[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]
milw0rm
[ linux - remote ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-07-14 Virtualmin < 3.703 Multiple Local/Remote Vulnerabilities 5996 R D Filip Palian
2009-06-04 Kloxo 5.75 (24 Issues) Multiple Remote Vulnerabilities 28538 R D n/a
2009-04-29 Adobe Reader 8.1.4/9.1 GetAnnots() Remote Code Execution Exploit 12096 R D Arr1val
2009-04-29 Adobe 8.1.4/9.1 customDictionaryOpen() Code Execution Exploit 11630 R D Arr1val
2009-04-28 Linux Kernel 2.6.x SCTP FWD Memory Corruption Remote Exploit 18722 R D sgrakkyu
2009-04-09 net2ftp <= 0.97 Cross-Site Scripting/Request Forgery Vulnerabilities 3774 R D cicatriz
2009-01-08 Samba < 3.0.20 Remote Heap Overflow Exploit (oldie but goodie) 12533 R D zuc
2008-11-21 verlihub <= 0.9.8d-RC2 Remote Command Execution Vulnerability 10410 R D v4lkyrius
2008-11-18 No-IP DUC <= 2.1.7 Remote Code Execution Exploit 16035 R D XenoMuta
2008-07-17 Debian OpenSSH Remote SELinux Privilege Elevation Exploit (auth) 25363 R D eliteboy
2008-07-12 trixbox 2.6.1 (langChoice) Remote Root Exploit (py) 11391 R D loganWHD
2008-07-09 trixbox (langChoice) Local File Inclusion Exploit (connect-back) v2 10004 R D Jean-Michel BESNARD
2008-06-01 Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit (Python) 18038 R D WarCat team
2008-04-06 Apache Tomcat Connector jk2-2.0.2 (mod_jk2) Remote Overflow Exploit 17417 R D INetCop Security
2008-03-20 CenterIM <= 4.22.3 Remote Command Execution Vulnerability 7876 R D Brian Fonfara
2008-03-09 VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit 10410 R D DarkFig
2008-01-21 Axigen <= 5.0.2 AXIMilter Remote Format String Exploit 4483 R D hempel
2008-01-07 ClamAV 0.91.2 libclamav MEW PE Buffer Overflow Exploit 7073 R D Thomas Pollet
2007-10-21 Apache Tomcat (webdav) Remote File Disclosure Exploit (ssl support) 22354 R D h3rcul3s
2007-10-16 Boa 0.93.15 HTTP Basic Authentication Bypass Exploit 10722 R D ikki
2007-10-15 eXtremail <= 2.1.1 (LOGIN) Remote Stack Overflow Exploit 7117 R D mu-b
2007-10-15 eXtremail <= 2.1.1 PLAIN authentication Remote Stack Overflow Exploit 7900 R D mu-b
2007-10-10 Eggdrop Server Module Message Handling Remote BoF Exploit 7166 R D bangus/magnum
2007-10-01 smbftpd 0.96 SMBDirList-function Remote Format String Exploit 9238 R D Jerry Illikainen
2007-09-20 Lighttpd <= 1.4.17 FastCGI Header Overflow Remote Exploit 13631 R D andi
2007-09-04 Web Oddity Web Server 0.09b Directory Transversal Exploit 5381 R D Katatafish
2007-08-27 BitchX 1.1 Final MODE Remote Heap Overflow Exploit (0-day) 8265 R D bannedit
2007-08-25 SIDVault LDAP Server Preauth Remote Buffer Overflow Exploit 5100 R D Joxean Koret
2007-08-24 ProFTPD 1.x (module mod_tls) Remote Buffer Overflow Exploit 29756 R D netris
2007-07-29 corehttp 0.5.3alpha (httpd) Remote Buffer Overflow Exploit 6711 R D vade79
2007-07-08 Apache Tomcat Connector (mod_jk) Remote Exploit (exec-shield) 25745 R D Xpl017Elz
2007-06-21 BitchX 1.1-final (EXEC) Remote Command Execution Exploit 9534 R D clarity_
2007-05-14 webdesproxy 0.0.1 (GET Request) Remote Root Exploit (exec-shield) 6972 R D Xpl017Elz
2007-05-02 3proxy 0.5.3g proxy.c logurl() Remote Overflow Exploit (exec-shield) 7782 R D Xpl017Elz
2007-04-30 3proxy 0.5.3g proxy.c logurl() Remote Buffer Overflow Exploit (linux) 6942 R D vade79
2007-04-29 Fenice OMS server 1.10 Remote Buffer Overflow Exploit (exec-shield) 6983 R D Xpl017Elz
2007-04-24 GNU Mailutils imap4d 0.6 Remote Format String Exploit (exec-shield) 7523 R D Xpl017Elz
2007-04-12 Aircrack-ng 0.7 (specially crafted 802.11 packets) Remote BoF Exploit 12483 R D Jonathan So
2007-04-10 Kerberos 1.5.1 Kadmind Remote Root Buffer Overflow Vulnerability 8712 R D c0ntex
2007-03-30 Snort 2.6.1 DCE/RPC Preprocessor Remote Buffer Overflow Exploit (linux) 7629 R D Winny Thomas
2007-03-30 dproxy-nexgen Remote Root Buffer Overflow Exploit (x86-lnx) 7863 R D mu-b
2007-03-23 dproxy <= 0.5 Remote Buffer Overflow Exploit (meta 2.7) 5163 R D Alexander Klink
2007-03-01 madwifi <= 0.9.2.1 WPA/RSN IE Remote Kernel Buffer Overflow Exploit 8310 R D Massimiliano Oldani
2007-02-18 Axigen eMail Server 2.0.0b2 (pop3) Remote Format String Exploit 7884 R D fuGich
2007-01-08 Berlios GPSD <= 2.7 Remote Format String Exploit (meta) 5592 R D Enseirb
2006-12-19 Oracle <= 9i / 10g File System Access via utl_file Exploit 11165 R D Marco Ivaldi
2006-12-15 OpenLDAP <= 2.4.3 (KBIND) Remote Buffer Overflow Exploit 11347 R D Solar Eclipse
2006-12-15 GNU InetUtils ftpd 1.4.2 (ld.so.preload) Remote Root Exploit 10245 R D kcope
2006-11-28 Evince Document Viewer (DocumentMedia) Buffer Overflow Exploit 8127 R D K-sPecial
2006-11-27 ProFTPD 1.3.0 (sreplace) Remote Stack Overflow Exploit (meta) 36496 R D Evgeny Legerov
2006-08-29 Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit 9193 R D Expanders
2006-08-14 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit (3) 11789 R D K-sPecial
2006-05-21 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit 14377 R D kcope
2006-05-05 Quake 3 Engine 1.32b R_RemapShader() Remote Client BoF Exploit 21651 R D landser
2006-05-02 MySQL <= 5.0.20 COM_TABLE_DUMP Memory Leak/Remote BoF Exploit 24894 R D Stefano Di Paola
2006-05-02 MySQL (<= 4.1.18, 5.0.20) Local/Remote Information Leakage Exploit 19545 R D Stefano Di Paola
2006-04-25 Fenice OMS 1.10 (long get request) Remote Buffer Overflow Exploit 8881 R D c0d3r
2006-03-13 crossfire-server <= 1.9.0 SetUp() Remote Buffer Overflow Exploit 9083 R D landser
