Lucene search
K

8517 matches found

NVD
NVD
added 2006/05/22 11:10 p.m.16 views

CVE-2006-1520

Format string vulnerability in ANSI C Sender Policy Framework library libspf before 1.0.0-p5, when debugging is enabled, allows remote attackers to execute arbitrary code via format string specifiers, possibly in an e-mail address...

6.4CVSS7.8AI score0.02547EPSS
Exploits0References5
NVD
NVD
added 2006/05/22 11:10 p.m.20 views

CVE-2006-2537

Multiple format string vulnerabilities in a OpenBOR 2.0046 and earlier, b Beats of Rage BOR 1.0029 and earlier, and c Horizontal Shooter BOR HOR 2.0000 and earlier allow remote attackers to execute code via format string specifiers in configurations used in various mod files, as demonstrated by t...

7.5CVSS7.3AI score0.04797EPSS
Exploits1References10
CVE
CVE
added 2006/05/22 11:0 p.m.47 views

CVE-2006-1520

CVE-2006-1520 affects libspf before 1.0.0-p5. When debugging is enabled, it allows remote attackers to execute arbitrary code via format string specifiers, possibly in an e-mail address. Impact: remote code execution. A fix is available in libspf 1.0.0-p5 or later; upgrade to mitigate.

6.4CVSS7.8AI score0.02547EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2006/05/22 11:0 p.m.23 views

CVE-2006-2537

Multiple format string vulnerabilities in a OpenBOR 2.0046 and earlier, b Beats of Rage BOR 1.0029 and earlier, and c Horizontal Shooter BOR HOR 2.0000 and earlier allow remote attackers to execute code via format string specifiers in configurations used in various mod files, as demonstrated by t...

7.3AI score0.04797EPSS
Exploits1References10
CVE
CVE
added 2006/05/22 11:0 p.m.92 views

CVE-2006-2537

CVE-2006-2537 affects OpenBOR 2.0046 and earlier, Beats of Rage (BOR) 1.0029 and earlier, and Horizontal Shooter BOR (HOR) 2.0000 and earlier. The issue is multiple format string vulnerabilities in configuration handling (data/scenes/intro.txt and data/easy/1aeasy.txt) that are not properly proce...

7.5CVSS7.4AI score0.04797EPSS
Exploits1References10Affected Software3
Cvelist
Cvelist
added 2006/05/22 11:0 p.m.18 views

CVE-2006-1520

Format string vulnerability in ANSI C Sender Policy Framework library libspf before 1.0.0-p5, when debugging is enabled, allows remote attackers to execute arbitrary code via format string specifiers, possibly in an e-mail address...

7.8AI score0.02547EPSS
Exploits0References5
NVD
NVD
added 2006/05/19 9:2 p.m.10 views

CVE-2006-2480

Format string vulnerability in Dia 0.94 allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code by triggering errors or warnings, as demonstrated via format string specifiers in a .bmp filename. NOTE: the original exploit was demonstrated through a...

5.1CVSS7.3AI score0.07628EPSS
Exploits1References19
Prion
Prion
added 2006/05/19 9:2 p.m.13 views

Format string

Format string vulnerability in Dia 0.94 allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code by triggering errors or warnings, as demonstrated via format string specifiers in a .bmp filename. NOTE: the original exploit was demonstrated through a...

5.1CVSS7.5AI score0.07628EPSS
Exploits1References19Affected Software1
UbuntuCve
UbuntuCve
added 2006/05/19 9:2 p.m.24 views

CVE-2006-2480

Format string vulnerability in Dia 0.94 allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code by triggering errors or warnings, as demonstrated via format string specifiers in a .bmp filename. NOTE: the original exploit was demonstrated through a...

5.1CVSS6.2AI score0.07628EPSS
Exploits1References2
OSV
OSV
added 2006/05/19 9:2 p.m.9 views

CVE-2006-2480

Format string vulnerability in Dia 0.94 allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code by triggering errors or warnings, as demonstrated via format string specifiers in a .bmp filename. NOTE: the original exploit was demonstrated through a...

