Design/Logic Flaw

Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 on Unix, when Debug mode is enabled, allow attackers to execute arbitrary code via unspecified vectors, related to a "format bug."...

CVE-2009-3462

Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 on Unix, when Debug mode is enabled, allow attackers to execute arbitrary code via unspecified vectors, related to a "format bug."...

CVE-2009-3462

CVE-2009-3462 affects Adobe Reader and Acrobat on Unix (7.x/8.x/9.x) when Debug mode is enabled, enabling arbitrary code execution via a format bug. Connected advisories confirm patches: Red Hat RHSA-2009:1499 and SUSE SUSE-SA:2009:049 address Acrobat/Reader updates including acroread/acroread_ja...

CVE-2009-3462

Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 on Unix, when Debug mode is enabled, allow attackers to execute arbitrary code via unspecified vectors, related to a "format bug."...

acroread: Multiple arbitrary code execution fixes in 8.1.7 (APSB09-15)

Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 on Unix, when Debug mode is enabled, allow attackers to execute arbitrary code via unspecified vectors, related to a "format bug."...

Gentoo Security Advisory GLSA 200409-17 (SUS)

The remote host is missing updates announced in advisory GLSA 200409-17. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200409-17 (SUS)

The remote host is missing updates announced in advisory GLSA 200409-17. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 058-1 (exim)

The remote host is missing an update to exim announced via advisory DSA 058-1. OpenVAS Vulnerability Test $Id: deb0581.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 058-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 058-1 (exim)

The remote host is missing an update to exim announced via advisory DSA 058-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

BeroFTPD 1.3.4(1) Linux x86 Remote Root Exploit

No description provided by source. / BeroFTPD 1.3.41 Linux x86 remote root exploit by qitest1 - 5/05/2001 BeroFTPD is an ftpd derived from wuftpd sources. This code exploits the format bug of the site exec cmd, well known to be present in wuftpd-2.6.0 and derived daemons. BeroFTPD 1.3.41 is the...

SHOUTCast format string bug

Format string bug in filename...

Mandrake Linux Security Advisory : cyrus-sasl (MDKSA-2002:018)

Kari Hurtta discovered that a format bug exists in the Cyrus SASL library, which is used to provide an authentication API for mail clients and servers, as well as other services such as LDAP. The format bug was found in one of the logging functions which could be used by an attacker to obtain...

HP-UX B11.11 - usrbinct Format String Privilege Escalation

HP-UX B11.11 - usrbinct Format String Privilege Escalation / File : xhp-ux11inlsct.c Usage : cc xhp-ux11inlsct.c -o xct ; ./xct Purpose : Get a local rootshell from /usr/bin/ct,using HP-UX location language format string bug. Author : watercloud xfocus org Tested : On HP-UX B11.11 . / include...

SUSE Security Announcement: hylafax (SuSE-SA:2003:045)

-----BEGIN PGP SIGNED MESSAGE----- SUSE Security Announcement Package: hylafax Announcement-ID: SuSE-SA:2003:045 Date: Mon Nov 10 15:00:00 CET 2003 Affected products: 7.3, 8.0, 8.1, 8.2, 9.0 SuSE Linux Enterprise Server 7 SuSE Linux Standard Server 8 SuSE Linux Desktop 1.0 SuSE Linux Office Serve...

Winmail Mail Server 2.3 Build 0402 - Remote Format String

Winmail Mail Server 2.3 Build 0402 - Remote Format String / Magic Winmail Server 2.3Build 0402 Remote Format string exploit. Coded by ThreaT. This one take advantage of a format bug in the SMTP protocol smtp port + The command to execute cannot exceed 90 characters + compile : cl.exe mwmxploit.c ...

Important: Red Hat Security Advisory: nss_ldap ecurity update

Updated nssldap packages are now available for Red Hat Linux Advanced Server 2.1. These updates fix a potential buffer overflow which can occur when nssldap is set to configure itself using information stored in DNS as well as a format string bug in logging functions used in pamldap. Updated 09 J...

lil' exim format bug

Hi BugTrackers Just a little bug to tell: THE BUG ------- accept.c, line 2506: else if smtpreply != NULL moansmtpbatchNULL, smtpreply; while moansmtpbatch is like this: moansmtpbatchchar cmdbuffer, char format, ... So when smtpreply contains format strings, it get transformed by moansmtpbatch. Wh...

BeroFTPD 1.3.4(1) Linux x86 Remote Root Exploit

Exploit for linux platform in category remote exploits =============================================== BeroFTPD 1.3.41 Linux x86 Remote Root Exploit =============================================== / BeroFTPD 1.3.41 Linux x86 remote root exploit by qitest1 - 5/05/2001 BeroFTPD is an ftpd derived...

BeroFTPD 1.3.4(1) (Linux x86) - Remote Code Execution

BeroFTPD 1.3.41 Linux x86 - Remote Code Execution / BeroFTPD 1.3.41 Linux x86 remote root exploit by qitest1 - 5/05/2001 BeroFTPD is an ftpd derived from wuftpd sources. This code exploits the format bug of the site exec cmd, well known to be present in wuftpd-2.6.0 and derived daemons. BeroFTPD...

HylaFAX vulnerability

Hi, I've found classical format bug while I was playing with HylaFAX server v4.1 beta2: $ -u /usr/sbin/hfaxd && /usr/sbin/hfaxd -q 'nn' SUID uucp Segmentation fault It crashes while calling syslog with user supplied fmt. Looks nasty. Sorry, I have no working exploit, I won't have one and I have n...