8491 matches found
GLSA-200411-07 : Proxytunnel: Format string vulnerability
The remote host is affected by the vulnerability described in GLSA-200411-07 Proxytunnel: Format string vulnerability Florian Schilhabel of the Gentoo Linux Security Audit project found a format string vulnerability in Proxytunnel. When the program is started in daemon mode -a port, it improperly...
Speedtouch USB driver for linux format string bugs
Format string bug on syslog call...
Proxytunnel: Format string vulnerability
Background Proxytunnel is a program that tunnels connections to a remote server through a standard HTTPS proxy. Description Florian Schilhabel of the Gentoo Linux Security Audit project found a format string vulnerability in Proxytunnel. When the program is started in daemon mode -a port, it...
[Full-Disclosure] [ GLSA 200411-07 ] Proxytunnel: Format string vulnerability
Gentoo Linux Security Advisory GLSA 200411-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
Cherokee Web Server auth_pam Authentication Format String
The remote host is running Cherokee - a fast and tiny web server. The remote version of this software is vulnerable to a format string attack when processing authentication requests using authpam. This could allow a remote attacker to cause a denial of service, or potentially execute arbitrary...
proxytunnel format string bug
Format string bug on syslog...
Cherokee Web Server < 0.4.17.1 auth_pam Authentication Format String
Binary data 2383.prm...
Speedtouch USB driver: Privilege escalation vulnerability
Background The speedtouch package contains a driver for the ADSL SpeedTouch USB modem. Description The Speedtouch USB driver contains multiple format string vulnerabilities in modemrun, pppoa2 and pppoa3. This flaw is due to an improperly made syslog system call. Impact A malicious local user cou...
[ GLSA 200411-02 ] Cherokee: Format string vulnerability
Gentoo Linux Security Advisory GLSA 200411-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
GLSA-200411-04 : Speedtouch USB driver: Privilege escalation vulnerability
The remote host is affected by the vulnerability described in GLSA-200411-04 Speedtouch USB driver: Privilege escalation vulnerability The Speedtouch USB driver contains multiple format string vulnerabilities in modemrun, pppoa2 and pppoa3. This flaw is due to an improperly made syslog system cal...
GLSA-200411-02 : Cherokee: Format string vulnerability
The remote host is affected by the vulnerability described in GLSA-200411-02 Cherokee: Format string vulnerability Florian Schilhabel from the Gentoo Linux Security Audit Team found a format string vulnerability in the cherokeeloggerncsawritestring function. Impact : Using a specially crafted URL...
Cherokee formatstring bug
Format string bug on syslog call and gile logging in NCSA format, cherokeeloggerncsawritestring...
proxytunnel -- format string vulnerability
A Gentoo Linux Security Advisory reports: Florian Schilhabel of the Gentoo Linux Security Audit project found a format string vulnerability in Proxytunnel. When the program is started in daemon mode -a port, it improperly logs invalid proxy answers to syslog. A malicious remote server could send...
Cherokee: Format string vulnerability
Background Cherokee is an extra-light web server. Description Florian Schilhabel from the Gentoo Linux Security Audit Team found a format string vulnerability in the cherokeeloggerncsawritestring function. Impact Using a specially crafted URL when authenticating via authpam, a malicious user may ...
bug.
-= Unl0ck Team Security Advisory =- | | | | | | / | | / | | / / / | |/ / | |/ / | | / | | / | | | / / | Y Y |/|| // / | || /|| / / / / / / / / ... the best way of protection is attack http://unl0ck.net.ru || http://unl0ck.info Advisory : 9 by unl0ck team Product : qwik-smtpd latest version. Vendo...
qwik-smtpd format string bug
Format string bug on file logging...
GLSA-200410-28 : rssh: Format string vulnerability
The remote host is affected by the vulnerability described in GLSA-200410-28 rssh: Format string vulnerability Florian Schilhabel from the Gentoo Linux Security Audit Team found a format string vulnerability in rssh syslogging of failed commands. Impact : Using a malicious command, it may be...
FreeBSD : rssh -- format string vulnerability (166)
The following package needs to be updated: rssh %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg1f82675726be11d9ad2d0050fc56d258.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright 2003-200...
rssh: Format string vulnerability
Background rssh is a restricted shell, allowing only a few commands like scp or sftp. It is often used as a complement to OpenSSH to provide limited access to users. Description Florian Schilhabel from the Gentoo Linux Security Audit Team found a format string vulnerability in rssh syslogging of...
advisory-07-nsg.txt
------------------------------------------------- No System Group - Advisory 07 - 18/10/04 ------------------------------------------------- Program: Socat Homepage: http://www.dest-unreach.org/socat/ Vulnerable Versions: Socat 1.4.0.2 and below Risk: Low / Medium Impact: Local Format String...