[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ] [ R.I.P rgod ]

[ multiple - remote ] -::DATE -::DESCRIPTION -::HITS -::AUTHOR 2008-05-03 HLDS WebMod 0.48 Multiple Remote Vulnerabilties 2435 R D Luigi Auriemma 2008-04-11 HP OpenView Network Node Manager <= 7.53 Multiple Vulnerabilities 3884 R D Luigi Auriemma 2008-03-14 Dovecot IMAP 1.0.10 <= 1.1rc2 Remote Email Disclosure Exploit 3414 R D kcope 2008-03-06 Ruby 1.8.6 (Webrick Httpd 1.3.1) Directory Traversal Vulnerability 4674 R D DSecRG 2008-01-09 SAP MaxDB <= 7.6.03.07 pre-auth Remote Command Execution Exploit 4459 R D Luigi Auriemma 2007-12-21 Sendmail with clamav-milter < 0.91.2 Remote Root Exploit 9109 R D eliteb0y 2007-11-29 Apple QuickTime 7.2/7.3 RSTP Response Universal Exploit (win/osx) 9520 R D Subreption LLC. 2007-10-24 Jakarta Slide <= 2.1 RC1 Remote File Disclosure Exploit 5492 R D kcope 2007-10-22 LiteSpeed Web Server <= 3.2.3 Remote Source Code Disclosure Vuln 5280 R D Tr3mbl3r 2007-10-14 Apache Tomcat (webdav) Remote File Disclosure Exploit 11725 R D eliteb0y 2007-09-12 Apple Quicktime (Multiple Browsers) Command Execution PoC (0day) 10065 R D X pdp 2007-09-10 Lighttpd <= 1.4.16 FastCGI Header Overflow Remote Exploit 5311 R D Mattias Bengtsson 2007-08-07 BIND 9 DNS Cache Poisoning Exploit (v0.3beta) 13246 R D posedge 2007-06-22 Apache mod_jk 1.2.19/1.2.20 Remote Buffer Overflow Exploit 10642 R D eliteboy 2007-04-11 MiniWebsvr 0.0.7 Remote Directory Transversal Exploit 4364 R D shinnai 2007-04-03 HP Mercury Quality Center 9.0 build 9.1.0.4352 SQL Execution Exploit 4063 R D Isma Khan 2007-03-27 Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit v2 3905 R D bunker 2007-03-27 Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit 4804 R D bunker 2007-03-23 Ethernet Device Drivers Frame Padding Info Leakage Exploit (Etherleak) 3036 R D Jon Hart 2007-03-10 PHP <= 5.2.0 ext/filter FDF Post Filter Bypass Exploit 7106 R D Stefan Esser 2007-03-07 mod_security <= 2.1.0 (ASCIIZ byte) POST Rules Bypass Vulnerability 4614 R D Stefan Esser 2007-03-04 PHP 4.4.3 - 4.4.6 phpinfo() Remote XSS Vulnerability 12288 R D Stefan Esser 2007-02-26 Oracle 10g KUPW$WORKER.MAIN SQL Injection Exploit v2 4768 R D bunker 2007-02-26 Oracle 10g KUPV$FT.ATTACH_JOB SQL Injection Exploit v2 3499 R D bunker 2007-02-26 Oracle 9i/10g DBMS_METADATA.GET_DDL SQL Injection Exploit v2 4062 R D bunker 2007-02-26 Oracle 9i/10g ACTIVATE_SUBSCRIPTION SQL Injection Exploit v2 3622 R D bunker 2007-02-23 Oracle 9i/10g DBMS_METADATA.GET_DDL SQL Injection Exploit 5426 R D bunker 2007-02-22 Oracle 10g KUPW$WORKER.MAIN Grant/Revoke dba Permission Exploit 4720 R D bunker 2007-02-22 Oracle 10g KUPV$FT.ATTACH_JOB Grant/Revoke dba Permission Exploit 3848 R D bunker 2007-02-13 Portable OpenSSH <= 3.6.1p-PAM / 4.1-SUSE Timing Attack Exploit 8201 R D Marco Ivaldi 2007-02-05 Oracle 9i/10g DBMS_EXPORT_EXTENSION SQL Injection Exploit 5567 R D