2006-03-12 PeerCast <= 0.1216 (nextCGIarg) Remote Buffer Overflow Exploit (2) 7863 RM D darkeagle
2006-03-11 PeerCast <= 0.1216 (nextCGIarg) Remote Buffer Overflow Exploit 7119 RM D prdelka
2006-02-10 Power Daemon <= 2.0.2 (WHATIDO) Remote Format String Exploit 8939 R D Gotfault Security
2006-02-10 OpenVMPSd <= 1.3 Remote Format String Exploit (Multiple Targets) 7130 R D Gotfault Security
2006-02-07 Mozilla Firefox 1.5 location.QueryInterface() Code Execution (linux) 30884 RM D H D Moore
2006-01-28 SHOUTcast <= 1.9.4 File Request Format String Exploit (Leaked) 13529 R D crash-x
2005-12-03 sobexsrv 1.0.0_pre3 Bluetooth syslog() Remote Format String Exploit 6907 R D Kevin Finisterre
2005-11-11 Snort <= 2.4.2 Back Orifice Pre-Preprocessor Remote Exploit (4) 7795 R D xwings
2005-11-05 linux-ftpd-ssl 0.17 (MKD/CWD) Remote Root Exploit 22225 R D kcope
2005-11-04 gpsdrive <= 2.09 (friendsd2) Remote Format String Exploit (ppc) 11656 R D Kevin Finisterre
2005-11-04 gpsdrive <= 2.09 (friendsd2) Remote Format String Exploit (x86) 11328 R D Kevin Finisterre
2005-11-02 Lynx <= 2.8.6dev.13 Remote Buffer Overflow Exploit (port bind) 7644 R D xwings
2005-10-25 Snort <= 2.4.2 Back Orifice Parsing Remote Buffer Overflow Exploit 8286 R D rd
2005-10-18 e107 <= 0.6172 (resetcore.php) Remote SQL Injection Exploit 14038 R D rgod
2005-10-16 Half-Life Server 3.1.1.0 Remote Buffer Overflow Exploit 4486 R D greuff
2005-10-11 phpBB 2.0.13 (admin_styles.php) Remote Command Execution Exploit 41508 R D RusH
2005-10-10 xine-lib <= 1.1 (media player library) Remote Format String Exploit 5980 R D Ulf Harnhammar
2005-10-02 Prozilla <= 1.3.7.4 (ftpsearch) Results Handling Buffer Overflow Exploit 6256 R D taviso
2005-09-26 RealPlayer/Helix Player Remote Format String Exploit (linux) 8447 R D c0ntex
2005-09-24 WzdFTPD <= 0.5.4 Remote Command Execution Exploit 8611 RM D kcope
2005-09-10 GNU Mailutils imap4d 0.6 (search) Remote Format String Exploit 10769 RM D Clément Lecigne
2005-08-22 Elm < 2.5.8 (Expires Header) Remote Buffer Overflow Exploit 6994 R D c0ntex
2005-08-06 Ethereal 10.x AFP Protocol Dissector Remote Format String Exploit 7048 R D vade79
2005-08-05 nbSMTP <= 0.99 (util.c) Client-Side Command Execution Exploit 5211 R D CoKi
2005-08-01 GNU Mailutils imap4d <= 0.6 Remote Format String Exploit 6587 RM D CoKi
2005-08-01 IPSwitch IMail Server <= 8.15 IMAPD Remote Root Exploit 12847 R D kcope
2005-06-20 PeerCast <= 0.1211 Remote Format String Exploit 6499 R D darkeagle
2005-06-14 ViRobot Advanced Server 2.0 (addschup) Remote Cookie Exploit 7428 R D Kevin Finisterre
2005-06-10 GNU Mailutils imap4d 0.5 < 0.6.90 Remote Format String Exploit 6246 RM D qobaiashi
2005-05-31 Ethereal <= 0.10.10 (SIP) Protocol Dissector Remote BoF Exploit 5990 R D Team W00dp3ck3r
2005-05-05 dSMTP Mail Server 3.1b Linux Remote Root Format String Exploit 7687 R D cybertronic
2005-05-03 Subversion 0.3.7/1.0.0 Remote Buffer Overflow Exploit 4389 R D greuff
2005-04-29 Snmppd SNMP Proxy Daemon Remote Format String Exploit 6966 R D cybertronic
2005-04-14 Sumus 0.2.2 httpd Remote Buffer Overflow Exploit 8401 R D vade79
2005-04-13 gld 1.4 (Postfix Greylisting Daemon) Remote Format String Exploit 8036 R D Xpl017Elz
2005-04-05 MailEnable Enterprise 1.x Imapd Remote Exploit 7033 RM D Expanders
2005-03-29 mtftpd <= 0.0.3 Remote Root Exploit 8345 R D darkeagle
2005-03-29 Cyrus imapd 2.2.4 - 2.2.8 (imapmagicplus) Remote Exploit 6851 R D crash-x
2005-03-28 Smail 3.2.0.120 Remote Root Heap Overflow Exploit 6450 R D infamous41md
2005-03-14 Ethereal <= 0.10.9 "3G-A11" Remote Buffer Overflow Exploit 5632 R D Diego Giagio
2005-02-20 GNU Cfengine 2.17p1 RSA Authentication Heap Overflow Exploit 4806 R D jsk
2005-02-18 Medal of Honor Spearhead Server Remote Buffer Overflow (Linux) 6797 R D millhouse
2005-02-12 Exim <= 4.43 auth_spa_server() Remote PoC Exploit 7924 R D Yuri Gushin
2005-02-09 Prozilla <= 1.3.7.3 Remote Format String Exploit 4758 R D Serkan Akpolat
2005-02-03 ngIRCd <= 0.8.2 Remote Format String Exploit 6056 R D CoKi
2005-02-03 Newspost 2.1 socket_getline() Remote Buffer Overflow Exploit v2 6423 R D cybertronic
2005-01-26 Berlios gpsd <= 2.7.x Remote Format String Vulnerability 5006 R D JohnH
2004-12-23 SHOUTcast DNAS/Linux 1.9.4 Format String Remote Exploit 7243 R D pucik
2004-12-12 Citadel/UX <= 6.27 Remote Root Format String Exploit 4547 R D CoKi
2004-11-27 PHP <= 4.3.7/ 5.0.0RC3 memory_limit Remote Exploit 10147 R D Gyan Chawdhary
2004-11-23 Prozilla 1.3.6 Remote Stack Overflow Exploit 4542 R D Serkan Akpolat
2004-11-09 Qwik SMTP 0.3 Remote Root Format String Exploit 4800 R D Carlos Barros
2004-10-28 WvTFTPd 0.9 Remote Root Heap Overflow Exploit 5016 R D infamous41md
2004-10-28 zgv 5.5 Multiple Arbitrary Code Execution PoC Exploits 4741 R D infamous41md
2004-10-17 Monit <= 4.2 Basic Authentication Remote Root Exploit 4591 R D rtk
2004-10-17 ProFTPD <= 1.2.10 Remote Users Enumeration Exploit 28047 R D Leon Juranic
2004-09-09 Citadel/UX <= 6.23 Remote USER Directive Exploit (Private Version) 4518 R D Nebunu
2004-08-30 Citadel/UX Remote Buffer Overflow Exploit 4683 R D Nebunu
2004-08-25 Hafiye 1.0 Remote Terminal Escape Sequence Injection Vulnerability 4707 R D Serkan Akpolat
2004-08-24 MusicDaemon <= 0.0.3 v2 Remote DoS and /etc/shadow Stealer 4346 R D Tal0n
2004-08-21 Qt BMP Parsing Bug Heap Overflow Exploit 4486 R D infamous41md
2004-08-20 XV 3.x BMP Parsing Local Buffer Overflow Exploit 4521 R D infamous41md