7.4AI score
Exploits0References20
OSV
OSV
added 2006/05/19 9:2 p.m.1 views

DEBIAN-CVE-2006-2480

Format string vulnerability in Dia 0.94 allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code by triggering errors or warnings, as demonstrated via format string specifiers in a .bmp filename. NOTE: the original exploit was demonstrated through a...

5.1CVSS7.8AI score0.07628EPSS
Exploits1References1
Cvelist
Cvelist
added 2006/05/19 9:0 p.m.15 views

CVE-2006-2480

Format string vulnerability in Dia 0.94 allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code by triggering errors or warnings, as demonstrated via format string specifiers in a .bmp filename. NOTE: the original exploit was demonstrated through a...

7.3AI score0.07628EPSS
Exploits1References19
Debian CVE
Debian CVE
added 2006/05/19 9:0 p.m.19 views

CVE-2006-2480

Format string vulnerability in Dia 0.94 allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code by triggering errors or warnings, as demonstrated via format string specifiers in a .bmp filename. NOTE: the original exploit was demonstrated through a...

5.1CVSS7.3AI score0.07628EPSS
Exploits1
CVE
CVE
added 2006/05/19 9:0 p.m.58 views

CVE-2006-2480

Dia (0.94) is affected by a format-string vulnerability (CVE-2006-2480) that could allow a remote attacker to cause a crash or potentially execute code by crafted input (e.g., a crafted .dia/.bmp filename). Several connected advisories confirm this issue and reference CVE-2006-2453 as well, with ...

5.1CVSS7.3AI score0.07628EPSS
Exploits1References19Affected Software1
Saint
Saint
added 2006/05/17 12:0 a.m.35 views

SHOUTcast filename format string vulnerability

Added: 05/17/2006 CVE: CVE-2004-1373 BID: 12096 OSVDB: 12585 Background SHOUTcast is a streaming audio server based on Winamp. Problem A format string vulnerability in SHOUTcast allows remote attackers to execute commands by requesting a MP3 filename containing format string characters such as %n...

7.5CVSS6.9AI score0.70066EPSS
Exploits8
Saint
Saint
added 2006/05/17 12:0 a.m.31 views

SHOUTcast filename format string vulnerability

Added: 05/17/2006 CVE: CVE-2004-1373 BID: 12096 OSVDB: 12585 Background SHOUTcast is a streaming audio server based on Winamp. Problem A format string vulnerability in SHOUTcast allows remote attackers to execute commands by requesting a MP3 filename containing format string characters such as %n...

7.5CVSS6.9AI score0.70066EPSS
Exploits8
Saint
Saint
added 2006/05/17 12:0 a.m.37 views

SHOUTcast filename format string vulnerability

Added: 05/17/2006 CVE: CVE-2004-1373 BID: 12096 OSVDB: 12585 Background SHOUTcast is a streaming audio server based on Winamp. Problem A format string vulnerability in SHOUTcast allows remote attackers to execute commands by requesting a MP3 filename containing format string characters such as %n...

7.5CVSS6.9AI score0.70066EPSS
Exploits8
Saint
Saint
added 2006/05/17 12:0 a.m.30 views

SHOUTcast filename format string vulnerability

Added: 05/17/2006 CVE: CVE-2004-1373 BID: 12096 OSVDB: 12585 Background SHOUTcast is a streaming audio server based on Winamp. Problem A format string vulnerability in SHOUTcast allows remote attackers to execute commands by requesting a MP3 filename containing format string characters such as %n...

7.5CVSS6.9AI score0.70066EPSS
Exploits8
NVD
NVD
added 2006/05/16 10:2 a.m.13 views

CVE-2006-2409

Format string vulnerability in the raydiumlog function in console.c in Raydium before SVN revision 310 allows local users to execute arbitrary code via format string specifiers in the format parameter, which are not properly handled in a call to raydiumconsolelineadd...

4.6CVSS7.2AI score0.00894EPSS
Exploits0References8
Prion
Prion
added 2006/05/16 10:2 a.m.15 views

Format string

Format string vulnerability in the raydiumlog function in console.c in Raydium before SVN revision 310 allows local users to execute arbitrary code via format string specifiers in the format parameter, which are not properly handled in a call to raydiumconsolelineadd...

4.6CVSS7.7AI score0.00894EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder