monkeyd: Multiple vulnerabilities

Background monkeyd is a fast, efficient, small and easy to configure web server for Linux. Description Tavis Ormandy of the Gentoo Linux Security Audit Team discovered a double expansion error in monkeyd, resulting in a format string vulnerability. Ciaran McCreesh of Gentoo Linux discovered a...

Monkey HTTP Daemon (monkeyd) < 0.9.1 Multiple Vulnerabilities

The version of the Monkey HTTP Server installed on the remote host suffers from the following flaws : - A Format String Vulnerability A remote attacker may be able to execute arbitrary code with the permissions of the user running monkeyd by sending a specially- crafted request. - A Denial of...

CVE-2004-1004

Multiple format string vulnerabilities in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...

CVE-2005-1122

Format string vulnerability in cgi.c for Monkey daemon monkeyd before 0.9.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP GET request containing double-encoded format string specifiers aka "double expansion error"...

CVE-2004-1004

Multiple format string vulnerabilities in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...

CVE-2004-1004

Multiple format string vulnerabilities in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...

DEBIAN-CVE-2004-1004

Multiple format string vulnerabilities in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...

oops -- format string vulnerability

A RST/GHC Advisory reports that there is an format string vulnerability in oops. The vulnerability can be found in the MySQL/PgSQL authentication module. Succesful exploitation may allow execution of arbitrary code...

GLSA-200504-10 : Gld: Remote execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200504-10 Gld: Remote execution of arbitrary code dong-hun discovered several buffer overflows in server.c, as well as several format string vulnerabilities in cnf.c. Impact : An attacker could exploit this vulnerability to execut...

CVE-2005-1100

CVE-2005-1100 affects Greylisting daemon (GLD) 1.3 and 1.4. The vulnerability is a format-string bug in the ErrorLog function (cnf.c) that allows remote code execution via data passed to syslog. Linked advisories (GLSA 200504-10) describe remote arbitrary-code execution due to format-string issue...

CVE-2005-1100

Format string vulnerability in the ErrorLog function in cnf.c in Greylisting daemon GLD 1.3 and 1.4 allows remote attackers to execute arbitrary code via format string specifiers in data that is passed directly to syslog...

CVE-2005-1100

Format string vulnerability in the ErrorLog function in cnf.c in Greylisting daemon GLD 1.3 and 1.4 allows remote attackers to execute arbitrary code via format string specifiers in data that is passed directly to syslog...

gld 1.4 - Postfix Greylisting Daemon Remote Format String

gld 1.4 - Postfix Greylisting Daemon Remote Format String / 0x82-meOw-linuxerforever - gld 1.4 remote overflow format string exploit. c 2005 Team INetCop Security. Nickname of this code is, Kill two bird with one stone.' or, One shot, two kill!.' hehehe ;-D Advisory URL:...

GLD &#40;Greylisting daemon for Postfix&#41; multiple vulnerabilities.

======================================== INetCop Security Advisory 2005-0x82-026 ======================================== Title: GLD Greylisting daemon for Postfix multiple vulnerabilities. 0x01. Description About: Gld is a standalone greylisting server for Postfix. Greylisting is a new weapon to...

gld 1.4 (Postfix Greylisting Daemon) Remote Format String Exploit

No description provided by source. / 0x82-meOw-linuxerforever - gld 1.4 remote overflow format string exploit. c 2005 Team INetCop Security. Nickname of this code is, Kill two bird with one stone.' or, One shot, two kill!.' hehehe ;-D Advisory URL:...

Gld: Remote execution of arbitrary code

Background Gld is a standalone greylisting server for Postfix. Description dong-hun discovered several buffer overflows in server.c, as well as several format string vulnerabilities in cnf.c. Impact An attacker could exploit this vulnerability to execute arbitrary code with the permissions of the...

gld 1.4 (Postfix Greylisting Daemon) Remote Format String Exploit

Exploit for linux platform in category remote exploits ================================================================= gld 1.4 Postfix Greylisting Daemon Remote Format String Exploit ================================================================= / 0x82-meOw-linuxerforever - gld 1.4 remote...

gld 1.4 - Postfix Greylisting Daemon Remote Format String

/ 0x82-meOw-linuxerforever - gld 1.4 remote overflow format string exploit. c 2005 Team INetCop Security. Nickname of this code is, Kill two bird with one stone.' or, One shot, two kill!.' hehehe ;-D Advisory URL: http://x82.inetcop.org/h0me/adv1sor1es/INCSA.2005-0x82-026-GLD.txt It's as well as...

gld -- format string and buffer overflow vulnerabilities

Gld has been found vulnerable to multiple buffer overflows as well as multiple format string vulnerabilities. An attacker could exploit this vulnerability to execute arbitrary code with the permissions of the user running Gld, the default user being root. The FreeBSD port defaults to running gld ...

Salim Gasmi GLD (Greylisting Daemon) 1.x - Postfix Greylisting Daemon Buffer Overflow

// source: https://www.securityfocus.com/bid/13129/info It is reported that GLD contains a buffer overflow vulnerability. This issue is due to a failure of the application to properly ensure that a fixed-size memory buffer is sufficiently large prior to copying user-supplied input data into it...