2004-08-19 PlaySMS <= 0.7 SQL Injection Exploit 5263 R D Noam Rathaus
2004-08-18 GV PostScript Viewer Remote Buffer overflow Exploit (2) 4328 R D infamous41md
2004-08-13 GV PostScript Viewer Remote Buffer overflow Exploit 4369 R D infamous41md
2004-08-13 Remote CVS <= 1.11.15 (error_prog_name) Remote Exploit 5701 R D Gyan Chawdhary
2004-08-11 LibPNG Graphics Library Remote Buffer Overflow Exploit 5045 R D infamous41md
2004-08-09 xine 0.99.2 Remote Stack Overflow Exploit 5673 R D c0ntex
2004-08-09 Dropbear SSH <= 0.34 Remote Root Exploit 12321 R D livenn
2004-08-08 Pavuk Digest Authentication Buffer Overflow Remote Exploit 4242 R D infamous41md
2004-08-06 CVSTrac Remote Arbitrary Code Execution Exploit 6577 R D n/a
2004-08-04 OpenFTPD <= 0.30.1 (message system) Remote Shell Exploit 5376 R D infamous41md
2004-08-03 OpenFTPD (<= 0.30.2) Remote Exploit 6232 R D andi
2004-07-22 Drcat 0.5.0-beta (drcatd) Remote Root Exploit 4266 R D Taif
2004-07-22 Samba <= 3.0.4 SWAT Authorization Buffer Overflow Exploit 7913 R D Noam Rathaus
2004-07-04 MPlayer <= 1.0pre4 GUI filename handling Overflow Exploit 5567 R D c0ntex
2004-06-25 Borland Interbase <= 7.x Remote Exploit 4501 R D Aviram Jenik
2004-06-25 Subversion 1.0.2 svn_time_from_cstring() Remote Exploit 5792 RM D Gyan Chawdhary
2004-06-25 rlpr <= 2.04 msg() Remote Format String Exploit 4177 R D jaguar
2004-05-05 XChat 1.8.0/2.0.8 socks5 Remote Buffer overflow Exploit 6450 R D vade79
2004-04-12 Monit <= 4.2 Remote Root Buffer Overflow Exploit 4487 R D Abhisek Datta
2004-04-09 Monit <= 4.1 Remote Root Buffer Overflow Exploit 4282 R D gsicht
2004-03-28 Ethereal 0.10.0-0.10.2 IGAP Overflow Remote Root Exploit 5083 R D Abhisek Datta
2004-01-14 lftp <= 2.6.9 Remote Stack based Overflow Exploit 6059 R D Li0n7
2003-12-27 Cyrus IMSPD v1.7 abook_dbname Remote Root Exploit 5029 R D SpikE
2003-12-06 Apache 1.3.*-2.0.48 mod_userdir Remote Users Disclosure Exploit 33156 R D m00
2003-11-20 Apache mod_gzip (with debug_mode) <= 1.2.26.1a Remote Exploit 8902 R D xCrZx
2003-10-15 ProFTPD <= 1.2.9 rc2 (ASCII File) Remote Root Exploit 8734 R D Solar Eclipse
2003-10-13 ProFTPD 1.2.7 - 1.2.9rc2 Remote Root & brute-force Exploit 14316 R D Haggis
2003-10-04 ProFTPD 1.2.9rc2 ASCII File Remote Root Exploit 12919 R D bkbll
2003-09-20 Knox Arkeia Pro 5.1.12 Backup Remote Root Exploit 6399 R D n/a
2003-09-16 Pine <= 4.56 Remote Buffer Overflow Exploit 4388 R D sorbo
2003-09-14 MySQL 3.23.x/4.0.x Remote Exploit 16445 R D bkbll
2003-08-29 Linux pam_lib_smb < 1.1.6 /bin/login Remote Exploit 5844 R D vertex
2003-08-28 GtkFtpd 1.0.4 Remote Root Buffer Overflow Exploit 5357 R D vade79
2003-08-22 Gopherd <= 3.0.5 FTP Gateway Remote Overflow Exploit 5602 R D vade79
2003-08-11 wu-ftpd 2.6.2 Remote Root Exploit (advanced version) 12429 R D Xpl017Elz
2003-08-03 wu-ftpd 2.6.2 off-by-one Remote Root Exploit 7945 R D Xpl017Elz
2003-07-25 miniSQL (mSQL) 1.3 Remote GID Root Exploit 4912 R D the itch
2003-07-17 Citadel/UX BBS 6.07 Remote Exploit 4837 R D Carl Livitt
2003-07-13 Samba 2.2.8 (Bruteforce Method) Remote Root Exploit 8645 R D Schizoprenic
2003-07-02 Linux eXtremail 1.5.x Remote Format Strings Exploit 5737 R D B-r00t
2003-06-27 Kerio MailServer 5.6.3 Remote Buffer Overflow Exploit 5689 R D B-r00t
2003-06-19 ProFTPD 1.2.9RC1 (mod_sql) Remote SQL Injection Exploit 9355 R D Spaine
2003-06-10 Atftpd 0.6 Remote Root Exploit (atftpdx.c) 5038 R D gunzip
2003-06-10 mnoGoSearch 3.1.20 Remote Command Execution Exploit 5315 R D pokleyzz
2003-06-08 Apache <= 2.0.45 APR Remote Exploit -Apache-Knacker.pl 21577 R D Matthew Murphy
2003-05-29 Webfroot Shoutbox < 2.32 (Apache) Remote Exploit 12162 R D n/a
2003-05-22 WsMp3d 0.x Remote Root Heap Overflow Exploit 5615 R D Xpl017Elz
2003-05-05 CommuniGate Pro Webmail 4.0.6 Session Hijacking Exploit 5177 R D Yaroslav Polyakov
2003-05-02 OpenSSH/PAM <= 3.6.1p1 Remote Users Ident (gossh.sh) 13830 R D Nicolas Couture
2003-04-30 Sendmail <= 8.12.8 prescan() BSD Remote Root Exploit 12282 R D bysin
2003-04-30 OpenSSH/PAM <= 3.6.1p1 Remote Users Discovery Tool 13133 R D Maurizio Agazzini
2003-04-25 PoPToP PPTP <= 1.1.4-b3 Remote Root Exploit (poptop-sane.c) 6362 RM D blightninjas
2003-04-23 Snort <=1.9.1 Remote Root Exploit (p7snort191.sh) 7367 R D truff
2003-04-18 PoPToP PPTP <= 1.1.4-b3 Remote Root Exploit 6688 RM D einstein
2003-04-10 Samba 2.2.8 Remote Root Exploit - sambal.c 10148 R D eSDee
2003-04-08 SETI@home Clients Buffer Overflow Exploit 4683 R D zillion
2003-04-07 Samba 2.2.x Remote Root Buffer Overflow Exploit 10878 RM D H D Moore
2003-04-04 Apache OpenSSL Remote Exploit (Multiple Targets) (OpenFuckV2.c) 31460 R D spabam
2002-12-24 Melange Chat Server 1.10 Remote Buffer Overflow Exploit 5461 R D innerphobia
2002-06-25 WU-IMAP 2000.287(1-2) Remote Exploit 5571 R D Teso
2002-05-14 Squid 2.4.1 Remote Buffer Overflow Exploit 9951 R D Teso
2002-05-14 wu-ftpd <= 2.6.1 Remote Root Exploit 10043 R D Teso
2002-01-01 rsync <= 2.5.1 Remote Exploit 5717 R D Teso
2002-01-01 rsync <= 2.5.1 Remote Exploit (2) 5473 R D Teso
2001-12-20 Solaris /bin/login Remote Root Exploit (SPARC/x86) 7796 R D Teso
2001-05-08 BeroFTPD 1.3.4(1) Linux x86 Remote Root Exploit 4271 R D qitest1
2001-03-03 IMAP4rev1 12.261/12.264/2000.284 (lsub) Remote Exploit 5987 R D SkyLaZarT
2001-03-02 BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit (4) 8202 R D multiple
2001-03-01 BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit 6605 R D Gneisenau
2001-03-01 BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit (2) 6178 R D LSD-PLaNET
