8453 matches found
Half-Life Client Server Message Format String Vulnerability
...
Tanne formatstring bug
syslog format string bug...
[INetCop Security Advisory] Remote format string vulnerability in Tanne.
======================================== INetCop Security Advisory 2003-0x82-012 ======================================== Title: Remote format string vulnerability in Tanne. 0x01. Description About: tanne is a small, secure session-management solution for HTTP. It replaces common sessions with a...
TANne 0.6.17 - Session Manager SysLog Format String
// source: https://www.securityfocus.com/bid/6553/info TANne is a freely available, open source session management package. It is available for Unix and Linux operating systems. Due to programming error, it may be possible to exploit a format string vulnerability. A logging function in the TANne...
TANne 0.6.17 - Session Manager SysLog Format String
TANne 0.6.17 - Session Manager SysLog Format String // source: https://www.securityfocus.com/bid/6553/info TANne is a freely available, open source session management package. It is available for Unix and Linux operating systems. Due to programming error, it may be possible to exploit a format...
CVE-2002-1825
Format string vulnerability in PerlRTEexample1.pl in WASD 7.1, 7.2.0 through 7.2.3, and 8.0.0 allows remote attackers to execute arbitrary commands or crash the server via format strings in the $name variable...
CVE-2002-2022
Format string vulnerability in Kaffe OpenVM 1.0.6 and earlier allows local users to execute arbitrary code, when a java.lang.NoClassDefFoundError is thrown, via format specifiers in the forName attribute...
DEBIAN-CVE-2002-1788
Format string vulnerability in the nnexitmsg function in nn 6.6.0 through 6.6.3 allows remote NNTP servers to execute arbitrary code via format strings in server responses...
CVE-2002-2091
Format string vulnerability in Deception Finger Daemon, decfingerd, 0.7 may allow remote attackers to execute arbitrary code via the username of a finger request...
CVE-2002-2155
Format string vulnerability in the error handling of IRC invite responses for Trillian 0.725 and 0.73 allows remote IRC servers to execute arbitrary code via an invite to a channel with format string specifiers in the name...
CVE-2002-1788
Format string vulnerability in the nnexitmsg function in nn 6.6.0 through 6.6.3 allows remote NNTP servers to execute arbitrary code via format strings in server responses...
CVE-2002-1789
Format string vulnerability in newsx NNTP client before 1.4.8 allows local users to execute arbitrary code via format string specifiers that are not properly handled in a call to the syslog function...
CVE-2002-2153
Format string vulnerability in the administrative pages of the PL/SQL module for Oracle Application Server 4.0.8 and 4.0.8 2 allows remote attackers to execute arbitrary code...
CVE-2002-1675
Format string vulnerability in the CioPrintF function of ciomain.c in Unreal IRCd 3.1.1 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers...
CVE-2002-1788
Format string vulnerability in the nnexitmsg function in nn 6.6.0 through 6.6.3 allows remote NNTP servers to execute arbitrary code via format strings in server responses...
CVE-2002-2236
Format string vulnerability in the awplog function in apt-www-proxy 0.1 allows remote attackers to execute arbitrary code...
DEBIAN-CVE-2002-1381
Format string vulnerability in daemon.c for Exim 4.x through 4.10, and 3.x through 3.36, allows exim administrative users to execute arbitrary code by modifying the pidfilepath value...
zkfingerd 0.9.1 format string vulnerabilities (#NISR16122002A)
NGSSoftware Insight Security Research Advisory Name: zkfingerd Format String vulnerability Systems: zkfingerd version 0.9.1 and earlier Severity: High Risk Vendor URL: http://sourceforge.net/projects/zkfingerd Author: David Litchfield [email protected] Advisory URL:...
zkfingerd 0.9.1 - say() Format String
zkfingerd 0.9.1 - say Format String // source: https://www.securityfocus.com/bid/6404/info zkfingerd is prone to a format string vulnerability. The affected function does not perform sufficient checks when displaying user-supplied input. It is possible to corrupt memory by passing format strings...
zkfingerd SysLog 0.9.1 - Format String
// source: https://www.securityfocus.com/bid/6402/info zkfingerd is prone to a format string vulnerability. This problem is due to incorrect use of the 'syslog' function to log error messages. It is possible to corrupt memory by passing format strings through the vulnerable logging function. This...