8517 matches found
Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit (2)
No description provided by source. !/usr/bin/ruby cyrus-imapd pop3d exploit by bannedit 05/23/2006 This exploit takes advantage of a stack based overflow. Once the stack corruption has occured it is possible to overwrite a pointer which is later used for a memcpy this gives us a write anything...
Cyrus IMAPD 2.3.2 - 'pop3d' Remote Buffer Overflow (2)
!/usr/bin/ruby cyrus-imapd pop3d exploit by bannedit 05/23/2006 This exploit takes advantage of a stack based overflow. Once the stack corruption has occured it is possible to overwrite a pointer which is later used for a memcpy this gives us a write anything anywhere condition similar to a forma...
CVE-2006-3469
Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April 2006 allows remote authenticated users to cause a denial of service crash via a format string instead of a date as the first parameter to the dateformat function, which is later used in a formatted pri...
CVE-2006-3469
CVE-2006-3469 is a format-string vulnerability in MySQL Server's DATE_FORMAT usage (time.cc). A remote authenticated user could crash the server by passing a format string as the first parameter to date_format, which then propagates to a faulty formatted error message. Affected versions are MySQL...
CVE-2006-3628
Wireshark/Ethereal suffers format-string vulnerabilities in several dissectors (Checkpoint FW-1, MQ, XML, NTP) across versions 0.10.x–0.99.0. The issues allow remote attackers to trigger denial of service and, in some cases, execute arbitrary code. Public advisories in Debian, Gentoo, SuSE/openSU...
CVE-2006-3628
Multiple format string vulnerabilities in Wireshark aka Ethereal 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the 1 ANSI MAP, 2 Checkpoint FW-1, 3 MQ, 4 XML, and 5 NTP dissectors...
CVE-2006-3628
Multiple format string vulnerabilities in Wireshark aka Ethereal 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the 1 ANSI MAP, 2 Checkpoint FW-1, 3 MQ, 4 XML, and 5 NTP dissectors...
Trend Micro OfficeScan 7.3 Multiple Vulnerabilities
The remote host appears to be running Trend Micro OfficeScan Server. This version of OfficeScan is vulnerable to multiple stack overflows in CGI programs that could allow a remote attacker to execute code in the context of the remote server. Note that OfficeScan server under Windows runs with...
CVE-2006-3573
Format string vulnerability in the WriteText function in agltext.cpp in Milan Mimica Sparklet 0.9.4 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a player nickname...
CVE-2006-3573
The CVE-2006-3573 entry describes a format string vulnerability in the WriteText function of the agl_text.cpp component within Milan Mimica Sparklet 0.9.4 and earlier . The flaw allows remote attackers to trigger arbitrary code execution via format string specifiers embedded in a player nickname....
CVE-2006-3573
Format string vulnerability in the WriteText function in agltext.cpp in Milan Mimica Sparklet 0.9.4 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a player nickname...
Sparklet game format string vulnerabilitity
Format string vulnerability on player name displaying...
Format string bug in Sparklet 0.9.4try3
Luigi Auriemma Application: Sparklet http://sparklet.sourceforge.net Versions: = 0.9.4try3 Platforms: Windows, nix, BSD and more Bug: format string in client's display Exploitation: remote, versus clients Date: 06 Jul 2006 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1...
CentOS 3 / 4 : Evolution (CESA-2005:267)
Updated evolution packages that fix a format string issue are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. Evolution is the GNOME collection of personal information management PIM tools. A format string bug was found in...
CentOS 4 : dia (CESA-2006:0541)
Updated Dia packages that fix several buffer overflow bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Dia drawing program is designed to draw various types of diagrams. Several format string flaws were found in the w...
CentOS 4 : perl (CESA-2005:880)
Updated Perl packages that fix security issues and bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Perl is a high-level programming language commonly used for system administration utilitie...
CentOS 3 : perl (CESA-2005:881)
Updated Perl packages that fix security issues and bugs are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Perl is a high-level programming language commonly used for system administration utilitie...
CentOS 3 / 4 : mod_auth_pgsql (CESA-2006:0164)
Updated modauthpgsql packages that fix format string security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. The modauthpgsql package is an httpd module that allows user...
Mac OS X <= 10.4.6 (launchd) Local Format String Exploit (ppc)
No description provided by source. !/usr/bin/perl http://www.digitalmunition.com/FailureToLaunch-ppc.pl Code by Kevin Finisterre kflistsatdigitalmunitiondotcom Much appreciation goes to John H for all kindsa random shit like exploiting Veritas and other random things in the past core... where the...
Apple Mac OSX 10.4.6 (PPC) - launchd Local Format String
Apple Mac OSX 10.4.6 PPC - launchd Local Format String !/usr/bin/perl http://www.digitalmunition.com/FailureToLaunch-ppc.pl Code by Kevin Finisterre kflistsatdigitalmunitiondotcom Much appreciation goes to John H for all kindsa random shit like exploiting Veritas and other random things in the pa...