2001-01-19 IMAP4rev1 10.190 Authentication Stack Overflow Exploit 5577 R D teleh0r
2001-01-02 Linux Kernel 2.2 (TCP/IP Weakness) Exploit 8019 R D Stealth
2000-12-15 LPRng 3.6.24-1 Remote Root Exploit 4971 R D venomous
2000-12-11 BFTPd 1.0.12 Remote Exploit 4801 R D korty
2000-12-11 LPRng 3.6.22/23/24 Remote Root Exploit 4723 R D sk8
2000-12-11 LPRng (RedHat 7.0) lpd Remote Root Format String Exploit 5606 R D DiGiT
2000-12-06 PHP 3.0.16/4.0.2 Remote Format Overflow Exploit 6988 R D Gneisenau
2000-11-30 INND/NNRP < 1.6.X Remote Root Overflow Exploit 4933 R D Babcia Padlina
2000-11-29 BFTPd vsprintf() Format Strings Exploit 5180 R D DiGiT
2000-11-16 Half Life (rcon) Remote Buffer Overflow Exploit 11243 R D Sao Paulo
1997-06-24 Linux imapd Remote Overflow File Retrieve Exploit 6677 R D p1

[ linux - local ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-09-17 Changetrack 4.3-3 Local Privilege Escalation Vulnerability 4227 R D Rick
2009-09-11 Linux Kernel 2.4/2.6 sock_sendpage() Local Root Exploit [3] 9721 R D Ramon Valle
2009-09-10 Enlightenment - Linux Null PTR Dereference Exploit Framework 11170 R D spender
2009-09-09 HTMLDOC 1.8.27 (html File Handling) Stack Buffer Overflow Exploit 1535 R D Pankaj Kohli
2009-09-09 Linux Kernel 2.4/2.6 sock_sendpage() Local Root Exploit [2] 9846 R D Ramon Valle
2009-09-09 GemStone/S 6.3.1 (stoned) Local Buffer Overflow Exploit 1298 R D Jeremy Brown
2009-09-02 Linux Kernel < 2.6.19 udp_sendmsg Local Root Exploit (x86/x64) 7874 R D spender
2009-09-02 Linux Kernel < 2.6.19 udp_sendmsg Local Root Exploit 13857 R D andi
2009-08-31 Linux Kernel 2.6 < 2.6.19 (32bit) ip_append_data() ring0 Root Exploit 8537 R D INetCop Security
2009-08-31 Linux Kernel < 2.6.31-rc7 AF_IRDA 29-Byte Stack Disclosure Exploit 3122 R D Jon Oberheide
2009-08-31 Linux Kernel 2.4/2.6 sock_sendpage() Local Root Exploit (ppc) 12669 R D Ramon Valle
2009-08-26 Linux Kernel <= 2.6.30 atalk_getname() 8-bytes Stack Disclosure Exploit 4663 R D Clément Lecigne
2009-08-25 Linux Kernel <= 2.6.31-rc7 AF_LLC getsockname 5-Byte Stack Disclosure 3795 R D Jon Oberheide
2009-08-24 Linux Kernel 2.4/2.6 sock_sendpage() ring0 Root Exploit (simple ver) 13111 R D INetCop Security
2009-08-18 Linux Kernel 2.x sock_sendpage() Local Root Exploit (Android Edition) 10072 R D Zinx
2009-08-14 Linux Kernel 2.x sock_sendpage() Local Ring0 Root Exploit 20365 R D spender
2009-08-14 Linux Kernel 2.x sock_sendpage() Local Root Exploit #2 19690 R D Przemyslaw Frasunek
2009-08-05 Linux Kernel < 2.6.14.6 procfs Kernel Memory Disclosure Exploit 3560 R D Jon Oberheide
2009-08-04 Linux Kernel <= 2.6.31-rc5 sigaltstack 4-Byte Stack Disclosure Exploit 5044 R D Jon Oberheide
2009-07-30 Compface 1.1.5 (.xbm File) Local Buffer Overflow Exploit 1349 R D His0k4
2009-07-20 PulseAudio (setuid) Priv. Escalation Exploit (ubu/9.04)(slack/12.2.0) 2153 R D n/a
2009-07-17 Linux 2.6.30+/SELinux/RHEL5 Test Kernel Local Root Exploit 0day 23846 R D spender
2009-07-13 Openswan <= 2.4.12/2.6.16 Insecure Temp File Creation Root Exploit 1879 R D nofame
2009-07-09 Linux Kernel <= 2.6.28.3 set_selection() UTF-8 Off By One Local Exploit 13006 R D sgrakkyu
2009-05-14 Linux Kernel 2.6.29 ptrace_attach() Local Root Race Condition Exploit 18901 R D prdelka
2009-05-13 Linux Kernel 2.6.x ptrace_attach Local Privilege Escalation Exploit 17143 R D s0m3b0dy
2009-04-30 Linux Kernel 2.6 UDEV < 141 Local Privilege Escalation Exploit 16938 R D Jon Oberheide
2009-04-27 libvirt_proxy <= 0.5.1 Local Privilege Escalation Exploit 4127 R D Jon Oberheide
2009-04-20 Linux Kernel 2.6 UDEV Local Privilege Escalation Exploit 28642 R D kcope
2009-04-17 cTorrent/DTorrent (.Torrent File) Buffer Overflow Exploit 4484 R D Michael Brooks
2009-04-08 Linux Kernel < 2.6.29 exit_notify() Local Privilege Escalation Exploit 23135 R D gat3way
2009-03-29 pam-krb5 < 3.13 Local Privilege Escalation Exploit 4713 R D Jon Oberheide
2009-01-25 PostgreSQL 8.2/8.3/8.4 UDF for Command Execution 4124 R D Bernardo Damele
2009-01-25 MySQL 4/5/6 UDF for Command Execution 15360 R D Bernardo Damele
2009-01-06 Debian GNU/Linux XTERM (DECRQSS/comments) Weakness Vulnerability 5702 R D Paul Szabo
2008-12-29 Linux Kernel < 2.6.26.4 SCTP Kernel Memory Disclosure Exploit 11211 R D Jon Oberheide
2008-12-09 PHP safe_mode bypass via proc_open() and custom environment 9599 R D gat3way
2008-12-01 Debian GNU/Linux (symlink attack in login) Arbitrary File Ownership PoC 9336 R D Paul Szabo
2008-11-20 Oracle Database Vault ptrace(2) Privilege Escalation Exploit 6423 R D Jakub Wartak
2008-10-27 Linux Kernel < 2.6.22 ftruncate()/open() Local Exploit 21478 R D gat3way
2008-08-31 Postfix <= 2.6-20080814 (symlink) Local Privilege Escalation Exploit 12195 R D RoMaNSoFt
2008-07-08 Poppler <= 0.8.4 libpoppler uninitialized pointer Code Execution PoC 7272 R D Felipe Andres Manzano
2008-06-18 screen 4.0.3 Local Authentication Bypass Vulnerability (OpenBSD) 16899 R D Rembrandt
2008-04-10 Alsaplayer < 0.99.80-rc3 Vorbis Input Local Buffer Overflow Exploit 6024 R D Albert Sellares
2008-02-21 X.Org xorg-x11-xfs <= 1.0.2-3.1 Local Race Condition Exploit 12039 R D vl4dZ
2008-02-09 Linux Kernel 2.6.17 - 2.6.24.1 vmsplice Local Root Exploit 229263 R D qaaz
2008-02-09 Linux Kernel 2.6.23 - 2.6.24 vmsplice Local Root Exploit 74360 R D qaaz
2007-12-18 Linux Kernel < 2.6.11.5 BLUETOOTH Stack Local Root Exploit 16948 R D Backdoored
2007-12-06 Send ICMP Nasty Garbage (sing) Append File Logrotate Exploit 7082 R D bannedit
