8517 matches found
Songbird Media Player 0.2 - Format String Denial of Service (PoC)
/ ======================================================================== 0-day Songbird Media Player November 2006 - Month Of Greg's Media Player Exploits : i'll probably continue...
Debian DSA-1213-1 : imagemagick - several vulnerabilities
Several remote vulnerabilities have been discovered in Imagemagick, a collection of image manipulation programs, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-0082 Daniel Kobras discovered that...
[SECURITY] [DSA 1213-1] New imagemagick packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1213-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 19th, 2006 http://www.debian.org/security/faq -...
DSA-1213 imagemagick
Bulletin has no description...
CVE-2006-5790
Multiple format string vulnerabilities in elogd.c in ELOG 2.6.2 and earlier allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via 1 an entry with an attachment whose name contains format string specifiers elsubmit function, and possibly other vectors in...
CVE-2006-5790
Multiple format string vulnerabilities in elogd.c in ELOG 2.6.2 and earlier allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via 1 an entry with an attachment whose name contains format string specifiers elsubmit function, and possibly other vectors in...
CVE-2006-5789
WarFTPd 1.82.00-RC11 is affected by multiple remote format-string vulnerabilities. The OpenVAS notes indicate the server is prone to format-string issues caused by unsanitized input being passed to formatted-output functions, enabling a denial of service (and potentially arbitrary code execution)...
CVE-2006-5790
Multiple format string vulnerabilities in elogd.c in ELOG 2.6.2 and earlier allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via 1 an entry with an attachment whose name contains format string specifiers elsubmit function, and possibly other vectors in...
CVE-2006-5790
The CVE-2006-5790 issue affects elog (web-based electronic logbook) up to version 2.6.2 and earlier, with multiple format-string vulnerabilities in elogd.c (and related vectors in functions such as el_submit, receive_config, show_rss_feed, show_elog_list, show_logbook_node, server_loop) that coul...
CVE-2006-5790
Removed by vendor...
WarFTPd FTP Server format string vulnerability
CWD command format string vulnerability...
WarFTP Daemon < 1.82.00-RC13 Multiple Command Remote Format Strings
Binary data 3808.prm...
Apache mod_tcl module contains a format string error
Overview A format string vulnerability exists in the modtcl Apache module. This vulnerability may allow a remote attacker to execute arbitrary code. Description The Apache HTTP Server, also known as httpd, is an open-source HTTP server that runs on Microsoft Windows, Linux, Unix, and Apple OS X...
ZABBIX格式串处理及缓冲区溢出漏洞
ZABBIX是用于监控网络参数及服务器状态的软件。 ZABBIX实现上存在多个格式串及缓冲区溢出漏洞,远程攻击者可能利用这些漏洞诱骗用户连接到恶意的ZABBIX代理导致拒绝服务或执行任意指令。 ZABBIX SIA zabbix 1.1.2-2 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.zabbix.org/ !/usr/bin/perl -- zabbix-exploiter by Ulf Harnhammar in 2006 I hereby place this program in the public domain. use...
FreeBSD TOP Format String Vulnerability
No description provided by source. / freebsd x86 top exploit affected under top-3.5beta9 including this version 1. get the address of .dtors from /usr/bin/top using objdump , 'objdump -s -j .dtors /usr/bin/top' 2. divide it into four parts, and set it up into an environment variable like "XSEO=" ...
Solaris/SPARC 2.7 / 7 locale Format String Exploit
No description provided by source. / Exploit for the locale format string vulnerability in Solaris/SPARC 2.7 / 7 Based on the exploit by Warning3 [email protected] For additional information see http://www.phreedom.org/solar/localesol.txt By Solar Eclipse [email protected] Assistant...
HP-UX B11.11 /usr/bin/ct Local Format String Root Exploit
No description provided by source. / File : xhp-ux11inlsct.c Usage : cc xhp-ux11inlsct.c -o xct ; ./xct Purpose : Get a local rootshell from /usr/bin/ct,using HP-UX location language format string bug. Author : watercloud xfocus org Tested : On HP-UX B11.11 . / includestdio.h define PATH...
CVE-2006-5558
Format string vulnerability in the swask command in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via format string specifiers in the -s argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to ...
CVE-2006-5558
Format string vulnerability in the swask command in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via format string specifiers in the -s argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to ...
CVE-2006-5558
CVE-2006-5558: HP-UX B.11.11 (and possibly other versions) is affected by a format string vulnerability in the swask command, allowing a local user to execute arbitrary code via format string specifiers in the -s argument. The vulnerability description notes it may be a duplicate of CVE-2006-2574...