Lucene search
K

8517 matches found

Cvelist
Cvelist
added 2007/01/03 2:0 a.m.20 views

CVE-2007-0017

Multiple format string vulnerabilities in 1 the cdiologhandler function in modules/access/cdda/access.c in the CDDA libcddaplugin plugin, and the 2 cdiologhandler and 3 vcdloghandler functions in modules/access/vcdx/access.c in the VCDX libvcdxplugin plugin, in VideoLAN VLC 0.7.0 through 0.8.6...

7.4AI score0.11975EPSS
Exploits3References20
CVE
CVE
added 2007/01/03 2:0 a.m.76 views

CVE-2007-0017

VLC 0.7.0–0.8.6 contains a format-string vulnerability in the cdio_log_handler, vcd_log_handler, and cdio_log_handler functions (modules/access/cdda/access.c and modules/access/vcdx/access.c) that can be triggered by a malformed udp:// URI in an M3U file. The underlying issue is format string han...

6.8CVSS7.3AI score0.11975EPSS
Exploits3References20Affected Software1
Debian CVE
Debian CVE
added 2007/01/03 2:0 a.m.22 views

CVE-2007-0017

Multiple format string vulnerabilities in 1 the cdiologhandler function in modules/access/cdda/access.c in the CDDA libcddaplugin plugin, and the 2 cdiologhandler and 3 vcdloghandler functions in modules/access/vcdx/access.c in the VCDX libvcdxplugin plugin, in VideoLAN VLC 0.7.0 through 0.8.6...

6.8CVSS7.4AI score0.11975EPSS
Exploits3
Exploit DB
Exploit DB
added 2007/01/03 12:0 a.m.16 views

Xine 0.99.4 - '.m3u' Remote Format String

source: https://www.securityfocus.com/bid/22252/info The 'xine' program is prone to a remote format-string vulnerability because the application fails to properly sanitize user-supplied input before including it in the format-specifier argument of a formatted-printing function. Successfully...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2007/01/03 12:0 a.m.13 views

VLC Media Player 0.8.6 (udp://) Format String Exploit (x86)

No description provided by source. !/usr/bin/perl http://www.digitalmunition.com/VLCMediaSlayer-x86.pl Code by Kevin Finisterre kflistsatdigitalmunitiondotcom This exploit will create a malicious .m3u file that will cause VLC Player for OSX to execute arbitrary code. $outfile = "pwnage.m3u";...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/01/03 12:0 a.m.8 views

Xine 0.99.4 - .m3u Remote Format String

Xine 0.99.4 - .m3u Remote Format String source: https://www.securityfocus.com/bid/22252/info The 'xine' program is prone to a remote format-string vulnerability because the application fails to properly sanitize user-supplied input before including it in the format-specifier argument of a...

0.3AI score
Exploits0
seebug.org
seebug.org
added 2007/01/03 12:0 a.m.21 views

VLC Media Player 0.8.6 (udp://) Format String Exploit PoC (ppc)

No description provided by source. !/usr/bin/perl http://www.digitalmunition.com/VLCMediaSlayer-ppc.pl Code by Kevin Finisterre kflistsatdigitalmunitiondotcom This is just a vanilla format string exploit for OSX on ppc. We overwrite a saved return addy with our shellcode address...

7.1AI score
Exploits0
0day.today
0day.today
added 2007/01/02 12:0 a.m.15 views

VLC Media Player 0.8.6 (udp://) Format String Exploit PoC (ppc)

Exploit for macOS platform in category dos / poc =============================================================== VLC Media Player 0.8.6 udp:// Format String Exploit PoC ppc =============================================================== !/usr/bin/perl...

