|
2008-01-28
|
|
Oracle 10g R1 - xdb.xdb_pitrig_pkg PLSQL Injection (Change Sys Password)
|
31 |
LOCAL
|
sh2kerr
|
|
2008-01-28
|
|
Oracle 10g R1 - 'PITRIG_TRUNCATE' Get Users Hash / PL/SQL Injection
|
23 |
LOCAL
|
sh2kerr
|
|
2008-01-28
|
|
Oracle 10g R1 - 'pitrig_drop' Get Users Hash / PL/SQL Injection
|
20 |
LOCAL
|
sh2kerr
|
|
2008-01-18
|
|
Microsoft Visual Basic Enterprise 6 SP6 - '.dsr' File Handling Buffer Overflow
|
31 |
LOCAL
|
shinnai
|
|
2008-01-11
|
|
Microsoft Visual InterDev 6.0 SP6 - '.sln' Local Buffer Overflow
|
27 |
LOCAL
|
shinnai
|
|
2008-01-05
|
|
CoolPlayer 2.17 - '.m3u' Local Stack Overflow
|
25 |
LOCAL
|
Trancek
|
|
2007-12-19
|
|
Apple Mac OSX - 'mount_smbfs' Local Stack Buffer Overflow
|
26 |
LOCAL
|
Subreption LLC.
|
|
2007-12-18
|
|
Linux Kernel < 2.6.11.5 - BlueTooth Stack Privilege Escalation
|
26 |
LOCAL
|
Backdoored
|
|
2007-12-18
|
|
jetAudio 7.0.5 COWON Media Center MP4 - Local Stack Overflow
|
23 |
LOCAL
|
SYS 49152
|
|
2007-12-18
|
|
Rosoft Media Player 4.1.7 - '.m3u' Local Stack Overflow
|
29 |
LOCAL
|
devcode
|
|
2007-12-08
|
|
NullSoft Winamp 5.32 - .MP4 Tags Stack Overflow
|
25 |
LOCAL
|
SYS 49152
|
|
2007-12-08
|
|
Microsoft Windows Media Player 6.4 - '.MP4' File Stack Overflow
|
25 |
LOCAL
|
SYS 49152
|
|
2007-12-08
|
|
Media Player Classic 6.4.9 - '.MP4' File Stack Overflow
|
25 |
LOCAL
|
SYS 49152
|
|
2007-12-06
|
|
Send ICMP Nasty Garbage (SING) - Append File Logrotate
|
25 |
LOCAL
|
bannedit
|
|
2007-11-16
|
|
Microsoft Jet Engine - '.MDB' File Parsing Stack Overflow
|
26 |
LOCAL
|
cocoruder
|
|
2007-11-07
|
|
IBM AIX 5.3.0 - 'setlocale()' Local Privilege Escalation
|
26 |
LOCAL
|
Thomas Pollet
|
|
2007-10-29
|
|
Kodak Image Viewer - TIF/TIFF Code Execution (MS07-055)
|
23 |
LOCAL
|
Gil-Dong / Woo-Chi
|
|
2007-10-29
|
|
Sony CONNECT Player 4.x - '.m3u' Local Stack Overflow
|
22 |
LOCAL
|
TaMBaRuS
|
|
2007-10-27
|
|
Oracle 10g - 'LT.FINDRICSET' SQL Injection (IDS Evasion)
|
25 |
LOCAL
|
sh2kerr
|
|
2007-10-27
|
|
Oracle 10g/11g - 'SYS.LT.FINDRICSET' SQL Injection (2)
|
22 |
LOCAL
|
bunker
|
|
2007-10-27
|
|
Oracle 10g/11g - 'SYS.LT.FINDRICSET' SQL Injection (1)
|
29 |
LOCAL
|
bunker
|
|
2007-10-23
|
|
Oracle 10g - 'CTX_DOC.MARKUP' SQL Injection
|
27 |
LOCAL
|
sh2kerr
|
|
2007-10-22
|
|
PHP 5.x COM - Safe Mode / disable_functions Bypass
|
25 |
LOCAL
|
shinnai
|
|
2007-10-14
|
|
jetAudio 7.x - '.m3u' Local Overwrite (SEH)
|
27 |
LOCAL
|
h07
|
|
2007-10-11
|
|
PHP 5.2.4 ionCube - 'ioncube_read_file' Safe Mode / disable_functions Bypass
|
25 |