2007-09-27 Linux Kernel 2.4/2.6 x86-64 System Call Emulation Exploit 31765 R D Robert Swiecki
2007-07-10 Linux Kernel < 2.6.20.2 IPV6_Getsockopt_Sticky Memory Leak PoC 14252 R D dreyer
2007-04-13 ProFTPD 1.3.0/1.3.0a (mod_ctrls) Local Overflow Exploit (exec-shield) 14099 R D Xpl017Elz
2007-03-28 Linux Kernel <= 2.6.20 with DCCP Support Memory Disclosure Exploit v2 12797 R D Robert Swiecki
2007-03-27 Linux Kernel <= 2.6.20 with DCCP Support Memory Disclosure Exploit 10883 R D Robert Swiecki
2007-03-25 PHP < 4.4.5 / 5.2.1 _SESSION unset() Local Exploit 7594 R D Stefan Esser
2007-03-25 PHP < 4.4.5 / 5.2.1 _SESSION Deserialization Overwrite Exploit 7283 R D Stefan Esser
2007-03-20 PHP <= 4.4.6 / 5.2.1 ext/gd Already Freed Resources Usage Exploit 6876 R D Stefan Esser
2007-03-20 PHP <= 5.2.1 hash_update_file() Freed Resource Usage Exploit 7986 R D Stefan Esser
2007-03-16 PHP <= 4.4.6 / 5.2.1 array_user_key_compare() ZVAL dtor Local Exploit 7642 R D Stefan Esser
2007-03-14 PHP <= 5.2.1 session_regenerate_id() Double Free Exploit 5786 R D Stefan Esser
2007-03-14 PHP 5.2.0/5.2.1 Rejected Session ID Double Free Exploit 7888 R D Stefan Esser
2007-03-09 PHP 5.2.0 / PHP with PECL ZIP <= 1.8.3 zip:// URL Wrapper BoF Exploit 7745 R D Stefan Esser
2007-03-07 PHP < 4.4.5 / 5.2.1 (shmop Functions) Local Code Execution Exploit 6648 R D Stefan Esser
2007-03-07 PHP < 4.4.5 / 5.2.1 (shmop) SSL RSA Private-Key Disclosure Exploit 6877 R D Stefan Esser
2007-02-28 Ubuntu/Debian Apache 1.3.33/1.3.34 (CGI TTY) Local Root Exploit 24624 R D Kristian Hermansen
2007-02-21 Nortel SSL VPN Linux Client <= 6.0.3 Local Privilege Escalation Exploit 4774 R D Jon Hart
2007-02-19 ProFTPD 1.3.0/1.3.0a (mod_ctrls support) Local Buffer Overflow Exploit 2 10472 R D Revenge
2007-02-18 ProFTPD 1.3.0/1.3.0a (mod_ctrls support) Local Buffer Overflow Exploit 11082 R D Revenge
2007-01-28 Trend Micro VirusWall 3.81 (vscan/VSAPI) Local Buffer Overflow Exploit 5550 R D Sebastian Wolfgarten
2007-01-18 GNU/Linux mbse-bbs <= 0.70.0 Local Buffer Overflow Exploit 6746 R D prdelka
2006-10-16 NVIDIA Graphics Driver <= 8774 Local Buffer Overflow Exploit 7509 R D Rapid7 Security
2006-10-08 Infecting Elf Binaries to Gain Local Root Exploit 10984 R D Sha0
2006-10-01 cPanel <= 10.8.x (cpwrap via mysqladmin) Local Root Exploit 22416 R D Clint Torrez
2006-09-20 Dr.Web Antivirus 4.33 (LHA long directory name) Local Overflow Exploit 4845 R D Guay-Leroux
2006-09-09 openmovieeditor <= 0.0.20060901 (name) Local Buffer Overflow Exploit 5811 R D Qnix
2006-08-16 PHP <= 4.4.3 / 5.1.4 (sscanf) Local Buffer Overflow Exploit 13727 R D andi
2006-08-08 liblesstif <= 2-0.93.94-4mdk (DEBUG_FILE) Local Root Exploit 7897 R D Karol Wiesek
2006-07-18 Linux Kernel 2.6.13 <= 2.6.17.4 prctl() Local Root Exploit (logrotate) 34048 R D Marco Ivaldi
2006-07-15 Linux Kernel <= 2.6.17.4 (proc) Local Root Exploit 45197 R D h00lyshit
2006-07-15 Rocks Clusters <= 4.1 (umount-loop) Local Root Exploit 5212 R D Xavier de Leon
2006-07-15 Rocks Clusters <= 4.1 (mount-loop) Local Root Exploit 5699 R D Xavier de Leon
2006-07-14 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit (4) 28289 R D Sunay
2006-07-13 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit (3) 24760 R D Marco Ivaldi
2006-07-12 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit (2) 24711 R D Julien Tinnes
2006-07-11 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit 25878 R D dreyer & RoMaNSoFt
2006-05-26 tiffsplit (libtiff <= 3.8.2) Local Stack Buffer Overflow PoC 6902 R D nitr0us
2006-03-20 X.Org X11 (X11R6.9.0/X11R7.0) Local Root Privilege Escalation Exploit 16960 R D H D Moore
2006-03-18 Python <= 2.4.2 realpath() Local Stack Overflow Exploit 11270 R D Gotfault Security
2006-03-12 Ubuntu Breezy 5.10 Installer Password Disclosure Vulnerability 9618 R D Kristian Hermansen
2006-02-20 MySQL 4.x/5.0 User-Defined Function Local Privilege Escalation Exploit 16574 R D Marco Ivaldi
2006-01-25 SquirrelMail 3.1 Change Passwd Plugin Local Buffer Overflow Exploit 9853 R D rod hedor
2006-01-24 Eterm LibAST < 0.7 (-X Option) Local Privilege Escalation Exploit 4799 R D Johnny Mast
2006-01-21 Xmame <= 0.102 (-pb/-lang/-rec) Local Buffer Overflow Exploit 5850 R D sj
2006-01-13 Xmame 0.102 (-lang) Local Buffer Overflow Exploit (c code) 6227 R D Qnix
2006-01-10 Xmame 0.102 (-lang) Local Buffer Overflow Exploit 5820 R D xwings
2005-12-30 Linux Kernel <= 2.6.11 (CPL 0) Local Root Exploit (k-rad3.c) 36974 R D alert7
2005-11-12 Veritas Storage Foundation 4.0 VCSI18N_LANG Local Overflow Exploit 7303 R D Kevin Finisterre
2005-11-09 Operator Shell (osh) 1.7-14 Local Root Exploit 10351 R D Charles Stevenson
2005-11-09 Sudo <= 1.6.8p9 (SHELLOPTS/PS4 ENV variables) Local Root Exploit 11763 R D Breno Silva Pinto
2005-11-08 SuSE Linux <= 9.3, 10 (chfn) Local Root Privilege Escalation Exploit 11665 R D Hunger
2005-11-07 F-Secure Internet Gatekeeper for linux < 2.15.484 Local Root Exploit 4960 R D Xavier de Leon
2005-10-26 Linux Kernel 2.4/2.6 bluez Local Root Privilege Escalation Exploit (update) 30507 R D qobaiashi
2005-10-20 XMail 1.21 (-t Command Line Option) Local Root Buffer Overflow Exploit 6822 R D qaaz
2005-09-24 Qpopper <= 4.0.8 (poppassd) Local Root Exploit (linux) 10561 R D kcope
2005-09-14 Wireless Tools 26 (iwconfig) Local Root Exploit (some setuid) 9974 R D Qnix
2005-09-13 VisualBoyAdvanced 1.7.x Local Shell Exploit (non suid) (updated) 7383 R D Qnix