bunker 2007-01-01 Apple Quicktime (rtsp URL Handler) Stack Buffer Overflow Exploit 7095 R D MoAB 2006-12-19 Oracle <= 9i / 10g (extproc) Local/Remote Command Execution Exploit 9361 R D Marco Ivaldi 2006-11-23 Oracle <= 9i / 10g (read/write/execute) Exploitation Suite 9019 R D Marco Ivaldi 2006-11-14 Links 1.00pre12 (smbclient) Remote Code Execution Exploit 5923 R D X Teemu Salmela 2006-07-28 Mozilla Firefox <= 1.5.0.4 Javascript Navigator Object Code Execution PoC 17620 R D X H D Moore 2006-07-23 Apache Tomcat < 5.5.17 Remote Directory Listing Vulnerability 17468 R D ScanAlert Security 2006-07-21 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit (2) 5485 R D bannedit 2006-07-15 Webmin < 1.290 / Usermin < 1.220 Arbitrary File Disclosure Exploit (perl) 18966 R D UmZ 2006-07-09 Webmin < 1.290 / Usermin < 1.220 Arbitrary File Disclosure Exploit 14048 R D joffer 2006-05-17 RealVNC 4.1.0 - 4.1.1 (VNC Null Authentication) Vulnerability Scanners 40770 R D class101 2006-05-16 RealVNC 4.1.0 - 4.1.1 (VNC Null Authentication) Auth Bypass Patch/EXE 42162 R M D redsand 2006-05-15 RealVNC 4.1.0 - 4.1.1 (Null Authentication) Auth Bypass Exploit (meta) 24301 R M D H D Moore 2006-03-22 BomberClone < 0.11.6.2 (Error Messages) Remote Buffer Overflow Exploit 6271 R M D esca zoo 2005-12-12 Mozilla Firefox <= 1.04 compareTo() Remote Code Execution Exploit 9532 R M D X Aviv Raff 2005-11-04 WzdFTPD <= 0.5.4 (SITE) Remote Command Execution Exploit (meta) 8674 R M D David Maciejak 2005-10-20 Veritas NetBackup <= 6.0 (bpjava-msvc) Remote Exploit (linux) 6647 R D Kevin Finisterre 2005-08-30 HP OpenView Network Node Manager <= 7.50 Remote Exploit 5047 R D Lympex 2005-05-21 Mozilla Firefox view-source:javascript url Code Execution Exploit 10919 R D X mikx 2005-03-14 LimeWire 4.1.2 - 4.5.6 Inappropriate Get Request Remote Exploit 6230 R D lammat 2005-02-18 Knox Arkeia Server Backup 5.3.x Remote Root Exploit 3691 R M D John Doe 2005-02-09 ELOG <= 2.5.6 Remote Shell Exploit 4272 R D n4rk0tix 2005-01-08 Webmin Web Brute Force v1.5 (cgi-version) 9225 R D ZzagorR 2005-01-08 Webmin BruteForce + Command Execution v1.5 8501 R D ZzagorR 2004-12-22 Webmin BruteForce and Command Execution Exploit 6914 R D Di42lo 2004-12-15 wget <= 1.9 Directory Traversal Exploit 4554 R D jjminar 2004-07-10 MySQL 4.1/5.0 zero-length password Auth. Bypass Exploit 12473 R D Eli Kara 2004-06-25 CVS Remote Entry Line Heap Overflow Root Exploit (Linux/FreeBSD) 4637 R D Ac1dB1tCh3z 2003-08-25 Real Server 7/8/9 Remote Root Exploit (Windows & Linux) 4163 R M D Johnny Cyberpunk 2003-07-28 Apache 1.3.x mod_mylo Remote Code Execution Exploit 19005 R D Carl Livitt 2002-05-01 SSH (x2) Remote Root Exploit 16440 R D Teso 2000-12-21 HP OpenView OmniBack II Generic Remote Exploit 3868 R M D DiGiT 2000-11-21 wu-ftpd 2.6.0 Remote Root Exploit 5612 R D venglin [ multiple - local ] -::DATE -::DESCRIPTION -::HITS -::AUTHOR 2008-01-28 