LOCAL
|
shinnai
|
|
2007-10-10
|
|
Solaris (SPARC/x86) - fifofs I_PEEK Kernel Memory Disclosure
|
27 |
LOCAL
|
qaaz
|
|
2007-09-01
|
|
Solaris 10 (SPARC/x86) - sysinfo Kernel Memory Disclosure
|
24 |
LOCAL
|
qaaz
|
|
2007-09-27
|
|
Linux Kernel 2.4/2.6 (x86-64) - System Call Emulation Privilege Escalation
|
29 |
LOCAL
|
Robert Swiecki
|
|
2007-09-19
|
|
Microsoft Visual Basic Enterprise 6.0 SP6 - Code Execution
|
28 |
LOCAL
|
shinnai
|
|
2007-09-10
|
|
PHP 4.4.7/5.2.3 - MySQL/MySQLi 'Safe_Mode' Bypass
|
25 |
LOCAL
|
Mattias Bengtsson
|
|
2007-09-05
|
|
AtomixMP3 2.3 - '.pls' Local Buffer Overflow
|
27 |
LOCAL
|
0x58
|
|
2007-09-04
|
|
Microsoft Visual Basic 6.0 - VBP_Open OLE Local CodeExec
|
24 |
LOCAL
|
Koshi
|
|
2007-09-02
|
|
OtsTurntables 1.00 - '.m3u' Local Buffer Overflow
|
26 |
LOCAL
|
0x58
|
|
2007-09-02
|
|
Virtual DJ 5.0 - '.m3u' Local Buffer Overflow
|
25 |
LOCAL
|
0x58
|
|
2007-08-30
|
|
Norman Virus Control - 'nvcoaft51.sys' ioctl BF672028
|
24 |
LOCAL
|
inocraM
|
|
2007-08-27
|
|
XAMPP for Windows 1.6.3a - Local Privilege Escalation
|
27 |
LOCAL
|
Inphex
|
|
2007-08-25
|
|
PHP 'Perl' Extension - 'Safe_mode' Bypass
|
29 |
LOCAL
|
NetJackal
|
|
2007-08-23
|
|
PHP 'FFI' Extension 5.0.5 - 'Safe_mode' Local Bypass
|
25 |
LOCAL
|
NetJackal
|
|
2007-08-22
|
|
PHP 5.2.3 - 'PHP_win32sti' Local Buffer Overflow (2)
|
24 |
LOCAL
|
NetJackal
|
|
2007-08-22
|
|
PHP 5.2.3 - 'PHP_win32sti' Local Buffer Overflow (1)
|
30 |
LOCAL
|
Inphex
|
|
2007-08-09
|
|
PHP 5.2.3 - 'snmpget()' object id Local Buffer Overflow (EDI)
|
26 |
LOCAL
|
Inphex
|
|
2007-08-08
|
|
PHP mSQL (msql_connect) - Local Buffer Overflow
|
26 |
LOCAL
|
Inphex
|
|
2007-08-06
|
|
Live for Speed S1/S2/Demo - '.spr' Local Buffer Overflow
|
23 |
LOCAL
|
n00b
|
|
2007-08-06
|
|
Live for Speed S1/S2/Demo - '.ply' Local Buffer Overflow
|
26 |
LOCAL
|
n00b
|
|
2007-08-05
|
|
Panda AntiVirus 2008 - Local Privilege Escalation
|
29 |
LOCAL
|
tarkus
|
|
2007-08-01
|
|
Live for Speed S1/S2/Demo - '.mpr replay' Local Buffer Overflow
|
25 |
LOCAL
|
n00b
|
|
2007-07-27
|
|
PHP 5.x - 'Win32service' Local 'Safe_Mode()' Bypass
|
24 |
LOCAL
|
NetJackal
|
|
2007-07-27
|
|
IBM AIX 5.3 SP6 - FTP 'gets()' Local Privilege Escalation
|
28 |
LOCAL
|
qaaz
|
|
2007-07-27
|
|
IBM AIX 5.3 SP6 - 'pioout' Arbitrary Library Loading Privilege Escalation
|
23 |
LOCAL
|
qaaz
|
|
2007-07-27
|
|
IBM AIX 5.3 SP6 - Capture Terminal Sequence Privilege Escalation
|
26 |
LOCAL
|
qaaz
|
|
2007-07-26
|
|
CrystalPlayer 1.98 - '.mls' Local Buffer Overflow
|
26 |
LOCAL
