xine-lib <= 1.1 (media player library) Remote Format String Exploit

No description provided by source. !/usr/bin/perl -- When playing an Audio CD, using xine-lib based media application, the library contacts a CDDB server to retrieve metadata like the title and artist's name. During processing of this data, a response from the server, which is located in memory o...

FreeBSD 3.5/4.x top Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1895/info top is a program used to display system usage statistics in real time written by GoupSys Consulting but shipped by default as a core component with many operating systems. On BSD systems, top is installed setgid...

Techland XPand Rally 1.0/1.1 - Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12772/info A remote format string vulnerability affects XPand Rally. This issue is due to a failure of the application to securely call a formatted printing function. An attacker may leverage this issue to execute arbitra...

Songbird Media Player <= 0.2 Format String Denial of Service PoC

No description provided by source. / ======================================================================== 0-day Songbird Media Player = 0.2 Format String Denial Of Service PoC ======================================================================== Songbird Media Player and lower experiance a...

5th street 'dx8render.dll' Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/29928/info The '5th street' game is prone to a format-string vulnerability. Exploiting this issue will allow attackers to execute arbitrary code with the privileges of a user running the application. Failed attacks will...

Dream FTP 1.2 - Remote Format String Exploit

No description provided by source. include stdio.h include sys/types.h include sys/socket.h include netinet/in.h // WIN NT/2K/XP cmd.exe shellcode // kernel32.dll baseaddress calculation: OS/SP-independent // string-save: 00, 0a and 0d free. // portbinding: port 28876 // looping: reconnect after...

GNU Sharutils <= 4.2.1 - Local Format String PoC Exploit

No description provided by source. / GNU sharutils = 4.2.1 Local Format String POC Code C0ded by n4rk0tix a.k.a nrktx [email protected] Below is a l4m3 proof of concept code for da recently reported lame bug; These binaryz have not only format bugz, but also buffer overflowz,etc.We also...

TOWeb 3.0 - Local Format String DoS Exploit (TOWeb.MO file corruption)

No description provided by source. Exploit Title: TOWeb V3 Local Format String DOS Exploit TOWeb.MO file corruption Date: 05/09/2011 Author: BSOD Digital Fabien DROMAS Mail: [email protected] Test: OS: Windows 7 Versions: V3.17 Path: Lauyan\TOWeb V3\locale\fr\LCMESSAGES\TOWeb.MO Link:...

Veritas NetBackup 3.5/4.5/5.0 - Multiple Unspecified Local Memory Corruption Vulnerabilities (1)

No description provided by source. source: http://www.securityfocus.com/bid/10226/info Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues may be exploited to execute arbitrary code with...

Larson Network Print Server 9.4.2 build 105 (LstNPS) NPSpcSVR.exe License Command Remote Overflow

No description provided by source. source: http://www.securityfocus.com/bid/27732/info Larson Software Technology Network Print Server is prone to a format-string vulnerability and a buffer-overflow vulnerability. An attacker can exploit these issues to execute arbitrary code within the context o...

Solaris 2.6/7.0 "eject" exploit for locale subsystem format string

No description provided by source. / source: http://www.securityfocus.com/bid/1634/info nectiva 4.x/5.x,Debian 2.x,IBM AIX 3.x/4.x,Mandrake 7,RedHat 5.x/6.x,IRIX 6.x, Solaris 2.x/7/8,Turbolinux 6.x,Wirex Immunix OS 6.2 Locale Subsystem Format String Many UNIX operating systems provide...

GNOME Eye Of Gnome 1.0.x/1.1.x/2.2 Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7121/info GNOME Eye of Gnome EOG image viewer is prone to a format string vulnerability. This condition may lead to execution of arbitrary code if malicious format specifiers are supplied to the program via the command...

VMware Remote Console e.x.p build-158248 - format string vulnerability

No description provided by source. DSECRG-09-053 VMware Remote Console - format string vulnerability http://www.dsecrg.com/pages/vul/show.php?id=153 VMrc vulnerable to format string attacks. Exploitation of this issue may lead to arbitrary code execution on the system where VMrc is installed...

Ipswitch <= 8.0 WS_FTP Client Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/30720/info Ipswitch WSFTP client is prone to a format-string vulnerability it fails to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing function. An attacker may...

HTTPDX tolog() Function Format String Vulnerability

No description provided by source. $Id: httpdxtologformat.rb 10150 2010-08-25 20:55:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...

Apple Mac OS X <= 10.4.9 - VPND Local Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24208/info Apple Mac OS X's VPN service daemon is prone to a format-string vulnerability because it fails to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing function...

Icecast 1.3.7/1.3.8 print_client() Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2264/info Versions of icecast up to and including 1.3.8 beta2 exhibit a format string vulnerability in the printclientfunction of utility.c. A malicious user can cause the printf function to overwrite memory at possibly...

GNU Anubis 3.6.x/3.9.x Multiple Format String

No description provided by source. source: http://www.securityfocus.com/bid/9772/info GNU Anubis has been reported prone to multiple buffer overflow and format string vulnerabilities. It has been conjectured that a remote attacker may potentially exploit these vulnerabilities to have arbitrary co...

cfingerd 1.4 Format String Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/2576/info A format string bug in the logging facility of the cfingerd Configurable Finger Daemon allows remote users to attain root privileges and execute arbitrary code. cfingerd queries and logs the remote username of...

Solaris 2.6/7.0 /locale Subsystem Format String

No description provided by source. / source: http://www.securityfocus.com/bid/1634/info nectiva 4.x/5.x,Debian 2.x,IBM AIX 3.x/4.x,Mandrake 7,RedHat 5.x/6.x,IRIX 6.x, Solaris 2.x/7/8,Turbolinux 6.x,Wirex Immunix OS 6.2 Locale Subsystem Format String Many UNIX operating systems provide...