 11307 RM D H D Moore
2003-04-04 Apache OpenSSL Remote Exploit (Multiple Targets) (OpenFuckV2.c) 32865 R D spabam
2002-12-24 Melange Chat Server 1.10 Remote Buffer Overflow Exploit 5687 R D innerphobia
2002-06-25 WU-IMAP 2000.287(1-2) Remote Exploit 5841 R D Teso
2002-05-14 Squid 2.4.1 Remote Buffer Overflow Exploit 10376 R D Teso
2002-05-14 wu-ftpd <= 2.6.1 Remote Root Exploit 10647 R D Teso
2002-01-01 rsync <= 2.5.1 Remote Exploit 5981 R D Teso
2002-01-01 rsync <= 2.5.1 Remote Exploit (2) 5745 R D Teso
2001-12-20 Solaris /bin/login Remote Root Exploit (SPARC/x86) 8140 R D Teso
2001-05-08 BeroFTPD 1.3.4(1) Linux x86 Remote Root Exploit 4546 R D qitest1
2001-03-03 IMAP4rev1 12.261/12.264/2000.284 (lsub) Remote Exploit 6305 R D SkyLaZarT
2001-03-02 BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit (4) 8509 R D multiple
2001-03-01 BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit 6889 R D Gneisenau
2001-03-01 BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit (2) 6469 R D LSD-PLaNET
2001-01-19 IMAP4rev1 10.190 Authentication Stack Overflow Exploit 5838 R D teleh0r
2001-01-02 Linux Kernel 2.2 (TCP/IP Weakness) Exploit 8531 R D Stealth
2000-12-15 LPRng 3.6.24-1 Remote Root Exploit 5192 R D venomous
2000-12-11 BFTPd 1.0.12 Remote Exploit 5049 R D korty
2000-12-11 LPRng 3.6.22/23/24 Remote Root Exploit 4941 R D sk8
2000-12-11 LPRng (RedHat 7.0) lpd Remote Root Format String Exploit 5849 R D DiGiT
2000-12-06 PHP 3.0.16/4.0.2 Remote Format Overflow Exploit 7262 R D Gneisenau
2000-11-30 INND/NNRP < 1.6.X Remote Root Overflow Exploit 5195 R D Babcia Padlina
2000-11-29 BFTPd vsprintf() Format Strings Exploit 5407 R D DiGiT
2000-11-16 Half Life (rcon) Remote Buffer Overflow Exploit 11722 R D Sao Paulo
1997-06-24 Linux imapd Remote Overflow File Retrieve Exploit 7007 R D p1

[ linux - local ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-09-17 Changetrack 4.3-3 Local Privilege Escalation Vulnerability 7245 R D Rick
2009-09-11 Linux Kernel 2.4/2.6 sock_sendpage() Local Root Exploit [3] 15119 R D Ramon Valle
2009-09-10 Enlightenment - Linux Null PTR Dereference Exploit Framework 17048 R D spender
2009-09-09 HTMLDOC 1.8.27 (html File Handling) Stack Buffer Overflow Exploit 2330 R D Pankaj Kohli
2009-09-09 Linux Kernel 2.4/2.6 sock_sendpage() Local Root Exploit [2] 12771 R D Ramon Valle
2009-09-09 GemStone/S 6.3.1 (stoned) Local Buffer Overflow Exploit 2005 R D Jeremy Brown
2009-09-02 Linux Kernel < 2.6.19 udp_sendmsg Local Root Exploit (x86/x64) 10207 R D spender
2009-09-02 Linux Kernel < 2.6.19 udp_sendmsg Local Root Exploit 17198 R D andi
2009-08-31 Linux Kernel 2.6 < 2.6.19 (32bit) ip_append_data() ring0 Root Exploit 10796 R D INetCop Security
2009-08-31 Linux Kernel < 2.6.31-rc7 AF_IRDA 29-Byte Stack Disclosure Exploit 4382 R D Jon Oberheide
2009-08-31 Linux Kernel 2.4/2.6 sock_sendpage() Local Root Exploit (ppc) 16451 R D Ramon Valle
2009-08-26 Linux Kernel <= 2.6.30 atalk_getname() 8-bytes Stack Disclosure Exploit 5808 R D Clément Lecigne
2009-08-25 Linux Kernel <= 2.6.31-rc7 AF_LLC getsockname 5-Byte Stack Disclosure 4743 R D Jon Oberheide
2009-08-24 Linux Kernel 2.4/2.6 sock_sendpage() ring0 Root Exploit (simple ver) 15046 R D INetCop Security
2009-08-18 Linux Kernel 2.x sock_sendpage() Local Root Exploit (Android Edition) 11510 R D Zinx
2009-08-14 Linux Kernel 2.x sock_sendpage() Local Ring0 Root Exploit 22847 R D spender
2009-08-14 Linux Kernel 2.x sock_sendpage() Local Root Exploit #2 21500 R D Przemyslaw Frasunek
2009-08-05 Linux Kernel < 2.6.14.6 procfs Kernel Memory Disclosure Exploit 4217 R D Jon Oberheide
