8491 matches found
Lotus Notes, Lotus Domino multiple vulnerabilities
Buffer overflows, format string bugs, crossite scripting...
[SA14879] Lotus Notes/Domino Multiple Vulnerabilities
---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Lotus Notes/Domino Multiple Vulnerabilities SECUNIA...
CVE-2005-0958
The CVE-2005-0958 entry relates to a format-string vulnerability in the log_do function (log.c) of mtftpd 0.0.3 when the statistics option is enabled. This condition can allow remote attackers to achieve arbitrary code execution via the CWD command. Affected component: mtftpd 0.0.3; vulnerable co...
Doomsday 1.8/1.9 - Multiple Remote Format String Vulnerabilities
source: https://www.securityfocus.com/bid/17369/info Doomsday is prone to multiple remote format-string vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to execute arbitrary code in the context of...
Doomsday 1.81.9 - Multiple Remote Format String Vulnerabilities
Doomsday 1.81.9 - Multiple Remote Format String Vulnerabilities source: https://www.securityfocus.com/bid/17369/info Doomsday is prone to multiple remote format-string vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can...
PT-2005-1982 · Mtftpd · Mtftpd
Name of the Vulnerable Software and Affected Versions: mtftpd version 0.0.3 Description: The issue is related to a format string vulnerability in the log do function in log.c. This vulnerability can be exploited when the statistics option is enabled, allowing remote attackers to execute arbitrary...
Debian DSA-702-1 : imagemagick - several vulnerabilities
Several vulnerabilities have been discovered in ImageMagick, a commonly used image manipulation library. These problems can be exploited by a carefully crafted graphic image. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2005-0397 Tavis Ormandy...
Mandrake Linux Security Advisory : ImageMagick (MDKSA-2005:065)
A format string vulnerability was discovered in ImageMagick, in the way it handles filenames. An attacker could execute arbitrary code on a victim's machine provided they could trick them into opening a file with a special name CVE-2005-0397. As well, Andrei Nigmatulin discovered a heap-based...
[SECURITY] [DSA 702-1] New ImageMagick packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 702-1 [email protected] http://www.debian.org/security/ Martin Schulze April 1st, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 702-1] New ImageMagick packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 702-1 [email protected] http://www.debian.org/security/ Martin Schulze April 1st, 2005 http://www.debian.org/security/faq -...
mtftpd FTP server format string bug
Format string bug on syslog call...
mtftpd <= 0.0.3 format string vulnerability
mtftpd = 0.0.3 format string vulnerability number: 15 author: darkeagle date: xx.10.04 vendor: http://mtftpd.sourceforge.net status: mtftpd don't supported overview: mtftpd - simple ftp daemon in Unix like systems. details: 1st of all... i wanna said, that this bug was stollen by setnf. i said to...
CVE-2005-0484
Format string vulnerability in gprostats for GProFTPD before 8.1.9 may allow remote attackers to execute arbitrary code via an FTP transfer with a crafted filename that causes format string specifiers to be inserted into the ProFTPD transfer log...
YepYep MTFTPD 0.2/0.3 - Remote CWD Argument Format String
// source: https://www.securityfocus.com/bid/12947/info mtftpd is reported prone to a remote format string vulnerability. Reports indicate that this issue may be exploited by a remote authenticated attacker to execute arbitrary code in the context of the vulnerable service. This vulnerability is...
YepYep MTFTPD 0.20.3 - Remote CWD Argument Format String
YepYep MTFTPD 0.20.3 - Remote CWD Argument Format String // source: https://www.securityfocus.com/bid/12947/info mtftpd is reported prone to a remote format string vulnerability. Reports indicate that this issue may be exploited by a remote authenticated attacker to execute arbitrary code in the...
GLSA-200503-34 : mpg321: Format string vulnerability
The remote host is affected by the vulnerability described in GLSA-200503-34 mpg321: Format string vulnerability A routine security audit of the mpg321 package revealed a known security issue remained unpatched. The vulnerability is a result of mpg321 printing embedded ID3 data to the console in ...
mpg321: Format string vulnerability
Background mpg321 is a GPL replacement for mpg123, a command line audio player with support for ID3. ID3 is a tagging system that allows metadata to be embedded within media files. Description A routine security audit of the mpg321 package revealed a known security issue remained unpatched. The...
mpg321 MP3 player ID3 tags format string vulnerability
Format string bug on IDv3 tags processing...
RHEL 2.1 / 3 : ImageMagick (RHSA-2005:070)
Updated ImageMagick packages that fix a heap based buffer overflow are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. ImageMagick is an image display and manipulation tool for the X Window System. Andrei Nigmatulin discovered a...
SUSE-SA:2005:017: ImageMagick
The remote host is missing the patch for the advisory SUSE-SA:2005:017 ImageMagick. This update fixes several security issues in the ImageMagick program suite: - A format string vulnerability was found in the display program which could lead to a remote attacker being to able to execute code as t...