Oracle 10g R1 pitrig_drop PLSQL Injection (get users hash) 2739 R D Sh2kerr 2008-01-28 Oracle 10g R1 pitrig_truncate PLSQL Injection (get users hash) 2910 R D Sh2kerr 2008-01-28 Oracle 10g R1 xdb.xdb_pitrig_pkg PLSQL Injection (change sys password) 4142 R D Sh2kerr 2007-10-27 Oracle 10g/11g SYS.LT.FINDRICSET Local SQL Injection Exploit 2861 R D bunker 2007-10-27 Oracle 10g/11g SYS.LT.FINDRICSET Local SQL Injection Exploit (2) 4042 R D bunker 2007-10-27 Oracle 10g LT.FINDRICSET Local SQL Injection Exploit (IDS evasion) 5142 R D Sh2kerr 2007-10-23 Oracle 10g CTX_DOC.MARKUP SQL Injection Exploit 5966 R D Sh2kerr 2007-09-10 PHP <= 4.4.7 / 5.2.3 MySQL/MySQLi Safe Mode Bypass Vulnerability 16804 R D Mattias Bengtsson 2007-07-19 Oracle 9i/10g evil views Change Passwords Exploit (CVE-2007-3855) 5479 R D bunker 2007-03-23 PHP 5.2.1 unserialize() Local Information Leak Exploit 4521 R D Stefan Esser 2007-03-09 PHP 4.4.6 cpdf_open() Local Source Code Discslosure PoC 4286 R D rgod 2007-03-07 PHP <= 5.2.1 substr_compare() Information Leak Exploit 3910 R D Stefan Esser 2007-03-04 PHP < 4.4.5 / 5.2.1 php_binary Session Deserialization Information Leak 4620 R D Stefan Esser 2007-03-04 PHP < 4.4.5 / 5.2.1 WDDX Session Deserialization Information Leak 4137 R D Stefan Esser 2007-01-23 Oracle 10g SYS.DBMS_CDC_IMPDP.BUMP_SEQUENCE PL/SQL Injection 5079 R D Joxean Koret 2007-01-23 Oracle 10g SYS.KUPW$WORKER.MAIN PL/SQL Injection Exploit 3608 R D Joxean Koret 2007-01-23 Oracle 10g SYS.KUPV$FT.ATTACH_JOB PL/SQL Injection Exploit 3492 R D Joxean Koret 2006-06-18 Sun iPlanet Messaging Server 5.2 HotFix 1.16 Root Password Disclosure 4157 R D php0t 2006-04-26 Oracle <= 10g Release 2 (DBMS_EXPORT_EXTENSION) Local SQL Exploit 7507 R D N1V1Hd 2006-03-05 LibTiff 3.7.1 (BitsPerSample Tag) Local Buffer Overflow Exploit 4398 R D Agustin Gianni 2005-07-25 vim 6.3 < 6.3.082 (modlines) Local Command Execution Exploit 5493 R D Georgi Guninski 2004-11-14 Multiple AntiVirus (zip file) Detection Bypass Exploit 4352 R D oc192 2001-03-04 Progress Database Server 8.3b (prodb) Local Root Exploit 3283 R D the itch 1996-08-13 Linux & BSD umount Local Root Exploit 3647 R D bloodmask [ multiple - dos ] -::DATE -::DESCRIPTION -::HITS -::AUTHOR 2008-03-24 snircd <= 1.3.4 (send_user_mode) Denial of Service Vulnerability 1435 R D Chris Porter 2008-03-17 Apple Safari (webkit) Remote Denial of Service Exploit (iphone/osx/win) 3837 R D X Georgi Guninski 2008-03-10 ASG-Sentry <= 7.0.0 Multiple Remote Vulnerabilities 1508 R D Luigi Auriemma 2008-02-26 Apple Mac OS X xnu <= 1228.3.13 ipv6-ipcomp Remote kernel DoS PoC 3562 R D mu-b 2008-02-19 X.Org xorg-server <= 1.1.1-48.13 Probe for Files Exploit PoC 3336 R D vl4dZ 2008-01-28 Oracle 10g R1 xdb.xdb_pitrig_pkg Buffer Overflow Exploit (PoC) 2953 R D Sh2kerr 2008-01-09 McAfee E-Business Server Remote pre-auth Code Execution / DoS PoC 2015 R D Leon Juranic 2008-01-06 