2009-08-04 Linux Kernel <= 2.6.31-rc5 sigaltstack 4-Byte Stack Disclosure Exploit 5931 R D Jon Oberheide
2009-07-30 Compface 1.1.5 (.xbm File) Local Buffer Overflow Exploit 1622 R D His0k4
2009-07-20 PulseAudio (setuid) Priv. Escalation Exploit (ubu/9.04)(slack/12.2.0) 2511 R D n/a
2009-07-17 Linux 2.6.30+/SELinux/RHEL5 Test Kernel Local Root Exploit 0day 26744 R D spender
2009-07-13 Openswan <= 2.4.12/2.6.16 Insecure Temp File Creation Root Exploit 2205 R D nofame
2009-07-09 Linux Kernel <= 2.6.28.3 set_selection() UTF-8 Off By One Local Exploit 14252 R D sgrakkyu
2009-05-14 Linux Kernel 2.6.29 ptrace_attach() Local Root Race Condition Exploit 21680 R D prdelka
2009-05-13 Linux Kernel 2.6.x ptrace_attach Local Privilege Escalation Exploit 18640 R D s0m3b0dy
2009-04-30 Linux Kernel 2.6 UDEV < 141 Local Privilege Escalation Exploit 18091 R D Jon Oberheide
2009-04-27 libvirt_proxy <= 0.5.1 Local Privilege Escalation Exploit 4434 R D Jon Oberheide
2009-04-20 Linux Kernel 2.6 UDEV Local Privilege Escalation Exploit 30808 R D kcope
2009-04-17 cTorrent/DTorrent (.Torrent File) Buffer Overflow Exploit 4866 R D Michael Brooks
2009-04-08 Linux Kernel < 2.6.29 exit_notify() Local Privilege Escalation Exploit 24495 R D gat3way
2009-03-29 pam-krb5 < 3.13 Local Privilege Escalation Exploit 5040 R D Jon Oberheide
2009-01-25 PostgreSQL 8.2/8.3/8.4 UDF for Command Execution 4472 R D Bernardo Damele
2009-01-25 MySQL 4/5/6 UDF for Command Execution 16165 R D Bernardo Damele
2009-01-06 Debian GNU/Linux XTERM (DECRQSS/comments) Weakness Vulnerability 6180 R D Paul Szabo
2008-12-29 Linux Kernel < 2.6.26.4 SCTP Kernel Memory Disclosure Exploit 12068 R D Jon Oberheide
2008-12-09 PHP safe_mode bypass via proc_open() and custom environment 10045 R D gat3way
2008-12-01 Debian GNU/Linux (symlink attack in login) Arbitrary File Ownership PoC 9845 R D Paul Szabo
2008-11-20 Oracle Database Vault ptrace(2) Privilege Escalation Exploit 6799 R D Jakub Wartak
2008-10-27 Linux Kernel < 2.6.22 ftruncate()/open() Local Exploit 22458 R D gat3way
2008-08-31 Postfix <= 2.6-20080814 (symlink) Local Privilege Escalation Exploit 12701 R D RoMaNSoFt
2008-07-08 Poppler <= 0.8.4 libpoppler uninitialized pointer Code Execution PoC 7771 R D Felipe Andres Manzano
2008-06-18 screen 4.0.3 Local Authentication Bypass Vulnerability (OpenBSD) 17332 R D Rembrandt
2008-04-10 Alsaplayer < 0.99.80-rc3 Vorbis Input Local Buffer Overflow Exploit 6342 R D Albert Sellares
2008-02-21 X.Org xorg-x11-xfs <= 1.0.2-3.1 Local Race Condition Exploit 12473 R D vl4dZ
2008-02-09 Linux Kernel 2.6.17 - 2.6.24.1 vmsplice Local Root Exploit 235953 R D qaaz
2008-02-09 Linux Kernel 2.6.23 - 2.6.24 vmsplice Local Root Exploit 76746 R D qaaz
2007-12-18 Linux Kernel < 2.6.11.5 BLUETOOTH Stack Local Root Exploit 17648 R D Backdoored
2007-12-06 Send ICMP Nasty Garbage (sing) Append File Logrotate Exploit 7489 R D bannedit
2007-09-27 Linux Kernel 2.4/2.6 x86-64 System Call Emulation Exploit 32552 R D Robert Swiecki
2007-07-10 Linux Kernel < 2.6.20.2 IPV6_Getsockopt_Sticky Memory Leak PoC 14764 R D dreyer
2007-04-13 ProFTPD 1.3.0/1.3.0a (mod_ctrls) Local Overflow Exploit (exec-shield) 14726 R D Xpl017Elz
2007-03-28 Linux Kernel <= 2.6.20 with DCCP Support Memory Disclosure Exploit v2 13279 R D Robert Swiecki
2007-03-27 Linux Kernel <= 2.6.20 with DCCP Support Memory Disclosure Exploit 11444 R D Robert Swiecki
2007-03-25 PHP < 4.4.5 / 5.2.1 _SESSION unset() Local Exploit 7890 R D Stefan Esser
