5353 matches found
DSA-543-1 krb5 -- several vulnerabilities
Bulletin has no description...
GLSA-200404-14 : Multiple format string vulnerabilities in cadaver
The remote host is affected by the vulnerability described in GLSA-200404-14 Multiple format string vulnerabilities in cadaver Cadaver code includes the neon library, which in versions 0.24.4 and previous is vulnerable to multiple format string attacks. The latest version of cadaver uses version...
GLSA-200407-06 : libpng: Buffer overflow on row buffers
The remote host is affected by the vulnerability described in GLSA-200407-06 libpng: Buffer overflow on row buffers Due to a wrong calculation of loop offset values, libpng contains a buffer overflow vulnerability on the row buffers. This vulnerability was initially patched in January 2003 but...
CVE-2004-0798
Buffer overflow in the maincfgret.cgi script for Ipswitch WhatsUp Gold before 8.03 Hotfix 1 allows remote attackers to execute arbitrary code via a long instancename parameter...
Sun Solaris dtmail contains a format string vulnerability
Overview A vulnerability in the way dtmail handles command-line arguments could allow an attacker to execute arbitrary code. Description The dtmail program is a mail user agent MUA for the Common Desktop Environment CDE. It provides a graphical user interface for reading, sending, and managing...
gv: Exploitable Buffer Overflow
Background gv is a PostScript and PDF viewer for X which provides a user interface for the ghostscript interpreter. Description gv contains a buffer overflow vulnerability where an unsafe sscanf call is used to interpret PDF and PostScript files. Impact By enticing a user to view a malformed PDF ...
GNU Mailutils 0.6 - Mail Email Header Buffer Overflow
source: https://www.securityfocus.com/bid/13766/info GNU Mailutils mail is affected by an email header buffer overflow vulnerability. The problem exists in the 'headergetfieldname' function of the 'mailbox/header.c' source file and manifests while the software is processing superfluous email head...
CVE-2004-0579
Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root...
CVE-2004-0579
Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root...
CVE-2004-0649
Buffer overflow in writepacket in control.c for l2tpd may allow remote attackers to execute arbitrary code...
CVE-2004-0733
The CVE-2004-0733 issue affects OllyDbg 1.10, with a format string vulnerability in calls to OutputDebugString. The underlying flaw allows remote attackers to trigger a crash (DoS) and potentially execute arbitrary code via untrusted format specifiers. Documentation notes the impact as Denial of ...
Fedora Core 1 : rsync-2.5.7-2 (2003-030)
A heap overflow bug exists in rsync versions prior to 2.5.7. On machines where the rsync server has been enabled, a remote attacker could use this flaw to execute arbitrary code as an unprivileged user. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the name...
Fedora Core 2 : libpng10-1.0.15-5 (2004-176)
During an audit of Red Hat Linux updates, the Fedora Legacy team found a security issue in libpng that had not been fixed in Fedora Core. An attacker could carefully craft a PNG file in such a way that it would cause an application linked to libpng to crash or potentially execute arbitrary code...
SCO Multi-channel Memorandum Distribution Facility - Multiple Vulnerabilities
/ source: https://www.securityfocus.com/bid/10758/info It has been reported that the SCO Multi-channel Memorandum Distribution Facility MMDF is affected by multiple vulnerabilities. These issues are due to a failure of the utility to properly validate buffer boundaries when copying user-supplied...
CVE-2004-0398
Heap-based buffer overflow in the nerfc1036parse date parsing function for the neon library libneon 0.24.5 and earlier, as used by cadaver before 0.22, allows remote WebDAV servers to execute arbitrary code on the client...
CVE-2004-0402
Buffer overflow in xpcd-svga in xpcd before 2.08, and possibly other versions, may allow local users to execute arbitrary code...
CVE-2004-0454
Buffer overflow in the msg function for rlpr daemon rlprd 2.04 allows local users to execute arbitrary code...
[UNIX] Artmedic Links File Inclusion Vulnerability
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
mod_ssl
New modssl packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix a security issue. The packages were upgraded to modssl-2.8.18-1.3.31 fixing a buffer overflow that may allow remote attackers to execute arbitrary code via a client certificate with a long subject DN, if modssl is...
Mollensoft Lightweight FTP Server 3.6 - Remote Buffer Overflow
Mollensoft Lightweight FTP Server 3.6 - Remote Buffer Overflow source: https://www.securityfocus.com/bid/10429/info Lightweight FTP Server is prone to a remote buffer overflow vulnerability. This vulnerability can potentially allow a remote attacker to execute arbitrary code in the context of the...