8453 matches found
Mod_gzip Debug Mode Vulnerabilities
Multiple Vulnerabilities in modgzip Debugging Routines I. Synopsis Affected Systems: modgzip 1.3.26.1a and prior Risk: Development: High Production: Minimal Developer URL: http://www.sourceforge.net/projects/mod-gzip Status: Vendor is not supporting project at this time. II. Product Description...
Format String Vulnerability in Crob Ftp Server
Package: Crob Ftp Server Auth: Crob Software Studio www.crob.net/studio/ftpserver/ Version: 2.50.4 Build 228 Vulnerability: Format String Risk: High Vulnerability Description: A format string flaw in the authentication process allows remote attackers without valid user/pass to execute arbitrary...
Crob FTP server Fotmat string bug
Format string bug in processing USER command...
Crob FTP Server 2.50.4 - Remote Username Format String
Crob FTP Server 2.50.4 - Remote Username Format String source: https://www.securityfocus.com/bid/7776/info A vulnerability has been reported for Crob FTP Server. The problem occurs due to invalid format specifiers used when displaying a user-supplied username. As a result, it may be possible for ...
Crob FTP Server 2.50.4 - Remote 'Username' Format String
source: https://www.securityfocus.com/bid/7776/info A vulnerability has been reported for Crob FTP Server. The problem occurs due to invalid format specifiers used when displaying a user-supplied username. As a result, it may be possible for an attacker to embed format specifiers within a malicio...
Crob FTP Server user Field Remote Format String
The version of Crob FTP server running on the remote host has a format string vulnerability when processing the USER command. A remote attacker could exploit this to crash the service, or possibly execute arbitrary code. C Tenable Network Security, Inc. include"compat.inc"; References: Date: 2 Ju...
mod_gzip Debug Mode mod_gzip_printf Remote Format String
The remote host is running modgzip with debug symbols compiled in. The debug code includes vulnerabilities that can be exploited by an attacker to gain a shell on this host. C Tenable Network Security, Inc. Ref: From: "Matthew Murphy" To: "BugTraq" , Subject: Modgzip Debug Mode Vulnerabilities...
CVE-2003-0235
Format string vulnerability in POP3 client for Mirabilis ICQ Pro 2003a allows remote malicious servers to execute arbitrary code via format strings in the response to a UIDL command...
Magic Winmail Server format string bug
Format string bug during POP3 logging...
Magic Winmail Server 2.3 USER POP3 - Command Format String
Magic Winmail Server 2.3 USER POP3 - Command Format String // source: https://www.securityfocus.com/bid/7667/info A format string vulnerability has been reported for Magic Winmail Server when processing the USER POP3 command. An attacker may exploit this vulnerability by connecting to the...
Magic Winmail Server 2.3 USER POP3 - Command Format String
// source: https://www.securityfocus.com/bid/7667/info A format string vulnerability has been reported for Magic Winmail Server when processing the USER POP3 command. An attacker may exploit this vulnerability by connecting to the vulnerable mail server and issuing the USER command with malicious...
Magic Winmail Server v.2.*: format string
-----BEGIN PGP SIGNED MESSAGE----- Damage Hacking Group security advisory www.dhgroup.org Product: Magic Winmail Server Auth: AMAX Information Technologies Inc. www.magicwinmail.net Vulnerable versions: v.2. founded in 2.3 Vulnerability: format string...
CVE-2003-0289
Format string vulnerability in scsiopen.c of the cdrecord program in cdrtools 2.0 allows local users to gain privileges via format string specifiers in the dev parameter...
CVE-2003-0289
CVE-2003-0289 affects the cdrecord component of the cdRtools package (cdrecord, version 2.0). The vulnerability is a format-string issue in scsiopen.c (dev parameter) that enables local users to gain privileges. Public references note that this is a local-privilege-escalation vulnerability in cdr...
cdrecord format string bug
Format string bug on error message printing...
cdrtools2.0 Format String Vulnerability
---------------------------------------------------------------------------- PACKAGE : cdrtools VERSION : 2.0 SUMMARY : Format String SEVERITY : local root exploit if suid on several distros DATE: : 2003-05-05 ---------------------------------------------------------------------------- Hi, i woul...
CDRTools CDRecord 1.11/2.0 - Devname Format String
// source: https://www.securityfocus.com/bid/7565/info CDRecord has been reported prone to a format string vulnerability. The issue presents itself due to a programming error that occurs when calling a printf-like function. It has been reported that by harnessing an unsupported feature of the...
CDRTools CDRecord 1.112.0 - Devname Format String
CDRTools CDRecord 1.112.0 - Devname Format String // source: https://www.securityfocus.com/bid/7565/info CDRecord has been reported prone to a format string vulnerability. The issue presents itself due to a programming error that occurs when calling a printf-like function. It has been reported th...
CVE-2003-0235
Format string vulnerability in POP3 client for Mirabilis ICQ Pro 2003a allows remote malicious servers to execute arbitrary code via format strings in the response to a UIDL command...
CVE-2003-0235
CVE-2003-0235 is a format string vulnerability in Mirabilis ICQ Pro 2003a's integrated POP3 client (POP3.dll). The bug resides in the UIDL server response string, where format specifiers can be exploited by a remote attacker posing as the POP3 server, potentially enabling arbitrary code execution...