2007-03-25 PHP < 4.4.5 / 5.2.1 _SESSION Deserialization Overwrite Exploit 7552 R D Stefan Esser
2007-03-20 PHP <= 4.4.6 / 5.2.1 ext/gd Already Freed Resources Usage Exploit 7185 R D Stefan Esser
2007-03-20 PHP <= 5.2.1 hash_update_file() Freed Resource Usage Exploit 8335 R D Stefan Esser
2007-03-16 PHP <= 4.4.6 / 5.2.1 array_user_key_compare() ZVAL dtor Local Exploit 7920 R D Stefan Esser
2007-03-14 PHP <= 5.2.1 session_regenerate_id() Double Free Exploit 6044 R D Stefan Esser
2007-03-14 PHP 5.2.0/5.2.1 Rejected Session ID Double Free Exploit 8219 R D Stefan Esser
2007-03-09 PHP 5.2.0 / PHP with PECL ZIP <= 1.8.3 zip:// URL Wrapper BoF Exploit 8044 R D Stefan Esser
2007-03-07 PHP < 4.4.5 / 5.2.1 (shmop Functions) Local Code Execution Exploit 6963 R D Stefan Esser
2007-03-07 PHP < 4.4.5 / 5.2.1 (shmop) SSL RSA Private-Key Disclosure Exploit 7222 R D Stefan Esser
2007-02-28 Ubuntu/Debian Apache 1.3.33/1.3.34 (CGI TTY) Local Root Exploit 25653 R D Kristian Hermansen
2007-02-21 Nortel SSL VPN Linux Client <= 6.0.3 Local Privilege Escalation Exploit 5026 R D Jon Hart
2007-02-19 ProFTPD 1.3.0/1.3.0a (mod_ctrls support) Local Buffer Overflow Exploit 2 10898 R D Revenge
2007-02-18 ProFTPD 1.3.0/1.3.0a (mod_ctrls support) Local Buffer Overflow Exploit 11656 R D Revenge
2007-01-28 Trend Micro VirusWall 3.81 (vscan/VSAPI) Local Buffer Overflow Exploit 6048 R D Sebastian Wolfgarten
2007-01-18 GNU/Linux mbse-bbs <= 0.70.0 Local Buffer Overflow Exploit 7063 R D prdelka
2006-10-16 NVIDIA Graphics Driver <= 8774 Local Buffer Overflow Exploit 7741 R D Rapid7 Security
2006-10-08 Infecting Elf Binaries to Gain Local Root Exploit 11317 R D Sha0
2006-10-01 cPanel <= 10.8.x (cpwrap via mysqladmin) Local Root Exploit 23142 R D Clint Torrez
2006-09-20 Dr.Web Antivirus 4.33 (LHA long directory name) Local Overflow Exploit 5056 R D Guay-Leroux
2006-09-09 openmovieeditor <= 0.0.20060901 (name) Local Buffer Overflow Exploit 6053 R D Qnix
2006-08-16 PHP <= 4.4.3 / 5.1.4 (sscanf) Local Buffer Overflow Exploit 14106 R D andi
2006-08-08 liblesstif <= 2-0.93.94-4mdk (DEBUG_FILE) Local Root Exploit 8157 R D Karol Wiesek
2006-07-18 Linux Kernel 2.6.13 <= 2.6.17.4 prctl() Local Root Exploit (logrotate) 34949 R D Marco Ivaldi
2006-07-15 Linux Kernel <= 2.6.17.4 (proc) Local Root Exploit 46452 R D h00lyshit
2006-07-15 Rocks Clusters <= 4.1 (umount-loop) Local Root Exploit 5424 R D Xavier de Leon
2006-07-15 Rocks Clusters <= 4.1 (mount-loop) Local Root Exploit 5934 R D Xavier de Leon
2006-07-14 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit (4) 29121 R D Sunay
2006-07-13 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit (3) 25483 R D Marco Ivaldi
2006-07-12 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit (2) 25386 R D Julien Tinnes
2006-07-11 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit 26484 R D dreyer & RoMaNSoFt
2006-05-26 tiffsplit (libtiff <= 3.8.2) Local Stack Buffer Overflow PoC 7211 R D nitr0us
2006-03-20 X.Org X11 (X11R6.9.0/X11R7.0) Local Root Privilege Escalation Exploit 17299 R D H D Moore
2006-03-18 Python <= 2.4.2 realpath() Local Stack Overflow Exploit 11595 R D Gotfault Security
2006-03-12 Ubuntu Breezy 5.10 Installer Password Disclosure Vulnerability 9979 R D Kristian Hermansen
2006-02-20 MySQL 4.x/5.0 User-Defined Function Local Privilege Escalation Exploit 17307 R D Marco Ivaldi
2006-01-25 SquirrelMail 3.1 Change Passwd Plugin Local Buffer Overflow Exploit 10230 R D rod hedor
2006-01-24 Eterm LibAST < 0.7 (-X Option) Local Privilege Escalation Exploit 5031 R D Johnny Mast