Half-Life CSTRIKE Server 1.6 Denial of Service Exploit (no-steam) 6378 R D Eugene Minaev 2007-12-23 OpenSSL < 0.9.7l / 0.9.8d SSLv2 Client Crash Exploit 4777 R D Noam Rathaus 2007-11-23 Apple QuickTime 7.2/7.3 RTSP Response Remote SEH Overwrite PoC 7359 R D h07 2007-11-09 MySQL <= 5.0.45 (Alter) Denial of Service Vulnerability 9569 R D Kristian Hermansen 2007-11-02 Ubuntu 6.06 DHCPd bug Remote Denial of Service Exploit 4907 R D RoMaNSoFt 2007-10-23 DNS Recursion bandwidth amplification Denial of Service PoC 5454 R D Shadow 2007-10-22 Mozilla Firefox <= 2.0.0.7 Remote Denial of Service Exploit 9015 R D BugReport.IR 2007-10-16 GCALDaemon <= 1.0-beta13 Remote Denial of Service Exploit 2758 R D ikki 2007-09-19 Sun jre1.6.0_X isInstalled.dnsResolve Function Overflow PoC 4861 R D X YAG KOHHA 2007-09-03 Apple Quicktime < 7.2 SMIL Remote Integer Overflow PoC 3058 R D David Vaartjes 2007-08-06 PHP mSQL (msql_connect) Local Buffer Overflow PoC 4325 R D NetJackal 2007-07-31 Asterisk < 1.2.22, 1.4.8 IAX2 channel driver Remote Crash Exploit 2858 R D tenkei_ev 2007-07-18 Asterisk < 1.2.22 / 1.4.8 / 2.2.1 chan_skinny Remote Denial of Service 2601 R D fbffff 2007-07-14 PHP 5.2.3 glob() Denial of Service Exploit 7134 R D shinnai 2007-07-12 PHP 5.2.3 bz2 com_print_typeinfo() Denial of Service Exploit 4350 R D shinnai 2007-06-06 DRDoS - Distributed Reflection Denial of Service 5398 R D whoppix 2007-05-08 Opera 9.10 alert() Remote Denial of Service Exploit 3502 R D X Dj7xpl 2007-05-04 Multiple vendors ZOO file decompression Infinite Loop DoS PoC 1875 R D Jean-Sébastien 2007-04-23 Opera 9.2 (torrent File) Remote Denial of Service Exploit 3761 R D n00b 2007-04-13 Ettercap-NG 0.7.3 Remote Denial of Service Exploit 3502 R D evilrabbi 2007-04-11 Gran Paradiso 3.0a3 non-existent applet Denial of Service Exploit 3455 R D X shinnai 2007-03-29 Mozilla Firefox 2.0.0.3 / Gran Paradiso 3.0a3 DoS Hang / Crash Exploit 8636 R D shinnai 2007-03-25 Asterisk <= 1.2.16 / 1.4.1 SIP INVITE Remote Denial of Service Exploit 3115 R D MADYNES 2007-03-08 Snort 2.6.1.1/2.6.1.2/2.7.0 (fragementation) Remote DoS Exploit 3421 R D Antimatt3r 2007-03-04 PHP wddx_deserialize() String Append Crash Exploit 2822 R D Stefan Esser 2007-03-04 Asterisk <= 1.2.15 / 1.4.0 pre-auth Remote Denial of Service Exploit 2693 R D fbffff 2007-03-01 PHP 4 Userland ZVAL Reference Counter Overflow Exploit PoC 3640 R D Stefan Esser 2007-02-23 Snort 2.6.1 DCE/RPC Preprocessor Remote Buffer Overflow DoS Exploit 4131 R D Trirat Puttaraksa 2007-01-08 Opera <= 9.10 JPG Image DHT Marker Heap Corruption Vulnerabilities 7752 R D posidron 2006-12-19 Intel 2200BG 802.11 Beacon frame Kernel Memory Corruption Exploit 3549 R D Breno Silva Pinto 2006-12-18 wget <= 1.10.2 (Unchecked Boundary Condition) Denial of Service Exploit 3823 R D Federico L. Bossi Bonin 2006-12-10 Sophos Antivirus CHM File Heap Overflow PoC 2637 R D Damian Put 2006-12-10 Sophos