8517 matches found
Larson Network Print Server 9.4.2 build 105 (LstNPS) Logging Function USEP Command Remote Format String
No description provided by source. source: http://www.securityfocus.com/bid/27732/info Larson Software Technology Network Print Server is prone to a format-string vulnerability and a buffer-overflow vulnerability. An attacker can exploit these issues to execute arbitrary code within the context o...
MailEnable 1.8 - Remote Format String Denial of Service Exploit
No description provided by source. See-security Technologies ltd. http://www.see-security.com MailEnable 1.8 Format String DoS exploit Discovered by Mati Aharoni Coded by tal zeltzer import sys import time import socket def PrintLogo: print...
IBM solidDB 6.0.10 - Format String Vulnerability and Multiple Denial of Service Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/28468/info IBM solidDB is prone to a format-string vulnerability affecting the logging function and three denial-of-service vulnerabilities. Attackers can exploit these issues to execute arbitrary code or to deny service ...
Samhain Labs 1.x HSFTP Remote Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9715/info hsftp has been found to be prone to a remote print format string vulnerability. This issue is due to the application improper use of a format printing function. Ultimately this vulnerability could allow for...
ZABBIX 1.1.2 - Multiple Unspecified Remote Code Execution Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/20416/info ZABBIX is prone to multiple unspecified remote code-execution vulnerabilities. Reports indicate that these issues facilitate format-string and buffer-overflow attacks. A remote attacker may leverage these...
Magic Winmail Server 2.3 USER POP3 Command Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7667/info A format string vulnerability has been reported for Magic Winmail Server when processing the USER POP3 command. An attacker may exploit this vulnerability by connecting to the vulnerable mail server and issuing...
Georgia SoftWorks Secure Shell Server 7.1.3 Multiple Remote Code Execution Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/27103/info Georgia SoftWorks Secure Shell Server is prone to multiple remote code-execution vulnerabilities: - A format-string vulnerability - Two buffer-overflow vulnerabilities. Successfully exploiting these issues allo...
Easy Address Book Web Server 1.2 - Remote Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19842/info Easy Address Book Web Server is prone to a remote format-string vulnerability because the application fails to properly sanitize user-supplied data before including it in the format-specifier argument to a...
Half-Life StatsMe 2.6.x Plug-in MakeStats Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6578/info The Half-Life StatsMe plug-in is prone to an exploitable format string vulnerability. This issue may be exploited by an attacker who can authenticate with the rcon-password of the Half-Life server to execute...
Wireshark <= 1.0.6 PN-DCP Format String Exploit PoC
No description provided by source. / THCX Wireshark = 1.0.6 PN-DCP format string bug POC ! autore: THCX Labs ! PN-DCP eithor standalone or tunneld thru DCE/RPC ! local open of pcapfile also working / include stdio.h include stdlib.h include errno.h char sploit=...
Exim Internet Mailer 3.35/3.36/4.10 Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6314/info A format string vulnerability has been discovered in Exim. The problem occurs in the daemongo function. By supplying malicious format strings via the command line, it is possible for an attacker to execute...
Exim 3.x Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2828/info Exim is a free, open-source Mail Transfer Agent for Unix systems. Exim is vulnerable to a locally exploitable format string attack which may compromise root access. The vulnerability exists only when the 'syntax...
Asterisk PBX 0.7.x Multiple Logging Format String Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/10569/info It is reported that Asterisk is susceptible to format string vulnerabilities in its logging functions. An attacker may use these vulnerabilities to corrupt memory, and read or write arbitrary memory. Remote cod...
NAI Net Tools PKI Server 1.0 Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1538/info Certain versions of Network Associates Inc.'s Net Tools PKI Public Key Infrastructure server ship with a vulnerability which allows remote attackers to execute arbitrary commands on the system which the PKI serv...
OpenFTPD <= 0.30.1 (message system) Remote Shell Exploit
No description provided by source. / shouts to mitakeet :D exploit for openftpd format string bug. tested on most current version only. -infamous42md AT hotpop DOT com is real email only tricky part is find a place to stick the shell, as there isn't enough room to send it with the format string...
William Deich Super 3.x SysLog Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5367/info super is prone to a format string vulnerability. This problem is due to incorrect use of the syslog function to log error messages. It is possible to corrupt memory by passing format strings through the vulnerab...
David Bagley xlock 4.16 User Supplied Format String Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/1585/info A vulnerability exists in versions of the xlockmore program, originally written by David Bagley. It is believed to affect all versions of xlock derived from xlockmore. This includes the xlock shipped with a numb...
GNU Mailutils imap4d 0.5 < 0.6.90 Remote Format String Exploit
No description provided by source. / gun-imapd.c gnu mailutils-0.5 - mailutils-0.6.90 remote formatstring exploit written and tested on FC3. this is a first testing version and the onlyone to go public. by [email protected] / include stdio.h include string.h include unistd.h include stdlib.h...
CellFactor Revolution 1.03 - Multiple Remote Code Execution Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/25625/info CellFactor: Revolution is prone to multiple remote code-execution vulnerabilities, including a buffer-overflow issue and a format-string issue. Successfully exploiting these issues will allow an attacker to...
MySQL <= 5.0.45 COM_CREATE_DB Format String PoC (auth)
No description provided by source. MySQL tested: Version 5.0.45 on CentOS Linux Format String Vulnerability MySQL General Available GA Release is vulnerable. Latest MySQL Version is not vulnerable since the bug if ifdef'ed off. from mysql-5.0.75 source mysql-5.0.75.tar.gz in the file...