2006-01-21 Xmame <= 0.102 (-pb/-lang/-rec) Local Buffer Overflow Exploit 6103 R D sj
2006-01-13 Xmame 0.102 (-lang) Local Buffer Overflow Exploit (c code) 6478 R D Qnix
2006-01-10 Xmame 0.102 (-lang) Local Buffer Overflow Exploit 6085 R D xwings
2005-12-30 Linux Kernel <= 2.6.11 (CPL 0) Local Root Exploit (k-rad3.c) 38023 R D alert7
2005-11-12 Veritas Storage Foundation 4.0 VCSI18N_LANG Local Overflow Exploit 7552 R D Kevin Finisterre
2005-11-09 Operator Shell (osh) 1.7-14 Local Root Exploit 10696 R D Charles Stevenson
2005-11-09 Sudo <= 1.6.8p9 (SHELLOPTS/PS4 ENV variables) Local Root Exploit 12104 R D Breno Silva Pinto
2005-11-08 SuSE Linux <= 9.3, 10 (chfn) Local Root Privilege Escalation Exploit 12079 R D Hunger
2005-11-07 F-Secure Internet Gatekeeper for linux < 2.15.484 Local Root Exploit 5172 R D Xavier de Leon
2005-10-26 Linux Kernel 2.4/2.6 bluez Local Root Privilege Escalation Exploit (update) 31287 R D qobaiashi
2005-10-20 XMail 1.21 (-t Command Line Option) Local Root Buffer Overflow Exploit 7117 R D qaaz
2005-09-24 Qpopper <= 4.0.8 (poppassd) Local Root Exploit (linux) 11043 R D kcope
2005-09-14 Wireless Tools 26 (iwconfig) Local Root Exploit (some setuid) 10297 R D Qnix
2005-09-13 VisualBoyAdvanced 1.7.x Local Shell Exploit (non suid) (updated) 7630 R D Qnix
2005-08-30 Gopher <= 3.0.9 (+VIEWS) Remote (Client Side) Buffer Overflow Exploit 5769 R D vade79
2005-08-16 Operator Shell (osh) 1.7-13 Local Root Exploit 7282 R D Charles Stevenson
2005-06-04 ePSXe <= 1.6.0 nogui() Local Exploit 7635 R D Qnix
2005-05-25 Exim <= 4.41 dns_build_reverse Local Exploit 6182 R D Plugger
2005-05-17 Linux Mandrake <= 10.2 cdrdao Local Root Exploit (unfixed) 8213 R D newbug
2005-05-01 ARPUS/Ce Local File Overwrite Exploit (setuid) 6645 R D Kevin Finisterre
2005-05-01 ARPUS/Ce Local Overflow Exploit (setuid) (perl) 7421 R D Kevin Finisterre
2005-04-21 BitchX <= 1.0c20 Local Buffer Overflow Exploit 5351 R D sk
2005-04-08 sash <= 3.7 Local Buffer Overflow Exploit 5304 R D lammat
2005-04-05 Aeon 0.2a Local Linux Exploit (perl code) 5590 R D lammat
2005-04-05 Aeon 0.2a Local Linux Exploit (c code) 4523 R D patr0n
2005-03-22 Linux Kernel 2.4.x / 2.6.x uselib() Local Privilege Escalation Exploit 29729 R D sd
2005-03-21 PostScript Utilities - psnup Argument Buffer Overflow 4950 R D lammat
2005-03-14 PaX Double-Mirrored VMA munmap Local Root Exploit 5980 R D Christophe Devine
2005-03-14 Frank McIngvale LuxMan 0.41 Local Buffer Overflow Exploit 6061 R D Kevin Finisterre
2005-02-13 GNU a2ps "Anything to PostScript" Local Exploit (not suid) 4602 R D lizard
2005-02-07 Setuid perl PerlIO_Debug() overflow 7399 R D Kevin Finisterre
2005-02-07 Setuid perl PerlIO_Debug() root owned file creation 8183 R D Kevin Finisterre
2005-02-07 Exim <= 4.42 Local Root Exploit 7799 R D darkeagle
2005-02-05 Operator Shell (osh) 1.7-12 Local Root Exploit 6130 R D Charles Stevenson
2005-01-30 Linux ncpfs Local Exploit 6673 R D super
2005-01-27 Linux Kernel 2.4 uselib() Privilege Elevation Exploit 17316 R D Tim Hsu
2005-01-26 /usr/bin/trn Local Exploit (not suid) 6104 R D ZzagorR
2005-01-20 fkey <= 0.0.2 Local File Accessibility Exploit 5172 R D vade79
2005-01-15 Exim <= 4.41 dns_build_reverse Local Exploit PoC 5174 R D Rafael Carrasco
2005-01-07 Linux Kernel <= 2.4.29-rc2 uselib() Privilege Elevation 13645 R D Paul Starzetz
2005-01-05 HTGET <= 0.9.x Local Root Exploit 4877 R D nekd0
2004-12-24 Linux Kernel 2.6.x chown() Group Ownership Alteration Exploit 14752 R D Marco Ivaldi
2004-12-24 MySQL 4.0.17 UDF Dynamic Library Exploit 8313 R D Marco Ivaldi
