8517 matches found
CVE-2007-1006
Multiple format string vulnerabilities in the gmmainwindowflashmessage function in Ekiga before 2.0.5 allow attackers to cause a denial of service and possibly execute arbitrary code via a crafted Q.931 SETUP packet...
CVE-2007-1006
Multiple format string vulnerabilities in the gmmainwindowflashmessage function in Ekiga before 2.0.5 allow attackers to cause a denial of service and possibly execute arbitrary code via a crafted Q.931 SETUP packet...
Format string
Multiple format string vulnerabilities in the gmmainwindowflashmessage function in Ekiga before 2.0.5 allow attackers to cause a denial of service and possibly execute arbitrary code via a crafted Q.931 SETUP packet...
Critical: gnomemeeting security update
1.0.2-9 - Fix for format string vulnerability bug 229266...
CVE-2007-1006
CVE-2007-1006 affects Ekiga prior to 2.0.5, where multiple format string vulnerabilities in gm_main_window_flash_message can be triggered by a crafted Q.931 SETUP packet. This could cause denial of service and potentially allow arbitrary code execution. The advisory details indicate the issue res...
CVE-2007-1006
Multiple format string vulnerabilities in the gmmainwindowflashmessage function in Ekiga before 2.0.5 allow attackers to cause a denial of service and possibly execute arbitrary code via a crafted Q.931 SETUP packet...
CVE-2007-1006
Removed by vendor...
php security update
CentOS Errata and Security Advisory CESA-2007:0076 Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...
Important: Red Hat Security Advisory: php security update
Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...
security flaw
Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to 1 all of the print functions on 64-bit systems, and 2 the odbcresultall function...
Axigen eMail Server 2.0.0b2 (pop3) Remote Format String Exploit
No description provided by source. / axiagen.c Axigen eMail Server v2.0 beta by fuGich Tue Dec 5 2006 thanks to mu-b - Tested on: Axigen V2 beta logType for the pop3 service must be "system" and the logLevel set to any number with 4th bit set remote shell format string vulnerability in pop3...
Mandrake Linux Security Advisory : gdm (MDKSA-2006:231)
Local exploitation of a format string vulnerability in GNOME Foundation's GNOME Display Manager host chooser window gdmchooser could allow an unauthenticated attacker to execute arbitrary code on the affected system. The updated packages have been patched to correct this issue. %NASLMINLEVEL 7030...
FreeBSD : php -- multiple vulnerabilities (7fcf1727-be71-11db-b2ec-000c6ec775d9)
Multiple vulnerabilities have been found in PHP, including : buffer overflows, stack overflows, format string, and information disclosure vulnerabilities. The session extension contained safemode and openbasedir bypasses, but the FreeBSD Security Officer does not consider these real security...
SUSE-SA:2007:005: w3m
The remote host is missing the patch for the advisory SUSE-SA:2007:005 w3m. A format string problem in w3m -dump / -backend mode could be used by a malicious server to crash w3m or execute code. In SUSE Linux 10.1, openSUSE 10.2 and SUSE Linux Enterprise Server and Desktop 10 this problem was not...
Axigen format string vulnerability
Format string vulnerability on syslog call...
Axigen eMail Server 2.0.0b2 - pop3 Remote Format String
Axigen eMail Server 2.0.0b2 - pop3 Remote Format String / axiagen.c Axigen eMail Server v2.0 beta by fuGich Tue Dec 5 2006 thanks to mu-b - Tested on: Axigen V2 beta logType for the pop3 service must be "system" and the logLevel set to any number with 4th bit set remote shell format string...
[Full-disclosure] Axigen server version: 2.0.0-beta1 (Linux/i686) - pop3 remote shell
The code attached exploits a format string vulnerability in the V2 beta version of Axigen. The pop3 service calls syslog in a vulnerable way when the logtype, for the pop3 service, been set to "system" and loglevel is number with 4th bit set. Any unknown command causes the log call with overwriti...
Axigen eMail Server 2.0.0b2 (pop3) Remote Format String Exploit
Exploit for linux platform in category remote exploits =============================================================== Axigen eMail Server 2.0.0b2 pop3 Remote Format String Exploit =============================================================== / axiagen.c Axigen eMail Server v2.0 beta by fuGich...
Mandrake Linux Security Advisory : samba (MDKSA-2007:034)
A logic error in the deferred open code for smbd may allow an authenticated user to exhaust resources such as memory and CPU on the server by opening multiple CIFS sessions, each of which will normally spawn a new smbd process, and sending each connection into an infinite loop. CVE-2007-0452 The...
SUSE-SA:2007:013: xine-ui,xine-lib,xine-extra,xine-devel
The remote host is missing the patch for the advisory SUSE-SA:2007:013 xine-ui,xine-lib,xine-extra,xine-devel. This update fixes several format string bugs that can be exploited remotely with user-assistance to execute arbitrary code. Since SUSE Linux version 10.1 format string bugs are not...