8517 matches found
British National Corpus SARA 0 Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10984/info sarad is reported prone to a buffer overflow vulnerability. This issue presents itself due to insufficient sanitization of user-supplied data. A remote attacker can trigger the overflow condition by supplying a...
ISDN4Linux 3.1 IPPPD Device String SysLog Format String Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/5437/info isdn4linux is a freely available, open source package of isdn compatibility tools. It is available for Linux operating systems. isdn4linux contains a format string vulnerability in the ipppd utility. In some...
Xine 0.9/1.0 Playlist Handling Remote Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17579/info The xine package is reported prone to a remote format-string vulnerability. This issue arises when the application handles specially crafted playlist files. An attacker can exploit this vulnerability by craftin...
Slurp 1.10 SysLog Remote Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4935/info slurp is a freely available, open source NNTP client. It is designed for use on most Unix and Linux operating systems. It may be possible for a remote server to execute code on a vulnerable client. slurp offers...
NEdit 5.5 - Format String Vulnerability
No description provided by source. Exploit Title: Format string vulnerability in Nedit = 5.5. Date: 04/13/2011 Author: Tosh The bug was already patched when I'd found the vuln Email: [email protected] Patch:...
Solaris 2.6/7.0 "eject" exploit for locale subsystem format string
No description provided by source. / source: http://www.securityfocus.com/bid/1634/info nectiva 4.x/5.x,Debian 2.x,IBM AIX 3.x/4.x,Mandrake 7,RedHat 5.x/6.x,IRIX 6.x, Solaris 2.x/7/8,Turbolinux 6.x,Wirex Immunix OS 6.2 Locale Subsystem Format String Many UNIX operating systems provide...
XM Easy Personal FTP Server <= 5.30 - Remote Format String Write4 Exploit
No description provided by source. !/usr/bin/python XM Easy Personal FTP Server v = 5.30 Remote Format String write4 Exploit exploit by: mrme @netninja/mrmeatcorelan.be Thanks to the Corelan Security Team Note: this is a poc only, and requires the following target environment: Windows Server 23k:...
OpenFTPD (<= 0.30.2) Remote Exploit
No description provided by source. / hoagieopenftpd.c LINUX/X86 OPENFTPD REMOTE EXLPOIT = 0.30.2 Searching for those warez ftpd's out there and leeching 'free' movies Remote Linux/OpenFTPD exploit for the format string bug in the message system. This vulnerability was rediscovered by a VOID.AT...
GNU Mailutils imap4d <= 0.6 - Remote Format String Exploit
No description provided by source. / mu-imap4dfsexp.c GNU Mailutils imap4d v0.6 remote format string exploit by CoKi [email protected] Original Reference: http://www.idefense.com/application/poi/display?id=246&type=vulnerabilities coki@nosystem:/home/coki/audit$ ./mu-imap4dfsexp GNU Mailutils...
Tolis Group BRU 17.0 - Local Root Exploit (1)
No description provided by source. source: http://www.securityfocus.com/bid/8215/info It has been reported that BRU may not properly parse commandline arguments, potentially leading to at least two vectors of exploitation. It may be possible for local attackers to conduct format string-based...
Mailtraq 2.1 .0.1302 Remote Format String SMTP Resource Consumption Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7926/info It has been reported that Mailtraq does not reliably handle format strings in some SMTP protocol fields. This may cause a system to become unstable and crash, allowing a remote attacker to deny service to the...
TipxD <= 1.1.1 - Local Format String Vulnerability (not setuid)
No description provided by source. / tipxdexp.c TipxD Format String Vulnerability TipxD = 1.1.1 local exploit Proof of Concept Tested in Slackware 9.0 / 9.1 / 10.0 by CoKi [email protected] - SECU No System Group - http://www.nosystem.com.ar / include stdio.h include string.h define PATH...
Vavoom 1.24 sv_main.cpp Say Command Remote Format String
No description provided by source. source: http://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can exploit these issues to execute arbitrary code within...
Vavoom 1.24 str.cpp VStr::Resize Function Crafted UDP Packet Remote DoS
No description provided by source. source: http://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can exploit these issues to execute arbitrary code within...
ngIRCd <= 0.8.2 - Remote Format String Exploit
No description provided by source. / ngircdfsexp.c ngIRCd = 0.8.2 remote format string exploit Note: To obtain a successful exploitation, we need that ngIRCd has been compiled with IDENT, logging to SYSLOG and DEBUG enabled. Original Reference: http://www.nosystem.com.ar/advisories/advisory-11.tx...
Debian 2.2,S.u.S.E 6.3/6.4/7.0 man -l Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2327/info man is the manual page viewing program, available with the Linux Operating System in this implementation. It is freely distributed and openly maintained. A problem with the man command may allow for the elevatio...
sudo 1.8.0-1.8.3p1 (sudo_debug) - Root Exploit + glibc FORTIFY_SOURCE Bypass
No description provided by source. / death-star.c sudo v1.8.0-1.8.3p1 sudodebug format string root exploit + glibc FORTIFYSOURCE bypass by aeon - http://infosecabsurdity.wordpress.com/ This PoC exploits: - CVE-2012-0864 - FORTIFYSOURCE format string protection bypass via nargs integer overflow -...
zkfingerd 0.9.1 say() Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6404/info zkfingerd is prone to a format string vulnerability. The affected function does not perform sufficient checks when displaying user-supplied input. It is possible to corrupt memory by passing format strings throu...
Apple Mac OS X 10.x KExtLoad Format String Weakness
No description provided by source. source: http://www.securityfocus.com/bid/20031/info Apple Mac OS X 'kextload' is prone to a format-string vulnerability because it fails to sufficiently sanitize user-supplied input data. This issue is not exploitable by itself, because kextload is not installed...
Solaris <= 10 LPD Arbitrary File Delete Exploit (metasploit)
No description provided by source. This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artisti...