2004-12-17 Cscope <= 15.5 Symlink Vulnerability Exploit 4223 R D Gangstuck
2004-12-14 TipxD <= 1.1.1 Local Format String Vulnerability (not setuid) 4435 R D CoKi
2004-12-01 Aspell (word-list-compress) Command Line Stack Overflow 6299 R D c0d3r
2004-11-25 atari800 Local Root Exploit 5415 R D pi3
2004-11-10 Linux Kernel (<= 2.4.27 , 2.6.8) binfmt_elf Executable File Read Exploit 13546 R D Paul Starzetz
2004-10-26 GD Graphics Library Heap Overflow Proof of Concept Exploit 6483 R D n/a
2004-10-26 libxml 2.6.12 nanoftp Remote Buffer Overflow Proof of Concept Exploit 5575 R D infamous41md
2004-10-23 socat <= 1.4.0.2 Local Format String Exploit (not setuid) 4552 R D CoKi
2004-10-21 Apache <= 1.3.31 mod_include Local Buffer Overflow Exploit 15432 R D xCrZx
2004-10-20 BitchX 1.0c19 Local Root Exploit (suid?) 5319 R D Sha0
2004-09-25 GNU Sharutils <= 4.2.1 Local Format String PoC Exploit 4426 R D n4rk0tix
2004-09-23 glFTPd Local Stack Overflow Exploit (PoC) (Slackware 9.0/9.1/10.0) 5473 R D CoKi
2004-09-21 SudoEdit 1.6.8 Local Change Permission Exploit 5836 R D Angelo Rosiello
2004-09-19 CDRecord's ReadCD Local Root Privileges 4641 R D Max Vozeler
2004-09-16 htpasswd Apache 1.3.31 Local Exploit 17821 R D Luiz Fernando Camargo
2004-09-11 cdrecord $RSH exec() SUID Shell Creation 5532 R D I)ruid
2004-09-07 CDRDAO Local Root Exploit 5061 R D Karol Wiêsek
2004-08-25 SquirrelMail (chpasswd) Local Root Bruteforce Exploit 8777 R D Bytes
2004-08-13 LibPNG <= 1.2.5 png_jmpbuf() Local Buffer Overflow Exploit 7270 R D n/a
2004-08-13 ProFTPd Local pr_ctrls_connect Vuln - ftpdctl 7383 R D pi3
2004-08-04 SoX Local Buffer Overflow Exploiter (Via Crafted WAV File) 4617 R D Rave
2004-08-04 Linux Kernel File Offset Pointer Handling Memory Disclosure Exploit 6976 R D Paul Starzetz
2004-08-01 SoX Local Buffer Overflow Exploit 4750 R D Serkan Akpolat
2004-04-20 SquirrelMail chpasswd buffer overflow 8846 R D x314
2004-03-01 Linux Kernel 2.x mremap missing do_munmap Exploit 10451 R D Paul Starzetz
2004-02-18 Linux Kernel "mremap()"#2 Local Proof-of-concept 7313 R D Christophe Devine
2004-02-13 rsync <= 2.5.7 Local stack overflow Root Exploit 5590 R D Abhisek Datta
2004-01-15 SuSE linux 9.0 YaST config Skribt Local Exploit 7222 R D l0om
2004-01-15 Linux Kernel 2.4.x mremap() bound checking Root Exploit 14058 R D Paul Starzetz
2004-01-07 Linux Kernel "do_mremap" Local Proof of Concept II 6964 R D Christophe Devine
2004-01-06 Linux Kernel "do_mremap" Local Proof of Concept 6572 R D Christophe Devine
2004-01-02 Xsok v1.02 "-xsokdir" local buffer overflow game exploit 4233 R D c0wboy
2003-12-05 Linux Kernel <= 2.4.22 (do_brk) Local Root Exploit (working) 17470 R D Wojciech Purczynski
2003-12-02 Linux Kernel 2.4.22 "do_brk()" local Root Exploit (PoC) 12519 R D Christophe Devine
2003-11-13 TerminatorX <= 3.81 stack overflow local root exploit 4646 R D Li0n7
2003-09-27 IBM DB2 Universal Database 7.2 (db2licm) Local Exploit 5555 R D Juan Escriba
2003-09-21 hztty 2.0 Local root exploit (Tested on Red Hat 9.0) 5597 R D c0wboy
2003-09-09 RealPlayer 9 *nix Local Privilege Escalation Exploit 5462 R D Jon Hart
2003-09-05 Stunnel <= 3.24, 4.00 Daemon Hijacking Proof of Concept Exploit 4438 R D Steve Grubb
2003-08-06 man-db 2.4.1 open_cat_stream() Local uid=man Exploit 5531 R D vade79
2003-08-01 xtokkaetama 1.0b Local Game Exploit (Red Hat 9.0) 4755 R D brahma
2003-07-31 XGalaga 2.0.34 local game exploit (Red Hat 9.0) 5005 R D c0wboy
2003-06-10 Mandrake Linux 8.2 /usr/mail local exploit (d86mail.pl) 7796 R D n/a
