8451 matches found
LPRng 3.6.24-1 Remote Root Exploit
Exploit for linux platform in category remote exploits ================================== LPRng 3.6.24-1 Remote Root Exploit ================================== / REMOTE ROOT EXPLOIT for linux x86 - LPRng-3.6.24-1 RedHat 7.0 The RedHat 7.0 replaced the BSD lpr with the LPRng package which is...
LPRng 3.6.24-1 - Remote Command Execution
/ REMOTE ROOT EXPLOIT for linux x86 - LPRng-3.6.24-1 RedHat 7.0 The RedHat 7.0 replaced the BSD lpr with the LPRng package which is vulnerable to format string attacks because it passes information to the syslog incorrectly. You can get remote root access on machines running RedHat 7.0 with lpd...
LPRng 3.6.24-1 - Remote Command Execution
LPRng 3.6.24-1 - Remote Command Execution / REMOTE ROOT EXPLOIT for linux x86 - LPRng-3.6.24-1 RedHat 7.0 The RedHat 7.0 replaced the BSD lpr with the LPRng package which is vulnerable to format string attacks because it passes information to the syslog incorrectly. You can get remote root access...
Дырка в ssldump
Ошибка форматной строки...
CVE-2000-1014
Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7 allows remote attackers to execute arbitrary commands via format characters in the queryText parameter...
CVE-2000-1044
Format string vulnerability in ypbind-mt in SuSE SuSE-6.2, and possibly other Linux operating systems, allows an attacker to gain root privileges...
CVE-2000-0999
Overview Format string vulnerabilities in OpenBSD ssh program and possibly other BSD-based operating systems allow attackers to gain root privileges. Remediation There is no fixed version for openssh. References - Ftp.openbsd.org...
CVE-2000-0999
Format string vulnerabilities in OpenBSD ssh program and possibly other BSD-based operating systems allow attackers to gain root privileges...
CVE-2000-1040
Format string vulnerability in logging function of ypbind 3.3, while running in debug mode, leaks file descriptors and allows an attacker to cause a denial of service...
CVE-2000-1000
Format string vulnerability in AOL Instant Messenger AIM 4.1.2010 allows remote attackers to cause a denial of service and possibly execute arbitrary commands by transferring a file whose name includes format characters...
CVE-2000-1010
Format string vulnerability in talkd in OpenBSD and possibly other BSD-based OSes allows remote attackers to execute arbitrary commands via a user name that contains format characters...
CVE-2000-1043
Format string vulnerability in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog function...
LPRng (RedHat 7.0) - lpd Format String
LPRng RedHat 7.0 - lpd Format String / Copyright c 2000 - Security.is The following material may be freely redistributed, provided that the code or the disclaimer have not been partly removed, altered or modified in any way. The material is the property of security.is. You are allowed to adopt th...
LPRng (RedHat 7.0) - 'lpd' Format String
/ Copyright c 2000 - Security.is The following material may be freely redistributed, provided that the code or the disclaimer have not been partly removed, altered or modified in any way. The material is the property of security.is. You are allowed to adopt the represented code in your programs,...
PT-2000-1909 · Openbsd +1 · Openbsd Ssh +1
Name of the Vulnerable Software and Affected Versions: OpenBSD ssh affected versions not specified Description: The issue allows attackers to gain root privileges due to format string vulnerabilities in the OpenBSD ssh program, potentially affecting other BSD-based operating systems as well...
bftpd NLST Command Output Format String
The remote FTP server, which appears to be Bftpd, has a format string vulnerability in the NLST command. A remote attacker could use this to crash the service, or possibly execute arbitrary code. C Tenable Network Security, Inc. Script audit and contributions from Carmichael Security Erik Anderso...
LPRng can pass user-supplied input as a format string parameter to syslog() calls
Overview A popular replacement software package to the BSD lpd printing service called LPRng contains at least one software defect known as a "format string vulnerability" which may allow remote users to execute arbitrary code on vulnerable systems. The privileges of such code will probably be...
CVE-2000-0950
CVE-2000-0950 affects the x-gw component of the TIS Firewall Toolkit (FWTK). The root cause is a format string vulnerability in x-gw that allows local users to execute arbitrary commands via a malformed display name. Impact as described: complete confidentiality, integrity, and availability could...
CVE-2000-0999
Format string vulnerabilities in OpenBSD ssh program and possibly other BSD-based operating systems allow attackers to gain root privileges...
CVE-2000-0918
Format string vulnerability in kvt in KDE 1.1.2 may allow local users to execute arbitrary commands via a DISPLAY environmental variable that contains formatting characters...