|
Arham Muhammad
|
|
2007-07-24
|
|
PHP 5.2.3 Win32std - 'win_shell_execute' Safe Mode / disable_functions Bypass
|
24 |
LOCAL
|
shinnai
|
|
2007-07-20
|
|
PHP 5.2.3 - 'snmpget()' Object id Local Buffer Overflow
|
25 |
LOCAL
|
shinnai
|
|
2007-07-19
|
|
Oracle 9i/10g - Evil Views Change Passwords
|
27 |
LOCAL
|
bunker
|
|
2007-07-12
|
|
Symantec AntiVirus - 'symtdi.sys' Local Privilege Escalation
|
26 |
LOCAL
|
Zohiartze Herce
|
|
2007-07-10
|
|
Linux Kernel < 2.6.20.2 - 'IPv6_Getsockopt_Sticky' Memory Leak
|
27 |
LOCAL
|
dreyer
|
|
2007-07-10
|
|
WinPcap 4.0 - 'NPF.SYS' Local Privilege Escalation
|
24 |
LOCAL
|
Mario Ballano Bárcena
|
|
2007-06-19
|
|
PHP 5.2.3 'Tidy' Extension - Local Buffer Overflow
|
25 |
LOCAL
|
rgod
|
|
2007-06-08
|
|
MoviePlay 4.76 - '.lst' Local Buffer Overflow
|
27 |
LOCAL
|
n00b
|
|
2008-06-18
|
|
Screen 4.0.3 (OpenBSD) - Local Authentication Bypass
|
28 |
LOCAL
|
Rembrandt
|
|
2007-06-02
|
|
DVD X Player 4.1 Professional - '.PLF' File Buffer Overflow
|
25 |
LOCAL
|
n00b
|
|
2007-05-30
|
|
Apple Mac OSX < 2007-005 - 'vpnd' Local Privilege Escalation
|
25 |
LOCAL
|
Kevin Finisterre
|
|
2007-05-28
|
|
UltraISO 8.6.2.2011 - '.cue/'.bin' Local Buffer Overflow (2)
|
25 |
LOCAL
|
Thomas Pollet
|
|
2007-05-28
|
|
UltraISO 8.6.2.2011 - '.cue/'.bin' Local Buffer Overflow (1)
|
26 |
LOCAL
|
n00b
|
|
2007-05-25
|
|
Apple Mac OSX 10.4.8 - pppd Plugin Loading Privilege Escalation
|
24 |
LOCAL
|
qaaz
|
|
2007-05-23
|
|
MagicISO 5.4 (build239) - '.cue' File Local Buffer Overflow
|
23 |
LOCAL
|
vade79
|
|
2007-05-12
|
|
Notepad++ 4.1 (Windows x86) - '.ruby' File Processing Buffer Overflow
|
26 |
LOCAL
|
vade79
|
|
2007-05-11
|
|
eTrust AntiVirus Agent r8 - Local Privilege Escalation
|
32 |
LOCAL
|
binagres
|
|
2007-05-09
|
|
GIMP 2.2.14 (Windows x86) - '.ras' Download/Execute Buffer Overflow
|
27 |
LOCAL
|
Kristian Hermansen
|
|
2007-05-05
|
|
East Wind Software - 'advdaudio.ocx 1.5.1.1' Local Buffer Overflow
|
23 |
LOCAL
|
shinnai
|
|
2007-04-30
|
|
Winamp 5.34 - '.mp4' Code Execution
|
25 |
LOCAL
|
Marsu
|
|
2007-04-27
|
|
Photoshop CS2/CS3 / Paint Shop Pro 11.20 - '.png' Local Buffer Overflow
|
25 |
LOCAL
|
Marsu
|
|
2007-04-27
|
|
IrfanView 4.00 - '.iff' Local Buffer Overflow
|
23 |
LOCAL
|
Marsu
|
|
2007-04-26
|
|
GIMP 2.2.14 - '.ras' SUNRAS Plugin Buffer Overflow
|
24 |
LOCAL
|
Marsu
|
|
2007-04-25
|
|
FreshView 7.15 - '.psp' Local Buffer Overflow
|
27 |
LOCAL
|
Marsu
|
|
2007-04-25
|
|
ABC-View Manager 1.42 - '.psp' Local Buffer Overflow
|
26 |
LOCAL
|
Marsu
|
|