2003-05-14 CdRecord Version <= 2.0 Mandrake local root exploit 6754 R D n/a
2003-04-29 Qpopper 4.0.x poppassd Local Root Exploit 6361 R D Xpl017Elz
2003-04-14 Linux Kernel < 2.4.20 Module Loader Local Root Exploit 15625 R D KuRaK
2003-03-30 Linux Kernel 2.2.x - 2.4.x ptrace/kmod Local Root Exploit 17836 R D Wojciech Purczynski
2003-01-15 GLIBC locale format strings exploit 4591 R D logikal
2001-07-13 Debian 2.2 /usr/bin/pileup Local Root Exploit 7057 R D Charles Stevenson
2001-03-04 GLIBC 2.1.3 ld_preload Local Exploit 4941 R D shadow
2001-03-03 Slackware 7.1 /usr/bin/mail Local Exploit 4699 R D kengz
2001-01-26 splitvt < 1.6.5 Local Exploit 4107 R D Michel Kaempf
2001-01-25 jaZip 0.32-2 Local Buffer Overflow Exploit 4332 R D teleh0r
2001-01-25 glibc-2.2 and openssh-2.3.0p1 exploits glibc >= 2.1.9x 8253 R D krochos
2001-01-19 Redhat 6.1 man Local Exploit (egid 15) 4801 R D teleh0r
2001-01-15 Seyon Exploit / Tested Version 2.1 rev. 4b i586-Linux 4476 R D teleh0r
2001-01-01 Sendmail 8.11.x Exploit (i386-Linux) 9979 R D sd
2000-12-15 Linux xsoldier-0.96 exploit (Red Hat 6.2) 4911 R D zorgon
2000-12-15 Pine (Local Message Grabber) Exploit 4757 R D Mat
2000-12-06 Kwintv Local Buffer Overflow Exploit (gid=video(33)) 4849 R D Cody Tubbs
2000-12-06 gnome_segv local buffer overflow 4578 R D Cody Tubbs
2000-12-04 UUCP Exploit - file creation/overwriting (symlinks) 4502 R D t--zen
2000-12-04 expect (/usr/bin/expect) buffer overflow 4464 R D isox
2000-12-04 GnomeHack Local Buffer Overflow Exploit (gid=games) 4896 R D Cody Tubbs
2000-12-02 mount exploit for glibc locale bug 4964 R D sk8
2000-12-02 dislocate - Local i386 exploit in v1.3 4232 R D Michel Kaempf
2000-11-30 GLIBC (via /bin/su) Local Root Exploit 4873 R D localcore
2000-11-29 rpc Suid Privledge Exploit 5909 R D Tlabs
2000-11-29 dump 0.4b15 exploit (Redhat 6.2) 4609 R D Mat
2000-11-21 vixie-cron Local Root Exploit 6254 R D Michal Zalewski
2000-11-19 dump 0.4b15 Local Root Exploit 4917 R D Mat
2000-11-17 xsplumber - strcpy() buffer overflow 5409 R D vade79
2000-11-16 /sbin/restore exploit (rh6.2) 6356 R D n/a
2000-11-16 Oracle (oidldapd connect) Local Command Line Overflow Exploit 7715 R D n/a
2000-11-16 Restore and Dump Local Exploit 4690 R D Tlabs
2000-11-15 traceroute Local Root Exploit 5773 R D Michel Kaempf
2000-11-15 GnomeHack 1.0.5 Local Buffer Overflow Exploit 5297 R D vade79
1997-06-20 zgv $HOME overflow 4326 R D BeastMaster V
1997-05-14 LibXt XtAppInitialize() overflow *xterm exploit 4160 R D Ming Zhang
1996-10-25 BSD and Linux lpr Command Local Root Exploit 4743 R D Vadim Kolontsov
1996-08-24 Xt Library Local Root Command Execution Exploit 4264 R D b0z0 bra1n
1996-06-01 suid_perl 5.001 vulnerability 5874 R D Jon Lewis
1996-02-13 sudo.bin NLSPATH Local Root Exploit 5406 R D _Phantom_
1996-01-01 Resolv+ (RESOLV_HOST_CONF) Linux Library Local Exploit 5280 R D Jared Mauch

[ linux - dos ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-08-18 Linux Kernel < 2.6.30.5 cfg80211 Remote Denial of Service Exploit 8515 R D Jon Oberheide
2009-07-27 stftp <= 1.10 (PWD Response) Remote Stack Overflow PoC 2061 R D sqlevil
2009-07-27 ISC DHCP dhclient < 3.1.2p1 Remote Buffer Overflow PoC 9719 R D Jon Oberheide
2009-06-17 compface <= 1.5.2 (XBM File) Local Buffer Overflow PoC 2959 R D metalhoney
2009-06-15 LinkLogger 2.4.10.15 (syslog) Denial of Service Exploit 1893 R D h00die
2009-06-15 Apple QuickTime CRGN Atom Local Crash Exploit 2789 R D webDEViL
2009-04-27 iodined <= 0.4.2-2 (forged DNS packet) Denial of Service Exploit 2108 R D Albert Sellares