7AI score
Exploits0
exploitpack
exploitpack
added 2007/01/02 12:0 a.m.10 views

VideoLAN VLC Media Player 0.8.6 (x86) - udp: Format String

VideoLAN VLC Media Player 0.8.6 x86 - udp: Format String !/usr/bin/perl http://www.digitalmunition.com/VLCMediaSlayer-x86.pl Code by Kevin Finisterre kflistsatdigitalmunitiondotcom This exploit will create a malicious .m3u file that will cause VLC Player for OSX to execute arbitrary code. $outfil...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2007/01/02 12:0 a.m.15 views

VideoLAN VLC Media Player 0.8.6 (PPC) - udp: Format String (PoC)

VideoLAN VLC Media Player 0.8.6 PPC - udp: Format String PoC !/usr/bin/perl http://www.digitalmunition.com/VLCMediaSlayer-ppc.pl Code by Kevin Finisterre kflistsatdigitalmunitiondotcom This is just a vanilla format string exploit for OSX on ppc. We overwrite a saved return addy with our shellcode...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/01/02 12:0 a.m.36 views

VideoLAN VLC Media Player 0.8.6 (PPC) - 'udp://' Format String (PoC)

!/usr/bin/perl http://www.digitalmunition.com/VLCMediaSlayer-ppc.pl Code by Kevin Finisterre kflistsatdigitalmunitiondotcom This is just a vanilla format string exploit for OSX on ppc. We overwrite a saved return addy with our shellcode address. This code currently overwrites the saved return add...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/01/02 12:0 a.m.39 views

VideoLAN VLC Media Player 0.8.6 (x86) - 'udp://' Format String

!/usr/bin/perl http://www.digitalmunition.com/VLCMediaSlayer-x86.pl Code by Kevin Finisterre kflistsatdigitalmunitiondotcom This exploit will create a malicious .m3u file that will cause VLC Player for OSX to execute arbitrary code. $outfile = "pwnage.m3u"; $bindshell =...

7.4AI score
Exploits0
0day.today
0day.today
added 2007/01/02 12:0 a.m.22 views

VLC Media Player 0.8.6 (udp://) Format String Exploit (x86)

Exploit for macOS platform in category local exploits =========================================================== VLC Media Player 0.8.6 udp:// Format String Exploit x86 =========================================================== !/usr/bin/perl http://www.digitalmunition.com/VLCMediaSlayer-x86.pl...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2007/01/02 12:0 a.m.26 views

Georgia SoftWorks Secure Shell Server 7.1.3 - Multiple Remote Code Execution Vulnerabilities

source: https://www.securityfocus.com/bid/27103/info Georgia SoftWorks Secure Shell Server is prone to multiple remote code-execution vulnerabilities: - A format-string vulnerability - Two buffer-overflow vulnerabilities. Successfully exploiting these issues allows remote attackers to execute...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/12/30 12:0 a.m.28 views

Debian DSA-1242-1 : elog - several vulnerabilities

Several remote vulnerabilities have been discovered in elog, a web-based electronic logbook, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-5063 Tilman Koschnick discovered that log entry editing i...

7.5CVSS5AI score0.03177EPSS
Exploits1References9
CVE
CVE
added 2006/12/29 11:0 a.m.37 views

CVE-2005-4817

The CVE-2005-4817 issue affects Textbased MSN Client (TMSNC) up to version before 0.2.5. It is a format-string vulnerability in ui.c that allows an attacker to cause a denial of service and possibly execute arbitrary code via injection into the wprintw function. Exploitation details are not provi...

7.5CVSS7.5AI score0.02423EPSS
Exploits0References6Affected Software1
UbuntuCve
UbuntuCve
added 2006/12/27 11:28 p.m.35 views

CVE-2006-6772

Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name CN field of an SSL certificate associated with an https URL...

9.3CVSS7.4AI score0.04665EPSS
Exploits0References1
NVD
NVD
added 2006/12/27 11:28 p.m.14 views

CVE-2006-6772

Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name CN field of an SSL certificate associated with an https URL...

9.3CVSS7.5AI score0.04665EPSS
Exploits0References22
OSV
OSV
added 2006/12/27 11:28 p.m.3 views

DEBIAN-CVE-2006-6772

Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name CN field of an SSL certificate associated with an https URL...

9.3CVSS7.8AI score0.04665EPSS
Exploits0References1
OSV
OSV
added 2006/12/27 11:28 p.m.7 views

CVE-2006-6772

Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name CN field of an SSL certificate associated with an https URL...

7.4AI score
Exploits0References22
Rows per page
Query Builder