2007-04-24
|
|
Adobe Photoshop CS2 / CS3 - '.bmp' Local Buffer Overflow
|
24 |
LOCAL
|
Marsu
|
|
2007-04-23
|
|
Corel Paint Shop Pro Photo 11.20 - '.clp' Local Buffer Overflow
|
24 |
LOCAL
|
Marsu
|
|
2007-04-22
|
|
XnView 1.90.3 - '.xpm' Local Buffer Overflow
|
27 |
LOCAL
|
Marsu
|
|
2007-04-22
|
|
ACDSee 9.0 - '.xpm' Local Buffer Overflow
|
25 |
LOCAL
|
Marsu
|
|
2007-04-21
|
|
PhotoFiltre Studio 8.1.1 - '.tif' Local Buffer Overflow
|
25 |
LOCAL
|
Marsu
|
|
2007-04-17
|
|
OllyDbg 1.10 - Local Format String
|
23 |
LOCAL
|
jamikazu
|
|
2007-04-17
|
|
Microsoft Windows - GDI Privilege Escalation (MS07-017) (2)
|
25 |
LOCAL
|
Lionel d'Hauenens
|
|
2007-04-13
|
|
ProFTPd 1.3.0/1.3.0a - 'mod_ctrls' exec-shield Local Overflow
|
27 |
LOCAL
|
Xpl017Elz
|
|
2007-04-13
|
|
VCDGear 3.56 Build 050213 - 'FILE' Local Code Execution
|
26 |
LOCAL
|
InTeL
|
|
2007-04-09
|
|
Microsoft Windows - Animated Cursor '.ani' Local Overflow
|
25 |
LOCAL
|
Breno Silva Pinto
|
|
2007-04-09
|
|
IrfanView 3.99 - '.ani' Local Buffer Overflow (2)
|
25 |
LOCAL
|
Breno Silva Pinto
|
|
2007-04-08
|
|
Microsoft Windows - GDI Privilege Escalation (MS07-017) (1)
|
26 |
LOCAL
|
Ivanlef0u
|
|
2007-04-04
|
|
TrueCrypt 4.3 - 'setuid' Local Privilege Escalation
|
22 |
LOCAL
|
Marco Ivaldi
|
|
2007-04-03
|
|
Microsoft Windows - Animated Cursor '.ani' Local Overflow (Hardware DEP)
|
25 |
LOCAL
|
devcode
|
|
2007-04-02
|
|
Ipswitch WS_FTP 5.05 - Server Manager Local Site Buffer Overflow
|
25 |
LOCAL
|
Marsu
|
|
2007-04-02
|
|
IrfanView 3.99 - '.ani' Local Buffer Overflow (1)
|
26 |
LOCAL
|
Marsu
|
|
2007-04-02
|
|
Microsoft Windows - Animated Cursor '.ani' Local Buffer Overflow
|
26 |
LOCAL
|
Marsu
|
|
2007-03-31
|
|
Microsoft Windows - Animated Cursor '.ani' Local Stack Overflow
|
27 |
LOCAL
|
devcode
|
|
2007-03-28
|
|
Linux Kernel 2.6.20 with DCCP Support - Memory Disclosure (2)
|
26 |
LOCAL
|
Robert Swiecki
|
|
2007-03-28
|
|
Corel WordPerfect X3 13.0.0.565 - '.prs' Local Buffer Overflow
|
26 |
LOCAL
|
Jonathan So
|
|
2007-03-27
|
|
Linux Kernel 2.6.20 with DCCP Support - Memory Disclosure (1)
|
28 |
LOCAL
|
Robert Swiecki
|
|
2007-03-26
|
|
FreeBSD mcweject 0.9 'Eject' - Local Buffer Overflow / Local Privilege Escalation
|
24 |
LOCAL
|
harry
|
|
2007-03-25
|
|
PHP 5.2.1 with PECL PHPDOC - Local Buffer Overflow
|
26 |
LOCAL
|
rgod
|
|
2007-03-25
|
|
PHP < 4.4.5/5.2.1 - '_SESSION' Deserialization Overwrite
|
27 |
LOCAL
|
Stefan Esser
|
|
2007-03-25
|
|
PHP < 4.4.5/5.2.1 - '_SESSION unset()' Local Overflow
|
24 |
LOCAL
|
Stefan Esser