2009-04-17 XRDP <= 0.4.1 Remote Buffer Overflow PoC (pre-auth) 2630 R D joe walko
2009-03-12 JDKChat 1.5 Remote Integer Overflow PoC 2681 R D n3tpr0b3
2008-12-14 Linux Kernel 2.6.27.7-generic - 2.6.18 - 2.6.24-1 Local DoS Exploit 15935 R D Adurit-T
2008-12-10 Linux Kernel <= 2.6.27.8 ATMSVC Local Denial of Service Exploit 8478 R D Jon Oberheide
2008-11-18 CUPS 1.3.7 CSRF (add rss subscription) Remote Crash Exploit 5159 R D X Adrian "pagvac" Pastor
2008-11-12 Net-SNMP <= 5.1.4/5.2.4/5.4.1 Perl Module Buffer Overflow PoC 4981 R D Praveen Darshanam
2008-11-11 Linux Kernel < 2.4.36.9/2.6.27.5 Unix Sockets Local Kernel Panic Exploit 10094 R D Andrea Bittau
2008-10-10 Konqueror 3.5.9 (load) Remote Crash Vulnerability 4421 R D X Jeremy Brown
2008-10-08 Konqueror 3.5.9 (color/bgcolor) Multiple Remote Crash Vulnerabilities 3679 R D Jeremy Brown
2008-10-06 Konqueror 3.5.9 (font color) Remote Crash Vulnerability 3882 R D Jeremy Brown
2008-09-19 fhttpd 0.4.2 un64() Remote Denial of Service Exploit 4017 R D Jeremy Brown
2008-06-14 vsftpd 2.0.5 (CWD) Remote Memory Consumption Exploit (post auth) 13553 R D Praveen Darshanam
2008-05-11 rdesktop 1.5.0 process_redirect_pdu() BSS Overflow Vulnerability PoC 7668 R D Guido Landi
2008-05-08 rdesktop 1.5.0 iso_recv_msg() Integer Underflow Vulnerability PoC 6766 R D Guido Landi
2008-04-16 xine-lib <= 1.1.12 NSF demuxer Stack Overflow Vulnerability PoC 6736 R D Guido Landi
2008-03-25 MPlayer sdpplin_parse() Array Indexing Buffer Overflow Exploit PoC 8704 R D Guido Landi
2008-03-01 Galaxy FTP Server 1.0 (Neostrada Livebox DSL Router) DoS Exploit 7034 R D 0in
2008-01-11 Linux Kernel <=2.6.21.1 IPv6 Jumbo Bug Remote DoS Exploit 10776 R D Clemens Kurtenbach
2007-12-14 Samba 3.0.27a send_mailslot() Remote Buffer Overflow PoC 6760 R D x86
2007-11-02 Firefly Media Server <= 0.2.4 Remote Denial of Service Exploit 5128 R D nnp
2007-10-15 eXtremail <= 2.1.1 memmove() Remote Denial of Service Exploit 5747 R D mu-b
2007-10-15 eXtremail <= 2.1.1 Remote Heap Overflow PoC 6061 R D mu-b
2007-08-31 Wireshark < 0.99.5 DNP3 Dissector Infinite Loop Exploit 5539 R D Beyond Security
2007-07-23 Xserver 0.1 Alpha Post Request Remote Buffer Overflow Exploit 4261 R D deusconstruct
2007-05-17 MagicISO <= 5.4(build239) .cue File Heap Overflow PoC 6357 R D n00b
2007-04-27 MyDNS 1.1.0 Remote Heap Overflow PoC 6820 R D mu-b
2007-04-20 eXtremail <= 2.1.1 DNS Parsing Bugs Remote Exploit PoC 7442 R D mu-b
2007-03-27 PHP 4.4.5 / 4.4.6 session_decode() Double Free Exploit PoC 10179 R D Stefan Esser
2007-03-09 Linux Omnikey Cardman 4040 driver Local Buffer Overflow Exploit PoC 3874 R D Daniel Roethlisberger
2007-03-05 Konqueror 3.5.5 (JavaScript Read of FTP Iframe) DoS Exploit 6696 R D X mark
2007-03-02 PHP <= 4.4.4 unserialize() ZVAL Reference Counter Overflow Exploit PoC 6822 R D Stefan Esser
2007-02-08 Axigen <= 2.0.0b1 Remote Denial of Service Exploit 7655 R D mu-b
2007-02-08 Axigen <= 2.0.0b1 Remote Denial of Service Exploit (2) 7246 R D mu-b
2006-12-26 KsIRC 1.3.12 (PRIVMSG) Remote Buffer Overflow PoC 5506 R D Federico L. Bossi Bonin
2006-12-19 KDE 3.5 (libkhtml) <= 4.2.0 / Unhandled HTML Parse Exception Exploit 5506 R D X Federico L. Bossi Bonin
2006-12-14 Kerio MailServer 6.2.2 preauth Remote Denial of Service PoC 4893 R D Evgeny Legerov
2006-12-13 ProFTPD <= 1.3.0a (mod_ctrls support) Local Buffer Overflow PoC 9453 R D Core Security
2006-12-04 F-Prot Antivirus 4.6.6 (ACE) Denial of Service Exploit 5118 R D Evgeny Legerov
2006-12-04 F-Prot Antivirus 4.6.6 (CHM) Heap Overflow Exploit PoC 5054 R D Evgeny Legerov
