8517 matches found
Adobe Acrobat/Acrobat Reader 6.0 ETD File Parser Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11934/info Adobe Acrobat/Acrobat Reader is reported prone to a remote format string vulnerability. The vulnerability is present in the ETD file parser when processing tag values. Reports indicate that the values supplied...
ezbounce 1.0/1.5 Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8071/info It has been reported that ezbounce is affected by a format string vulnerability. The condition is present in the file ezbounce/commands.cpp and can be triggered when session support is enabled. To exploit this...
Asterisk PBX 0.7.x Multiple Logging Format String Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/10569/info It is reported that Asterisk is susceptible to format string vulnerabilities in its logging functions. An attacker may use these vulnerabilities to corrupt memory, and read or write arbitrary memory. Remote cod...
William Deich Super 3.x SysLog Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5367/info super is prone to a format string vulnerability. This problem is due to incorrect use of the syslog function to log error messages. It is possible to corrupt memory by passing format strings through the vulnerab...
David Bagley xlock 4.16 User Supplied Format String Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/1585/info A vulnerability exists in versions of the xlockmore program, originally written by David Bagley. It is believed to affect all versions of xlock derived from xlockmore. This includes the xlock shipped with a numb...
wu-ftpd SITE EXEC/INDEX Format String Vulnerability
No description provided by source. $Id: wuftpdsiteexecformat.rb 11166 2010-11-30 00:16:53Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and ter...
openSUSE Security Update : tgt (openSUSE-SU-2010:0608-1)
This update of iscscitarget/tgt fixes multiple overflows and a format string vulnerability : - CVE-2010-2221: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P: Buffer Errors CWE-119 - CVE-2010-0743: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P: Format String Vulnerability...
openSUSE Security Update : iscsitarget (openSUSE-SU-2010:0604-1)
This update of iscscitarget/tgt fixes multiple overflows and a format string vulnerability : - CVE-2010-2221: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P: Buffer Errors CWE-119 - CVE-2010-0743: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P: Format String Vulnerability...
openSUSE Security Update : pidgin-otr (openSUSE-SU-2012:0717-1)
pidgin-otr was prone to a format string flaw in logmessagecb %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-314. The text description of this plugin is C SUSE LLC...
openSUSE Security Update : perl-YAML-LibYAML (openSUSE-SU-2012:1000-1)
This update of perl-YAML-LibYAML fixed multiple format string flaws that could cause a crash or potentially allow the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Upda...
openSUSE Security Update : libthunarx-2-0 (openSUSE-SU-2011:0518-1)
Due to a format string error thunar could crash when copy&pasting a file name with format characters CVE-2011-1588. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libthunarx-2-0-4590. The tex...
openSUSE Security Update : perl-DBD-Pg (openSUSE-SU-2012:0422-1)
perl-DBD-Pg was prone to format string errors which could crash applications %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-180. The text description of this plugin is C SUSE LL...
openSUSE Security Update : sudo (openSUSE-2012-73)
sudo was prone to a format string vulnerability %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-73. The text description of this plugin is C SUSE LLC...
openSUSE Security Update : kernel (openSUSE-SU-2013:1971-1)
The Linux Kernel was updated to fix various security issues and bugs. - sctp: Use correct sideffect command in duplicate cookie handling bnc826102, CVE-2013-2206. - Drivers: hv: util: Fix a bug in util version negotiation code bnc838346. - vmxnet3: prevent div-by-zero panic when ring resizing...
CVE-2013-7386
Format string vulnerability in the PROJECT::writeaccountfile function in client/csaccount.cpp in BOINC, possibly 7.2.33, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via format string specifiers in the guiurls item in an account file...
DEBIAN-CVE-2013-7386
Format string vulnerability in the PROJECT::writeaccountfile function in client/csaccount.cpp in BOINC, possibly 7.2.33, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via format string specifiers in the guiurls item in an account file...
CVE-2013-7386
Format string vulnerability in the PROJECT::writeaccountfile function in client/csaccount.cpp in BOINC, possibly 7.2.33, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via format string specifiers in the guiurls item in an account file...
CVE-2013-7386
Format string vulnerability in the PROJECT::writeaccountfile function in client/csaccount.cpp in BOINC, possibly 7.2.33, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via format string specifiers in the guiurls item in an account file...
Format string
Format string vulnerability in the PROJECT::writeaccountfile function in client/csaccount.cpp in BOINC, possibly 7.2.33, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via format string specifiers in the guiurls item in an account file...
CVE-2013-7386
Format string vulnerability in the PROJECT::writeaccountfile function in client/csaccount.cpp in BOINC, possibly 7.2.33, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via format string specifiers in the guiurls item in an account file...