2005-08-30 Gopher <= 3.0.9 (+VIEWS) Remote (Client Side) Buffer Overflow Exploit 5532 R D vade79
2005-08-16 Operator Shell (osh) 1.7-13 Local Root Exploit 6989 R D Charles Stevenson
2005-06-04 ePSXe <= 1.6.0 nogui() Local Exploit 7335 R D Qnix
2005-05-25 Exim <= 4.41 dns_build_reverse Local Exploit 5936 R D Plugger
2005-05-17 Linux Mandrake <= 10.2 cdrdao Local Root Exploit (unfixed) 7918 R D newbug
2005-05-01 ARPUS/Ce Local File Overwrite Exploit (setuid) 6421 R D Kevin Finisterre
2005-05-01 ARPUS/Ce Local Overflow Exploit (setuid) (perl) 7089 R D Kevin Finisterre
2005-04-21 BitchX <= 1.0c20 Local Buffer Overflow Exploit 5129 R D sk
2005-04-08 sash <= 3.7 Local Buffer Overflow Exploit 5084 R D lammat
2005-04-05 Aeon 0.2a Local Linux Exploit (perl code) 5369 R D lammat
2005-04-05 Aeon 0.2a Local Linux Exploit (c code) 4312 R D patr0n
2005-03-22 Linux Kernel 2.4.x / 2.6.x uselib() Local Privilege Escalation Exploit 28897 R D sd
2005-03-21 PostScript Utilities - psnup Argument Buffer Overflow 4735 R D lammat
2005-03-14 PaX Double-Mirrored VMA munmap Local Root Exploit 5709 R D Christophe Devine
2005-03-14 Frank McIngvale LuxMan 0.41 Local Buffer Overflow Exploit 5838 R D Kevin Finisterre
2005-02-13 GNU a2ps "Anything to PostScript" Local Exploit (not suid) 4398 R D lizard
2005-02-07 Setuid perl PerlIO_Debug() overflow 7179 R D Kevin Finisterre
2005-02-07 Setuid perl PerlIO_Debug() root owned file creation 7921 R D Kevin Finisterre
2005-02-07 Exim <= 4.42 Local Root Exploit 7481 R D darkeagle
2005-02-05 Operator Shell (osh) 1.7-12 Local Root Exploit 5915 R D Charles Stevenson
2005-01-30 Linux ncpfs Local Exploit 6468 R D super
2005-01-27 Linux Kernel 2.4 uselib() Privilege Elevation Exploit 16652 R D Tim Hsu
2005-01-26 /usr/bin/trn Local Exploit (not suid) 5884 R D ZzagorR
2005-01-20 fkey <= 0.0.2 Local File Accessibility Exploit 4962 R D vade79
2005-01-15 Exim <= 4.41 dns_build_reverse Local Exploit PoC 4967 R D Rafael Carrasco
2005-01-07 Linux Kernel <= 2.4.29-rc2 uselib() Privilege Elevation 13209 R D Paul Starzetz
2005-01-05 HTGET <= 0.9.x Local Root Exploit 4681 R D nekd0
2004-12-24 Linux Kernel 2.6.x chown() Group Ownership Alteration Exploit 13981 R D Marco Ivaldi
2004-12-24 MySQL 4.0.17 UDF Dynamic Library Exploit 7769 R D Marco Ivaldi
2004-12-17 Cscope <= 15.5 Symlink Vulnerability Exploit 3989 R D Gangstuck
2004-12-14 TipxD <= 1.1.1 Local Format String Vulnerability (not setuid) 4221 R D CoKi
2004-12-01 Aspell (word-list-compress) Command Line Stack Overflow 6003 R D c0d3r
2004-11-25 atari800 Local Root Exploit 5141 R D pi3
2004-11-10 Linux Kernel (<= 2.4.27 , 2.6.8) binfmt_elf Executable File Read Exploit 13011 R D Paul Starzetz
2004-10-26 GD Graphics Library Heap Overflow Proof of Concept Exploit 6257 R D n/a
2004-10-26 libxml 2.6.12 nanoftp Remote Buffer Overflow Proof of Concept Exploit 5362 R D infamous41md
2004-10-23 socat <= 1.4.0.2 Local Format String Exploit (not setuid) 4357 R D CoKi
2004-10-21 Apache <= 1.3.31 mod_include Local Buffer Overflow Exploit 14933 R D xCrZx
2004-10-20 BitchX 1.0c19 Local Root Exploit (suid?) 5063 R D Sha0
2004-09-25 GNU Sharutils <= 4.2.1 Local Format String PoC Exploit 4215 R D n4rk0tix
2004-09-23 glFTPd Local Stack Overflow Exploit (PoC) (Slackware 9.0/9.1/10.0) 5253 R D CoKi
2004-09-21 SudoEdit 1.6.8 Local Change Permission Exploit 5587 R D Angelo Rosiello
2004-09-19 CDRecord's ReadCD Local Root Privileges 4437 R D Max Vozeler
2004-09-16 htpasswd Apache 1.3.31 Local Exploit 17209 R D Luiz Fernando Camargo
2004-09-11 cdrecord $RSH exec() SUID Shell Creation 5299 R D I)ruid
2004-09-07 CDRDAO Local Root Exploit 4854 R D Karol Wiêsek
2004-08-25 SquirrelMail (chpasswd) Local Root Bruteforce Exploit 8430 R D Bytes
2004-08-13 LibPNG <= 1.2.5 png_jmpbuf() Local Buffer Overflow Exploit 6970 R D n/a
2004-08-13 ProFTPd Local pr_ctrls_connect Vuln - ftpdctl 7145 R D pi3
2004-08-04 SoX Local Buffer Overflow Exploiter (Via Crafted WAV File) 4406 R D Rave
2004-08-04 Linux Kernel File Offset Pointer Handling Memory Disclosure Exploit 6529 R D Paul Starzetz
2004-08-01 SoX Local Buffer Overflow Exploit 4530 R D Serkan Akpolat
2004-04-20 SquirrelMail chpasswd buffer overflow 8445 R D x314
2004-03-01 Linux Kernel 2.x mremap missing do_munmap Exploit 9827 R D Paul Starzetz
2004-02-18 Linux Kernel "mremap()"#2 Local Proof-of-concept 6905 R D Christophe Devine
2004-02-13 rsync <= 2.5.7 Local stack overflow Root Exploit 5334 R D Abhisek Datta
2004-01-15 SuSE linux 9.0 YaST config Skribt Local Exploit 6983 R D l0om
2004-01-15 Linux Kernel 2.4.x mremap() bound checking Root Exploit 13543 R D Paul Starzetz
2004-01-07 Linux Kernel "do_mremap" Local Proof of Concept II 6570 R D Christophe Devine
2004-01-06 Linux Kernel "do_mremap" Local Proof of Concept 6166 R D Christophe Devine
2004-01-02 Xsok v1.02 "-xsokdir" local buffer overflow game exploit 4025 R D c0wboy
2003-12-05 Linux Kernel <= 2.4.22 (do_brk) Local Root Exploit (working) 16627 R D Wojciech Purczynski
2003-12-02 Linux Kernel 2.4.22 "do_brk()" local Root Exploit (PoC) 11949 R D Christophe Devine
2003-11-13 TerminatorX <= 3.81 stack overflow local root exploit 4460 R D Li0n7
2003-09-27 IBM DB2 Universal Database 7.2 (db2licm) Local Exploit 5295 R D Juan Escriba
2003-09-21 hztty 2.0 Local root exploit (Tested on Red Hat 9.0) 5344 R D c0wboy
2003-09-09 RealPlayer 9 *nix Local Privilege Escalation Exploit 5210 R D Jon Hart
2003-09-05 Stunnel <= 3.24, 4.00 Daemon Hijacking Proof of Concept Exploit 4245 R D Steve Grubb
