8491 matches found
PT-2004-3133 · Inter7 · Vpopmail
Name of the Vulnerable Software and Affected Versions: vpopmail version 5.4.2 and earlier Description: The issue in vsybase.c has been observed to use constants that become static format strings when compiled, thus it is not considered a vulnerability. There is no information about the impact or...
PT-2004-3159 · Gnu · Gnu Less
Name of the Vulnerable Software and Affected Versions: GNU less versions 358 through 382 Description: A format string bug in the open altfile function in filename.c might allow local users to cause a denial of service or possibly execute arbitrary code via format strings in the LESSOPEN environme...
SHOUTcast < 1.9.5 Filename Remote Format String
Binary data 2476.prm...
SHOUTcast Server Filename Handling Format String
According to its banner, the version of SHOUTcast Server installed on the remote host is earlier than 1.9.5. Such versions fail to validate requests containing format string specifiers before using them in a call to 'sprintf'. An unauthenticated, remote attacker may be able to exploit this issue ...
[SECURITY] [DSA 616-1] New telnetd-ssl packages fix arbitrary code execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 616-1 [email protected] http://www.debian.org/security/ Martin Schulze December 23rd, 2004 http://www.debian.org/security/faq -...
SHOUTcast remote format string vulnerability
Product: SHOUTcast v1.9.4 and older? Vendor: http://www.shoutcast.com Vuln: Remote format string BugFinder: Tomasz Trojanowski onestep Author: Damian Put [email protected] www.CC-Team.org Date: Dec 23, 2004 1. BACKGROUND "SHOUTcast is Nullsoft's Free Winamp-based distributed streaming audio syste...
[SECURITY] [DSA 616-1] New telnetd-ssl packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 616-1 [email protected] http://www.debian.org/security/ Martin Schulze December 23rd, 2004 http://www.debian.org/security/faq -...
CVE-2004-0834
Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via 1 modemrun, 2 pppoa2, or 3 pppoa3...
CVE-2004-0834
Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via 1 modemrun, 2 pppoa2, or 3 pppoa3...
DEBIAN-CVE-2004-0998
Format string vulnerability in telnetd-ssl 0.17 and earlier allows remote attackers to execute arbitrary code...
SHOUTcast DNAS/Linux 1.9.4 Format String Remote Exploit
Exploit for linux platform in category remote exploits ======================================================= SHOUTcast DNAS/Linux 1.9.4 Format String Remote Exploit ======================================================= / SHOUTcast DNAS/Linux v1.9.4 format string remote exploit / / Damian Put...
Debian DSA-616-1 : netkit-telnet-ssl - format string
Joel Eriksson discovered a format string vulnerability in telnetd-ssl which may be able to lead to the execution of arbitrary code on the victims machine. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Securit...
SHOUTcast DNAS/Linux 1.9.4 - Format String Remote Overflow
/ SHOUTcast DNAS/Linux v1.9.4 format string remote exploit / / Damian Put Cyber-Crime Team www.CC-Team.org / / Tested on slackware 9.1 and 10.0 0xbf3feee0 / / When exploit only crash SHOUTcast we should calculate new address: / / / / bash-2.05b$ gdb scserv core / / ... / / gdb x/x $edi / /...
SHOUTcast DNASLinux 1.9.4 - Format String Remote Overflow
SHOUTcast DNASLinux 1.9.4 - Format String Remote Overflow / SHOUTcast DNAS/Linux v1.9.4 format string remote exploit / / Damian Put Cyber-Crime Team www.CC-Team.org / / Tested on slackware 9.1 and 10.0 0xbf3feee0 / / When exploit only crash SHOUTcast we should calculate new address: / / / /...
DSA-616-1 telnetd-ssl - format string
Bulletin has no description...
CVE-2004-1153
Adobe Acrobat Reader (Windows/macOS/Linux) versions 6.0.0–6.0.2 are affected by a DoS/vulnerability in the ETD file parser caused by a format string flaw, which can crash the app and potentially enable code execution. The OpenVAS entries corroborate a DoS impact but do not provide a patch or miti...
CVE-2004-1153
Format string vulnerability in Adobe Acrobat Reader 6.0.0 through 6.0.2 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via an .ETD document containing format string specifiers in 1 title or 2 baseurl fields...
Possible local root vulnerability in Roxio Toast on Mac OS X
Possible local root vulnerability in Roxio Toast on Mac OS X By fintler [email protected] Summary: There is a format string bug in the binary /Library/Application Support/Roxio/TDIXSupport. It is installed suid root by default and may be exploited by finding the offset and overwriting the stack...
Roxio Toast format string bug
TDIXSupport suid application format string bug...
CVE-2004-1214
CVE-2004-1214 describes a format string vulnerability in Kreed 1.05 and earlier. The flaw allows remote attackers to execute arbitrary code via format specifiers in either a user’s nickname or their message text. The vulnerability is identified in multiple sources (NVD/CVE databases) with a high ...