2006-11-06 OpenLDAP 2.2.29 Remote Denial of Service Exploit (meta) 5740 R D Evgeny Legerov
2006-07-21 Sendmail <= 8.13.5 Remote Signal Handling Exploit PoC 13903 R D redsand
2006-06-09 0verkill 0.16 (ASCII-ART Game) Remote Integer Overflow Crash Exploit 5581 R D Federico Fazzi
2006-06-05 Linux Kernel < 2.6.16.18 (Netfilter NAT SNMP Module) Remote DoS Exploit 12259 R D ECL Labs
2006-05-30 gxine 0.5.6 (HTTP Plugin) Remote Buffer Overflow PoC 6437 R D Federico L. Bossi Bonin
2006-05-22 portmap 5 beta (Set/Dump) Local Denial of Service Exploit 5294 R D Federico L. Bossi Bonin
2006-05-04 zawhttpd <= 0.8.23 (GET) Remote Buffer Overflow DoS 4445 R D Kamil Sienicki
2006-04-09 Linux Kernel 2.6.x sys_timer_create() Local Denial of Service Exploit 9945 R D fingerout
2006-04-04 Libxine <= 1.14 MPEG Stream Buffer Overflow Vulnerability PoC 7011 R D Federico L. Bossi Bonin
2006-04-02 mpg123 0.59r Malformed mp3 (SIGSEGV) Proof of Concept 5125 R D nitr0us
2005-09-05 CUPS Server <= 1.1 (Get Request) Denial of Service Exploit 6213 R D tracewar
2005-05-17 Linux Kernel <= 2.6.12-rc4 (ioctl_by_bdev) Local Denial of Service Exploit 9130 R D alert7
2005-05-17 Gaim <= 1.2.1 URL Handling Remote Stack Overflow Exploit 4800 R D Ron
2005-04-26 Tcpdump 3.8.x (ldp_print) Infinite Loop Denial of Service Exploit 5145 R D vade79
2005-04-26 Tcpdump 3.8.x (rt_routing_info) Infinite Loop Denial of Service Exploit 5053 R D vade79
2005-04-26 Tcpdump 3.8.x/3.9.1 (isis_print) Infinite Loop DoS Exploit 5236 R D vade79
2005-04-04 Linux Kernel PPC64/IA64 (AIO) Local Denial of Service Exploit 5860 R D Daniel McNeil
2005-03-29 Linux Kernel <= 2.6.10 Local Denial of Service Exploit 7692 R D ChoiX
2005-02-25 wu-ftpd <= 2.6.2 File Globbing Denial of Service Exploit 7273 R D str0ke
2005-02-12 CA BrightStor ARCserve Backup Remote Buffer Overlow PoC 5792 RM D cybertronic
2005-02-05 ngIRCd <= 0.8.1 Remote Denial of Service Exploit (2) 5342 R D CorryL
2004-12-16 Linux Kernel <= 2.6.9, <= 2.4.28 vc_resize int Local Overflow Exploit 12868 R D Georgi Guninski
2004-12-16 Linux Kernel <= 2.6.9, <= 2.4.28 Memory Leak Local DoS 9071 R D Georgi Guninski
2004-12-16 Linux Kernel <= 2.6.9, <= 2.4.28 ip_options_get Local Overflow 13430 R D Georgi Guninski
2004-12-14 Linux Kernel <= 2.4.28 and <= 2.6.9 scm_send local DoS Exploit 8635 R D Paul Starzetz
2004-12-14 Linux Kernel (<= 2.6.9, 2.4.22-28) (igmp.c) Local Denial of Service Exploit 8782 R D Paul Starzetz
2004-09-27 MyServer 0.7.1 (POST) Denial Of Service Exploit 4617 R D Tom Ferris
2004-08-02 Citadel/UX Remote Denial of Service Exploit (PoC) 4166 R D CoKi
2004-08-02 Apache HTTPd Arbitrary Long HTTP Headers DoS (c version) 11198 R D n/a
2004-06-25 Linux Kernel 2.4.x-2.6.x Assembler Inline Function Local DoS Exploit 7645 R D lorenzo
2004-04-21 Linux Kernel <= 2.6.3 (setsockopt) Local Denial of Service Exploit 6556 R D Julien Tinnes
2003-10-31 wu-ftpd 2.6.2 Remote Denial Of Service Exploit (wuftpd-freezer.c) 6789 R D Angelo Rosiello
2003-07-29 Linux Kernel <= 2.4.20 decode_fh Denial of Service Exploit 7788 R D Jared Stanbrough
2003-04-11 Apache <= 2.0.44 Linux Remote Denial of Service Exploit 11503 R D Daniel Nyström
2001-01-15 APC UPS 3.7.2 (apcupsd) Local Denial of Service Exploit 4720 R D the itch
2001-01-03 ml2 - local users can crash processes 4646 R D Stealth
2001-01-02 Redhat 6.1 / 6.2 TTY Flood Users Exploit 6184 R D teleh0r
2000-11-17 Slackware Linux /usr/bin/ppp-off Insecure /tmp Call Exploit 5618 R D sinfony



send all submissions to submit[at]milw0rm.com [gpg]
Copyright © 2004-2009 milw0rm