2003-08-06 man-db 2.4.1 open_cat_stream() Local uid=man Exploit 5296 R D vade79
2003-08-01 xtokkaetama 1.0b Local Game Exploit (Red Hat 9.0) 4533 R D brahma
2003-07-31 XGalaga 2.0.34 local game exploit (Red Hat 9.0) 4782 R D c0wboy
2003-06-10 Mandrake Linux 8.2 /usr/mail local exploit (d86mail.pl) 7527 R D n/a
2003-05-14 CdRecord Version <= 2.0 Mandrake local root exploit 6485 R D n/a
2003-04-29 Qpopper 4.0.x poppassd Local Root Exploit 6072 R D Xpl017Elz
2003-04-14 Linux Kernel < 2.4.20 Module Loader Local Root Exploit 14817 R D KuRaK
2003-03-30 Linux Kernel 2.2.x - 2.4.x ptrace/kmod Local Root Exploit 16986 R D Wojciech Purczynski
2003-01-15 GLIBC locale format strings exploit 4360 R D logikal
2001-07-13 Debian 2.2 /usr/bin/pileup Local Root Exploit 6714 R D Charles Stevenson
2001-03-04 GLIBC 2.1.3 ld_preload Local Exploit 4699 R D shadow
2001-03-03 Slackware 7.1 /usr/bin/mail Local Exploit 4471 R D kengz
2001-01-26 splitvt < 1.6.5 Local Exploit 3917 R D Michel Kaempf
2001-01-25 jaZip 0.32-2 Local Buffer Overflow Exploit 4119 R D teleh0r
2001-01-25 glibc-2.2 and openssh-2.3.0p1 exploits glibc >= 2.1.9x 7921 R D krochos
2001-01-19 Redhat 6.1 man Local Exploit (egid 15) 4542 R D teleh0r
2001-01-15 Seyon Exploit / Tested Version 2.1 rev. 4b i586-Linux 4273 R D teleh0r
2001-01-01 Sendmail 8.11.x Exploit (i386-Linux) 9532 R D sd
2000-12-15 Linux xsoldier-0.96 exploit (Red Hat 6.2) 4675 R D zorgon
2000-12-15 Pine (Local Message Grabber) Exploit 4551 R D Mat
2000-12-06 Kwintv Local Buffer Overflow Exploit (gid=video(33)) 4631 R D Cody Tubbs
2000-12-06 gnome_segv local buffer overflow 4344 R D Cody Tubbs
2000-12-04 UUCP Exploit - file creation/overwriting (symlinks) 4272 R D t--zen
2000-12-04 expect (/usr/bin/expect) buffer overflow 4234 R D isox
2000-12-04 GnomeHack Local Buffer Overflow Exploit (gid=games) 4610 R D Cody Tubbs
2000-12-02 mount exploit for glibc locale bug 4716 R D sk8
2000-12-02 dislocate - Local i386 exploit in v1.3 4023 R D Michel Kaempf
2000-11-30 GLIBC (via /bin/su) Local Root Exploit 4650 R D localcore
2000-11-29 rpc Suid Privledge Exploit 5649 R D Tlabs
2000-11-29 dump 0.4b15 exploit (Redhat 6.2) 4378 R D Mat
2000-11-21 vixie-cron Local Root Exploit 5922 R D Michal Zalewski
2000-11-19 dump 0.4b15 Local Root Exploit 4713 R D Mat
2000-11-17 xsplumber - strcpy() buffer overflow 5139 R D vade79
2000-11-16 /sbin/restore exploit (rh6.2) 6121 R D n/a
2000-11-16 Oracle (oidldapd connect) Local Command Line Overflow Exploit 7411 R D n/a
2000-11-16 Restore and Dump Local Exploit 4478 R D Tlabs
2000-11-15 traceroute Local Root Exploit 5537 R D Michel Kaempf
2000-11-15 GnomeHack 1.0.5 Local Buffer Overflow Exploit 5088 R D vade79
1997-06-20 zgv $HOME overflow 4131 R D BeastMaster V
1997-05-14 LibXt XtAppInitialize() overflow *xterm exploit 3950 R D Ming Zhang
1996-10-25 BSD and Linux lpr Command Local Root Exploit 4508 R D Vadim Kolontsov
1996-08-24 Xt Library Local Root Command Execution Exploit 4050 R D b0z0 bra1n
1996-06-01 suid_perl 5.001 vulnerability 5646 R D Jon Lewis
1996-02-13 sudo.bin NLSPATH Local Root Exploit 5166 R D _Phantom_
1996-01-01 Resolv+ (RESOLV_HOST_CONF) Linux Library Local Exploit 5031 R D Jared Mauch

[ linux - dos ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-08-18 Linux Kernel < 2.6.30.5 cfg80211 Remote Denial of Service Exploit 7653 R D Jon Oberheide
2009-07-27 stftp <= 1.10 (PWD Response) Remote Stack Overflow PoC 1790 R D sqlevil
2009-07-27 ISC DHCP dhclient < 3.1.2p1 Remote Buffer Overflow PoC 9290 R D Jon Oberheide
2009-06-17 compface <= 1.5.2 (XBM File) Local Buffer Overflow PoC 2714 R D metalhoney
2009-06-15 LinkLogger 2.4.10.15 (syslog) Denial of Service Exploit 1688 R D h00die
2009-06-15 Apple QuickTime CRGN Atom Local Crash Exploit 2533 R D webDEViL
2009-04-27 iodined <= 0.4.2-2 (forged DNS packet) Denial of Service Exploit 1883 R D Albert Sellares
2009-04-17 XRDP <= 0.4.1 Remote Buffer Overflow PoC (pre-auth) 2339 R D joe walko
2009-03-12 JDKChat 1.5 Remote Integer Overflow PoC 2485 R D n3tpr0b3
2008-12-14 Linux Kernel 2.6.27.7-generic - 2.6.18 - 2.6.24-1 Local DoS Exploit 13938 R D Adurit-T
2008-12-10 Linux Kernel <= 2.6.27.8 ATMSVC Local Denial of Service Exploit 7805 R D Jon Oberheide
2008-11-18 CUPS 1.3.7 CSRF (add rss subscription) Remote Crash Exploit 4628 R D X Adrian "pagvac" Pastor
2008-11-12 Net-SNMP <= 5.1.4/5.2.4/5.4.1 Perl Module Buffer Overflow PoC 4629 R D Praveen Darshanam
2008-11-11 Linux Kernel < 2.4.36.9/2.6.27.5 Unix Sockets Local Kernel Panic Exploit 9413 R D Andrea Bittau
2008-10-10 Konqueror 3.5.9 (load) Remote Crash Vulnerability 4118 R D X Jeremy Brown
2008-10-08 Konqueror 3.5.9 (color/bgcolor) Multiple Remote Crash Vulnerabilities 3373 R D Jeremy Brown
2008-10-06 Konqueror 3.5.9 (font color) Remote Crash Vulnerability 3584 R D Jeremy Brown
2008-09-19 fhttpd 0.4.2 un64() Remote Denial of Service Exploit 3758 R D Jeremy Brown
2008-06-14 vsftpd 2.0.5 (CWD) Remote Memory Consumption Exploit (post auth) 12263 R D Praveen Darshanam
2008-05-11 rdesktop 1.5.0 process_redirect_pdu() BSS Overflow Vulnerability PoC 7315 R D Guido Landi
2008-05-08 rdesktop 1.5.0 iso_recv_msg() Integer Underflow Vulnerability PoC 6343 R D Guido Landi
2008-04-16 xine-lib <= 1.1.12 NSF demuxer Stack Overflow Vulnerability PoC 6424 R D Guido Landi
2008-03-25 MPlayer sdpplin_parse() Array Indexing Buffer Overflow Exploit PoC 8215 R D Guido Landi
2008-03-01 Galaxy FTP Server 1.0 (Neostrada Livebox DSL Router) DoS Exploit 6645 R D 0in
