471 matches found
Gld: Remote execution of arbitrary code
Background Gld is a standalone greylisting server for Postfix. Description dong-hun discovered several buffer overflows in server.c, as well as several format string vulnerabilities in cnf.c. Impact An attacker could exploit this vulnerability to execute arbitrary code with the permissions of the...
Multiple bugs in trillian instant messaging client
Buffer overflows, format string bugs...
RHEL 2.1 : mc (RHSA-2005:217)
Updated mc packages that fix multiple security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Midnight Commander mc is a visual shell, much like a file manager. Several format string bugs were found in Midnight...
GLSA-200502-24 : Midnight Commander: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200502-24 Midnight Commander: Multiple vulnerabilities Midnight Commander contains several format string vulnerabilities CAN-2004-1004, buffer overflows CAN-2004-1005, a memory deallocation error CAN-2004-1092 and a buffer underfl...
[SECURITY] [DSA 685-1] New emacs21 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 685-1 [email protected] http://www.debian.org/security/ Martin Schulze February 17th, 2005 http://www.debian.org/security/faq -...
Midnight Commander: Multiple vulnerabilities
Background Midnight Commander is a visual console file manager. Description Midnight Commander contains several format string vulnerabilities CAN-2004-1004, buffer overflows CAN-2004-1005, a memory deallocation error CAN-2004-1092 and a buffer underflow CAN-2004-1176. Impact An attacker could...
DSA-685-1 emacs21 - format string
Bulletin has no description...
GLSA-200502-20 : Emacs, XEmacs: Format string vulnerabilities in movemail
The remote host is affected by the vulnerability described in GLSA-200502-20 Emacs, XEmacs: Format string vulnerabilities in movemail Max Vozeler discovered that the movemail utility contains several format string errors. Impact : An attacker could set up a malicious POP server and entice a user ...
Important: Red Hat Security Advisory: xemacs security update
Updated XEmacs packages that fix a string format issue are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. XEmacs is a powerful, customizable, self-documenting, modeless text editor. Max Vozeler...
Important: Red Hat Security Advisory: emacs security update
Updated Emacs packages that fix a string format issue are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team Emacs is a powerful, customizable, self-documenting, modeless text editor. Max Vozeler...
Important: Red Hat Security Advisory: xemacs security update
Updated XEmacs packages that fix a string format issue are now available. XEmacs is a powerful, customizable, self-documenting, modeless text editor. Max Vozeler discovered several format string vulnerabilities in the movemail utility of XEmacs. If a user connects to a malicious POP server, an...
Important: Red Hat Security Advisory: emacs security update
Updated Emacs packages that fix a string format issue are now available. Emacs is a powerful, customizable, self-documenting, modeless text editor. Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs. If a user connects to a malicious POP server, an...
CVE-2005-0276
Multiple format string vulnerabilities in the FTP service in 3Com 3CDaemon 2.0 revision 10 allow remote attackers to cause a denial of service application crash via format string specifiers in 1 the username, 2 cd, 3 delete, 4 rename, 5 rmdir, 6 literal, 7 stat, or 8 CWD commands...
RHEL 2.1 / 3 : emacs (RHSA-2005:112)
Updated Emacs packages that fix a string format issue are now available. Emacs is a powerful, customizable, self-documenting, modeless text editor. Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs. If a user connects to a malicious POP server, an...
Debian DSA-670-1 : emacs20 - format string
Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs, the well-known editor. Via connecting to a malicious POP server an attacker can execute arbitrary code under the privileges of group mail. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
[SECURITY] [DSA 670-1] New emacs20 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 670-1 [email protected] http://www.debian.org/security/ Martin Schulze February 8th, 2005 http://www.debian.org/security/faq -...
DSA-671-1 xemacs21 - format string
Bulletin has no description...
CVE-2004-1004
Multiple format string vulnerabilities in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...
CVE-2004-1004
CVE-2004-1004 affects Midnight Commander (mc) up to version 4.5.55 with multiple format string vulnerabilities. The provided connected advisories confirm that various distros release patches (e.g., SUSE SLES9 patch 5011441, Gentoo GLSA 200502-24, Debian DSA 639-1) to fix these issues. The CVE ent...
CVE-2004-1004
Multiple format string vulnerabilities in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...