8463 matches found
Magic Winmail Server format string bug
Format string bug during POP3 logging...
Magic Winmail Server v.2.*: format string
-----BEGIN PGP SIGNED MESSAGE----- Damage Hacking Group security advisory www.dhgroup.org Product: Magic Winmail Server Auth: AMAX Information Technologies Inc. www.magicwinmail.net Vulnerable versions: v.2. founded in 2.3 Vulnerability: format string...
CVE-2003-0289
Format string vulnerability in scsiopen.c of the cdrecord program in cdrtools 2.0 allows local users to gain privileges via format string specifiers in the dev parameter...
CVE-2003-0289
CVE-2003-0289 affects the cdrecord component of the cdRtools package (cdrecord, version 2.0). The vulnerability is a format-string issue in scsiopen.c (dev parameter) that enables local users to gain privileges. Public references note that this is a local-privilege-escalation vulnerability in cdr...
cdrecord format string bug
Format string bug on error message printing...
cdrtools2.0 Format String Vulnerability
---------------------------------------------------------------------------- PACKAGE : cdrtools VERSION : 2.0 SUMMARY : Format String SEVERITY : local root exploit if suid on several distros DATE: : 2003-05-05 ---------------------------------------------------------------------------- Hi, i woul...
CDRTools CDRecord 1.11/2.0 - Devname Format String
// source: https://www.securityfocus.com/bid/7565/info CDRecord has been reported prone to a format string vulnerability. The issue presents itself due to a programming error that occurs when calling a printf-like function. It has been reported that by harnessing an unsupported feature of the...
CDRTools CDRecord 1.112.0 - Devname Format String
CDRTools CDRecord 1.112.0 - Devname Format String // source: https://www.securityfocus.com/bid/7565/info CDRecord has been reported prone to a format string vulnerability. The issue presents itself due to a programming error that occurs when calling a printf-like function. It has been reported th...
CVE-2003-0235
Format string vulnerability in POP3 client for Mirabilis ICQ Pro 2003a allows remote malicious servers to execute arbitrary code via format strings in the response to a UIDL command...
CVE-2003-0235
CVE-2003-0235 is a format string vulnerability in Mirabilis ICQ Pro 2003a's integrated POP3 client (POP3.dll). The bug resides in the UIDL server response string, where format specifiers can be exploited by a remote attacker posing as the POP3 server, potentially enabling arbitrary code execution...
Mod_Gzip 1.3.x - Debug Mode
ModGzip 1.3.x - Debug Mode // source: https://www.securityfocus.com/bid/7769/info Modgzip is reported prone to a stack overflow, format string vulnerability and a file corruption issue due to a predictable naming scheme for log files. Exploitation of these issues could result in execution of...
Mod_Gzip 1.3.x - Debug Mode
// source: https://www.securityfocus.com/bid/7769/info Modgzip is reported prone to a stack overflow, format string vulnerability and a file corruption issue due to a predictable naming scheme for log files. Exploitation of these issues could result in execution of malicious instructions or...
Multiple bugs in ICQ 2003
Format string bug in integer overflows in POP3 client, multiple DoS conditions...
smallftpd multiple bugs
Directory traversal, format string bug...
mod_ntlm for Apache Multiple Remote Vulnerabilities
The remote host seems to be running modntlm, a NTLM authentication module for Apache. This version of modntlm has a buffer overflow and a format string vulnerability. A remote attacker could exploit these issues to execute arbitrary code. C Tenable Network Security, Inc. include"compat.inc"; if...
mod_ntlm format string bug
Format string bug in logging...
Mod_NTLM 0.x - Authorisation Format String
ModNTLM 0.x - Authorisation Format String source: https://www.securityfocus.com/bid/7393/info A format string vulnerability has been reported for the modntlm Apache module. The problem occurs when logging authentication strings passed in HTTP requests. By passing malicious format specifiers in a...
Mod_NTLM 0.x - Authorisation Format String
source: https://www.securityfocus.com/bid/7393/info A format string vulnerability has been reported for the modntlm Apache module. The problem occurs when logging authentication strings passed in HTTP requests. By passing malicious format specifiers in a request, it may be possibile for an attack...
CVE-2002-0690
Format string vulnerability in McAfee Security ePolicy Orchestrator ePO 2.5.1 allows remote attackers to execute arbitrary code via an HTTP GET request with a URI containing format strings...
CVE-2002-1415
Format string vulnerability in SMTP service for WebEasyMail 3.4.2.2 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format strings in SMTP requests...