|
|
2007-03-23
|
|
PHP 5.2.1 - 'Unserialize()' Local Information Leak
|
24 |
LOCAL
|
Stefan Esser
|
|
2007-03-20
|
|
PHP 5.2.1 - 'hash_update_file()' Freed Resource Usage
|
23 |
LOCAL
|
Stefan Esser
|
|
2007-03-20
|
|
PHP 4.4.6/5.2.1 - ext/gd Already Freed Resources Usage
|
27 |
LOCAL
|
Stefan Esser
|
|
2007-03-19
|
|
PHP 5.2.0 (OSX) - 'header()' Space Trimming Buffer Underflow
|
27 |
LOCAL
|
Stefan Esser
|
|
2007-03-16
|
|
PHP 4.4.6/5.2.1 - 'array_user_key_compare()' ZVAL dtor Local Overflow
|
23 |
LOCAL
|
Stefan Esser
|
|
2007-03-15
|
|
PHP 4.4.6 - 'ibase_connect()' Local Buffer Overflow
|
23 |
LOCAL
|
rgod
|
|
2007-03-14
|
|
PHP 5.2.0/5.2.1 - Rejected Session ID Double-Free
|
26 |
LOCAL
|
Stefan Esser
|
|
2007-03-14
|
|
PHP 5.2.1 - 'session_regenerate_id()' Double-Free
|
27 |
LOCAL
|
Stefan Esser
|
|
2007-03-12
|
|
PHP 5.2.0 (OSX) - EXT/Filter Space Trimming Buffer Underflow
|
27 |
LOCAL
|
Stefan Esser
|
|
2007-03-10
|
|
Oracle 10g (Windows x86) - 'PROCESS_DUP_HANDLE' Local Privilege Escalation
|
23 |
LOCAL
|
Cesar Cerrudo
|
|
2007-03-09
|
|
PHP 4.4.6 - 'cpdf_open()' Local Source Code Disclosure
|
26 |
LOCAL
|
rgod
|
|
2007-03-09
|
|
PHP 5.2.0 / PHP with PECL ZIP 1.8.3 - 'zip://' URL Wrapper Buffer Overflow
|
23 |
LOCAL
|
Stefan Esser
|
|
2007-03-09
|
|
PHP 4.4.6 - 'snmpget()' Object id Local Buffer Overflow
|
27 |
LOCAL
|
rgod
|
|
2007-03-08
|
|
PHP 4.4.6 - 'crack_opendict()' Local Buffer Overflow
|
26 |
LOCAL
|
rgod
|
|
2007-03-07
|
|
PHP 'COM' Extensions - inconsistent Win32 'safe_mode' Bypass
|
23 |
LOCAL
|
anonymous
|
|
2007-03-07
|
|
PHP < 4.4.5/5.2.1 - 'shmop' SSL RSA Private-Key Disclosure
|
24 |
LOCAL
|
Stefan Esser
|
|
2007-03-07
|
|
PHP < 4.4.5/5.2.1 - 'shmop' Local Code Execution
|
26 |
LOCAL
|
Stefan Esser
|
|
2007-03-07
|
|
PHP 5.2.1 - 'substr_compare()' Information Leak
|
26 |
LOCAL
|
Stefan Esser
|
|
2007-03-05
|
|
PHP 4.4.6 - 'mssql_[p]connect()' Local Buffer Overflow
|
24 |
LOCAL
|
rgod
|
|
2007-03-04
|
|
PHP < 4.4.5/5.2.1 - WDDX Session Deserialization Information Leak
|
23 |
LOCAL
|
Stefan Esser
|
|
2007-03-04
|
|
PHP < 4.4.5/5.2.1 - PHP_binary Session Deserialization Information Leak
|
26 |
LOCAL
|
Stefan Esser
|
|
2007-02-28
|
|
McAfee VirusScan for Mac (Virex) 7.7 - Local Privilege Escalation
|
26 |
LOCAL
|
Kevin Finisterre
|
|
2007-02-28
|
|
Apache 1.3.34/1.3.33 (Ubuntu / Debian) - CGI TTY Privilege Escalation
|
27 |
LOCAL
|
Kristian Hermansen
|
|
2007-02-28
|
|
Plan 9 Kernel - 'devenv.c OTRUNC/pwrite' Local Privilege Escalation
|
25 |
LOCAL
|
Don Bailey
|
