8488 matches found
GLSA-200404-12 : Scorched 3D server chat box format string vulnerability
The remote host is affected by the vulnerability described in GLSA-200404-12 Scorched 3D server chat box format string vulnerability Scorched 3D build 36.2 and before does not properly check the text entered in the Chat box T key. Using format string characters, you can generate a heap overflow...
AIX 5.1 : IY46255
The remote host is missing AIX Critical Security Patch number IY46255 SECURITY: Format string vulnerability in /usr/bin/enq and. You should install this patch for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...
AIX 5.2 : IY45329
The remote host is missing AIX Critical Security Patch number IY45329 SECURITY: Format string vulnerability in /usr/bin/enq and. You should install this patch for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...
CVE-2004-0800
Format string vulnerability in CDE Mailer dtmail on Solaris 8 and 9 allows local users to gain privileges via format strings in the argv0 value...
CVE-2004-0800
CVE-2004-0800 affects the Solaris CDE Mailer component dtmail (on Solaris 8/9). The vulnerability is a format string issue in argv[0], allowing a local user to execute arbitrary code with the privileges of the vulnerable process (typically the mail group). The CERT/NVD entries describe local code...
[Full-Disclosure] iDEFENSE Security Advisory 08.24.04: CDE Mailer argv[0] Format String Vulnerability
CDE Mailer argv0 Format String Vulnerability iDEFENSE Security Advisory 08.24.04 www.idefense.com/application/poi/display?id=132&type=vulnerabilities August 24, 2004 I. BACKGROUND CDE Mailer dtmail is the mail user agent MUA for CDE, which is installed on Solaris 8 and 9 by default. It provides a...
Sun Solaris dtmail contains a format string vulnerability
Overview A vulnerability in the way dtmail handles command-line arguments could allow an attacker to execute arbitrary code. Description The dtmail program is a mail user agent MUA for the Common Desktop Environment CDE. It provides a graphical user interface for reading, sending, and managing...
Solaris dtmail format string bug
format string bug in argv0 allows privilege escalation to gid group...
FreeBSD : courier-imap -- format string vulnerability in debug mode (26)
The following package needs to be updated: courier-imap %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg616cf823f48b11d89837000c41e2cdad.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...
CVE-2003-1051
CVE-2003-1051 affects IBM DB2 Universal Database 8.1. It describes multiple format-string vulnerabilities that could allow local users to execute arbitrary code via certain command-line arguments to db2start, db2stop, or db2govd. Root cause: format string handling issues in the involved binaries....
BitchX IRC Client "/INVITE" Command Format String DoS
Binary data 1855.prm...
Dropbear SSH Server Format String (deprecated)
Binary data 1993.prm...
McAfee ePolicy Orchestrator Remote Format String
Binary data 1895.prm...
XChat Malformed Nickname Remote Format String
Binary data 1873.prm...
tanned < 0.7.2 Remote Format String
Binary data 1889.prm...
XMail < 2.4 (Build 0530) APOP Remote Format String
Binary data 1801.prm...
bftpd < 1.0.13 Format String Overflow
Binary data 1829.prm...
ProFTPD cwd Command Format String
Binary data 1818.prm...
Mutt < 1.4.1 / 1.5 IMAP Server Format String Vulnerability
Binary data 1298.prm...
AOL Instant Messenger Filename Handling Format String
Binary data 1254.prm...