471 matches found
Format string
Multiple format string vulnerabilities in Battlefront Dropteam 1.3.3 and earlier allow remote attackers to execute arbitrary code via format string specifiers in the 1 username, 2 password, and 3 nickname fields in a "0x01" packet...
CVE-2007-5265
CVE-2007-5265 describes multiple format string vulnerabilities in websrv.cpp of Dawn of Time 1.69s beta4 and earlier. The flaws allow remote attackers to execute arbitrary code via format string specifiers in the (1) username or (2) password fields when accessing certain “restricted zones”, due t...
CVE-2007-5262
CVE-2007-5262 affects Battlefront Dropteam 1.3.3 and earlier. The vulnerability is multiple format string weaknesses in the server handling of a \
CVE-2007-5248
Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1 and earlier, Quake 4 1.4.2 and earlier, and Prey 1.3 and earlier, when Punkbuster PB is enabled, allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format...
CVE-2007-5247
Multiple format string vulnerabilities in the Monolith Lithtech engine, as used by First Encounter Assault Recon F.E.A.R. 1.08 and earlier, when Punkbuster PB is enabled, allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format string specifiers in 1 a...
Format string
Multiple format string vulnerabilities in the Monolith Lithtech engine, as used by First Encounter Assault Recon F.E.A.R. 1.08 and earlier, when Punkbuster PB is enabled, allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format string specifiers in 1 a...
CVE-2007-5248
Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1 and earlier, Quake 4 1.4.2 and earlier, and Prey 1.3 and earlier, when Punkbuster PB is enabled, allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format...
CVE-2007-5248
CVE-2007-5248 affects the ID Software Doom 3 engine (Doom 3 1.3.1 and earlier; Quake 4 1.4.2 and earlier; Prey 1.3 and earlier) when Punkbuster (PB) is enabled. The vulnerability arises from format string handling in two PB packets (PB_Y to YPG server; PB_U to UCON), enabling remote attackers to ...
Dawn of Time 1.69 MUD Server - Multiple Format String Vulnerabilities
Dawn of Time 1.69 MUD Server - Multiple Format String Vulnerabilities source: https://www.securityfocus.com/bid/25944/info Dawn of Time MUD server is prone to multiple format-string vulnerabilities. Exploiting these issues will allow attackers to execute arbitrary code with the permissions of a...
Format string
Multiple format string vulnerabilities in Babo Violent 2 2.08.00 and earlier allow remote attackers to execute arbitrary code via format string specifiers in 1 a message or 2 certain data associated with an admin login...
CVE-2007-4378
Multiple format string vulnerabilities in Babo Violent 2 2.08.00 and earlier allow remote attackers to execute arbitrary code via format string specifiers in 1 a message or 2 certain data associated with an admin login...
CVE-2007-4378
CVE-2007-4378 describes multiple format string vulnerabilities in Babo Violent 2 (version 2.08.00 and earlier). The issue allows remote attackers to execute arbitrary code through format string specifiers in (1) a message or (2) data associated with an admin login. The connected documents confirm...
CVE-2007-4378
Multiple format string vulnerabilities in Babo Violent 2 2.08.00 and earlier allow remote attackers to execute arbitrary code via format string specifiers in 1 a message or 2 certain data associated with an admin login...
CVE-2007-3388
Multiple format string vulnerabilities in 1 qtextedit.cpp, 2 qdatatable.cpp, 3 qsqldatabase.cpp, 4 qsqlindex.cpp, 5 qsqlrecord.cpp, 6 qglobal.cpp, and 7 qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 before 3.3.8 20070727 allow remote attackers to execute arbitrary code via format string specifier...
Format string
Multiple format string vulnerabilities in 1 qtextedit.cpp, 2 qdatatable.cpp, 3 qsqldatabase.cpp, 4 qsqlindex.cpp, 5 qsqlrecord.cpp, 6 qglobal.cpp, and 7 qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 before 3.3.8 20070727 allow remote attackers to execute arbitrary code via format string specifier...
CVE-2007-3388
Multiple format string vulnerabilities in 1 qtextedit.cpp, 2 qdatatable.cpp, 3 qsqldatabase.cpp, 4 qsqlindex.cpp, 5 qsqlrecord.cpp, 6 qglobal.cpp, and 7 qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 before 3.3.8 20070727 allow remote attackers to execute arbitrary code via format string specifier...
CVE-2007-3388
Removed by vendor...
CVE-2007-3388
CVE-2007-3388 affects Trolltech Qt 3 (Qt X11-free) with multiple format-string vulnerabilities in QTextEdit components (qtextedit.cpp, qdatatable.cpp, qsql*.cpp, qglobal.cpp, qsvgdevice.cpp) that could allow remote code execution via error-message text. Affected versions are Qt 3 prior to 3.3.8 (...
Qt format string vulnerabilities
Multiple format string vulnerabilities on format string bugs...
GLSA-200707-12 : VLC media player: Format string vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200707-12 VLC media player: Format string vulnerabilities David Thiel from iSEC Partners Inc. discovered format string errors in various plugins when parsing data. The affected plugins include Vorbis, Theora, CDDA and SAP. Impact ...