Antivirus CHM Chunk Name Length Memory Corruption PoC 2332 R D Damian Put 2006-12-10 Sophos / Trend Micro Antivirus RAR File Denial of Service PoC 2690 R D Damian Put 2006-11-27 PHP <= 4.4.4/5.1.6 htmlentities() Local Buffer Overflow PoC 4989 R D Nick Kezhaya 2006-10-31 Mozilla Firefox <= 1.5.0.7/ 2.0 (createRange) Remote DoS Exploit 9376 R D X Gotfault Security 2006-10-19 Asterisk <= 1.0.12 / 1.2.12.1 (chan_skinny) Remote Heap Overflow (PoC) 3618 R D Noam Rathaus 2006-10-17 Clam AntiVirus <= 0.88.4 CHM Chunk Name Length DoS PoC 2821 R D Damian Put 2006-10-17 Clam AntiVirus <= 0.88.4 (rebuildpe) Remote Heap Overflow PoC 2669 R D Damian Put 2006-10-11 Kmail <= 1.9.1 (IMG SRC) Remote Denial of Service Vulnerability 3528 R D nnp 2006-09-27 OpenSSH <= 4.3 p1 (Duplicated Block) Remote Denial of Service Exploit 17096 R D Tavis Ormandy 2006-09-05 dsock <= 1.3 (buf) Remote Buffer Overflow PoC 4740 R D X DaveK 2006-08-22 Mozilla Firefox <= 1.5.0.6 (FTP Request) Remote Denial of Service Exploit 10932 R D Tomas Kempinsky 2006-08-21 Apache < 1.3.37, 2.0.59, 2.2.3 (mod_rewrite) Remote Overflow PoC 37791 R D Jacobo Avariento 2006-08-13 Opera 9 IRC Client Remote Denial of Service Exploit (c) 4832 R D Preddy 2006-08-13 Opera 9 IRC Client Remote Denial of Service Exploit (py) 3666 R D Preddy 2006-07-25 libmikmod <= 3.2.2 (GT2 loader) Local Heap Overflow PoC 3854 R D Luigi Auriemma 2006-07-01 Opera Web Browser 9.00 (iframe) Remote Denial of Service Exploit 4598 R D y3dips 2006-06-24 BitchX <= 1.1-final do_hook() Remote Denial of Service Exploit 4280 R D Federico L. Bossi Bonin 2006-06-21 Opera 9 (long href) Remote Denial of Service Exploit 7649 R D X N9 2006-06-02 Mozilla Firefox <= 1.5.0.4 (marquee) Denial of Service Exploit 11134 R D X n00b 2006-05-23 PunkBuster < 1.229 (WebTool Service) Remote Buffer Overflow DoS 4868 R D Luigi Auriemma 2006-05-23 netPanzer 0.8 rev 952 (frameNum) Server Terminiation Exploit 3303 R D Luigi Auriemma 2006-05-18 Mozilla Firefox <= 1.5.0.3 (Loop) Denial of Service Exploit 10237 R D X Gianni Amato 2006-05-17 libextractor <= 0.5.13 Multiple Heap Overflow PoC Exploits 3521 R D Luigi Auriemma 2006-04-24 Mozilla Firefox <= 1.5.0.2 (js320.dll/xpcom_core.dll) Denial of Service PoC 13537 R D X splices 2006-04-23 OpenTTD <= 0.4.7 (multiple vulnerabilities) Denial of Service Exploit 3134 R D Luigi Auriemma 2006-04-13 Mozilla Firefox <= 1.5.0.1, Camino <= 1.0 Null Pointer Dereference Crash 6272 R D X BuHa 2006-04-13 panic-reloaded TCP Denial of Service Tool 3988 R D hash 2006-03-28 RealPlayer <= 10.5 (6.0.12.1040-1348) SWF Buffer Overflow PoC 4363 R D Federico L. Bossi Bonin 2006-03-10 Dropbear / OpenSSH Server (MAX_UNAUTH_CLIENTS) Denial of Service 7580 R D str0ke 2006-02-11 Half-Life CSTRIKE Server <= 1.6 (non steam) Denial of Service Exploit 14158 R D Firestorm 2006-02-10 Invision Power Board <= 2.1.4 (Register Users) Denial of Service Exploit 16744 R