2008-01-11 Linux Kernel <=2.6.21.1 IPv6 Jumbo Bug Remote DoS Exploit 10202 R D Clemens Kurtenbach
2007-12-14 Samba 3.0.27a send_mailslot() Remote Buffer Overflow PoC 6453 R D x86
2007-11-02 Firefly Media Server <= 0.2.4 Remote Denial of Service Exploit 4877 R D nnp
2007-10-15 eXtremail <= 2.1.1 memmove() Remote Denial of Service Exploit 5432 R D mu-b
2007-10-15 eXtremail <= 2.1.1 Remote Heap Overflow PoC 5781 R D mu-b
2007-08-31 Wireshark < 0.99.5 DNP3 Dissector Infinite Loop Exploit 5227 R D Beyond Security
2007-07-23 Xserver 0.1 Alpha Post Request Remote Buffer Overflow Exploit 4040 R D deusconstruct
2007-05-17 MagicISO <= 5.4(build239) .cue File Heap Overflow PoC 6022 R D n00b
2007-04-27 MyDNS 1.1.0 Remote Heap Overflow PoC 6494 R D mu-b
2007-04-20 eXtremail <= 2.1.1 DNS Parsing Bugs Remote Exploit PoC 7048 R D mu-b
2007-03-27 PHP 4.4.5 / 4.4.6 session_decode() Double Free Exploit PoC 9887 R D Stefan Esser
2007-03-09 Linux Omnikey Cardman 4040 driver Local Buffer Overflow Exploit PoC 3673 R D Daniel Roethlisberger
2007-03-05 Konqueror 3.5.5 (JavaScript Read of FTP Iframe) DoS Exploit 6400 R D X mark
2007-03-02 PHP <= 4.4.4 unserialize() ZVAL Reference Counter Overflow Exploit PoC 6582 R D Stefan Esser
2007-02-08 Axigen <= 2.0.0b1 Remote Denial of Service Exploit 7364 R D mu-b
2007-02-08 Axigen <= 2.0.0b1 Remote Denial of Service Exploit (2) 6944 R D mu-b
2006-12-26 KsIRC 1.3.12 (PRIVMSG) Remote Buffer Overflow PoC 5232 R D Federico L. Bossi Bonin
2006-12-19 KDE 3.5 (libkhtml) <= 4.2.0 / Unhandled HTML Parse Exception Exploit 5198 R D X Federico L. Bossi Bonin
2006-12-14 Kerio MailServer 6.2.2 preauth Remote Denial of Service PoC 4660 R D Evgeny Legerov
2006-12-13 ProFTPD <= 1.3.0a (mod_ctrls support) Local Buffer Overflow PoC 8906 R D Core Security
2006-12-04 F-Prot Antivirus 4.6.6 (ACE) Denial of Service Exploit 4909 R D Evgeny Legerov
2006-12-04 F-Prot Antivirus 4.6.6 (CHM) Heap Overflow Exploit PoC 4825 R D Evgeny Legerov
2006-11-06 OpenLDAP 2.2.29 Remote Denial of Service Exploit (meta) 5512 R D Evgeny Legerov
2006-07-21 Sendmail <= 8.13.5 Remote Signal Handling Exploit PoC 13326 R D redsand
2006-06-09 0verkill 0.16 (ASCII-ART Game) Remote Integer Overflow Crash Exploit 5368 R D Federico Fazzi
2006-06-05 Linux Kernel < 2.6.16.18 (Netfilter NAT SNMP Module) Remote DoS Exploit 11720 R D ECL Labs
2006-05-30 gxine 0.5.6 (HTTP Plugin) Remote Buffer Overflow PoC 6167 R D Federico L. Bossi Bonin
2006-05-22 portmap 5 beta (Set/Dump) Local Denial of Service Exploit 5080 R D Federico L. Bossi Bonin
2006-05-04 zawhttpd <= 0.8.23 (GET) Remote Buffer Overflow DoS 4275 R D Kamil Sienicki
2006-04-09 Linux Kernel 2.6.x sys_timer_create() Local Denial of Service Exploit 9458 R D fingerout
2006-04-04 Libxine <= 1.14 MPEG Stream Buffer Overflow Vulnerability PoC 6721 R D Federico L. Bossi Bonin
2006-04-02 mpg123 0.59r Malformed mp3 (SIGSEGV) Proof of Concept 4885 R D nitr0us
2005-09-05 CUPS Server <= 1.1 (Get Request) Denial of Service Exploit 5903 R D tracewar
2005-05-17 Linux Kernel <= 2.6.12-rc4 (ioctl_by_bdev) Local Denial of Service Exploit 8722 R D alert7
2005-05-17 Gaim <= 1.2.1 URL Handling Remote Stack Overflow Exploit 4595 R D Ron
2005-04-26 Tcpdump 3.8.x (ldp_print) Infinite Loop Denial of Service Exploit 4953 R D vade79
2005-04-26 Tcpdump 3.8.x (rt_routing_info) Infinite Loop Denial of Service Exploit 4857 R D vade79
2005-04-26 Tcpdump 3.8.x/3.9.1 (isis_print) Infinite Loop DoS Exploit 5003 R D vade79
2005-04-04 Linux Kernel PPC64/IA64 (AIO) Local Denial of Service Exploit 5489 R D Daniel McNeil
2005-03-29 Linux Kernel <= 2.6.10 Local Denial of Service Exploit 7303 R D ChoiX
2005-02-25 wu-ftpd <= 2.6.2 File Globbing Denial of Service Exploit 7008 R D str0ke
2005-02-12 CA BrightStor ARCserve Backup Remote Buffer Overlow PoC 5576 RM D cybertronic
2005-02-05 ngIRCd <= 0.8.1 Remote Denial of Service Exploit (2) 5113 R D CorryL
2004-12-16 Linux Kernel <= 2.6.9, <= 2.4.28 vc_resize int Local Overflow Exploit 12221 R D Georgi Guninski
2004-12-16 Linux Kernel <= 2.6.9, <= 2.4.28 Memory Leak Local DoS 8563 R D Georgi Guninski
2004-12-16 Linux Kernel <= 2.6.9, <= 2.4.28 ip_options_get Local Overflow 12827 R D Georgi Guninski
2004-12-14 Linux Kernel <= 2.4.28 and <= 2.6.9 scm_send local DoS Exploit 8168 R D Paul Starzetz
2004-12-14 Linux Kernel (<= 2.6.9, 2.4.22-28) (igmp.c) Local Denial of Service Exploit 8253 R D Paul Starzetz
2004-09-27 MyServer 0.7.1 (POST) Denial Of Service Exploit 4399 R D Tom Ferris
2004-08-02 Citadel/UX Remote Denial of Service Exploit (PoC) 3960 R D CoKi
2004-08-02 Apache HTTPd Arbitrary Long HTTP Headers DoS (c version) 10733 R D n/a
2004-06-25 Linux Kernel 2.4.x-2.6.x Assembler Inline Function Local DoS Exploit 7212 R D lorenzo
2004-04-21 Linux Kernel <= 2.6.3 (setsockopt) Local Denial of Service Exploit 6122 R D Julien Tinnes
2003-10-31 wu-ftpd 2.6.2 Remote Denial Of Service Exploit (wuftpd-freezer.c) 6508 R D Angelo Rosiello
2003-07-29 Linux Kernel <= 2.4.20 decode_fh Denial of Service Exploit 7333 R D Jared Stanbrough
2003-04-11 Apache <= 2.0.44 Linux Remote Denial of Service Exploit 11058 R D Daniel Nyström
2001-01-15 APC UPS 3.7.2 (apcupsd) Local Denial of Service Exploit 4492 R D the itch
2001-01-03 ml2 - local users can crash processes 4429 R D Stealth
2001-01-02 Redhat 6.1 / 6.2 TTY Flood Users Exploit 5867 R D teleh0r
2000-11-17 Slackware Linux /usr/bin/ppp-off Insecure /tmp Call Exploit 5362 R D sinfony



send all submissions to submit[at]milw0rm.com [gpg]
Copyright © 2004-2009 milw0rm