Lucene search
K

8517 matches found

Exploit DB
Exploit DB
added 2006/04/23 12:0 a.m.31 views

Skulltag 0.96f - Version String Remote Format String (PoC)

Luigi Auriemma Application: Skulltag http://www.skulltag.com Versions: = 0.96f Platforms: Windows Bug: format string Exploitation: remote, versus server Date: 23 Apr 2006 Author: Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org Backup:...

7AI score
Exploits0
Prion
Prion
added 2006/04/20 10:2 a.m.14 views

Format string

Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file...

7.5CVSS7.7AI score0.14259EPSS
Exploits1References14Affected Software1
OSV
OSV
added 2006/04/20 10:2 a.m.6 views

CVE-2006-1905

Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file...

7.5AI score
Exploits0References14
UbuntuCve
UbuntuCve
added 2006/04/20 10:2 a.m.21 views

CVE-2006-1905

Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file...

7.5CVSS6.3AI score0.14259EPSS
Exploits1References1
OSV
OSV
added 2006/04/20 10:2 a.m.1 views

DEBIAN-CVE-2006-1905

Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file...

7.5CVSS8.1AI score0.14259EPSS
Exploits1References1
NVD
NVD
added 2006/04/20 10:2 a.m.23 views

CVE-2006-1905

Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file...

7.5CVSS7.5AI score0.14259EPSS
Exploits1References14
CVE
CVE
added 2006/04/20 10:0 a.m.61 views

CVE-2006-1905

CVE-2006-1905 affects xine (xiTK, xiTk/main.c) with multiple format-string vulnerabilities in the xine UI when processing a long filename on an EXTINFO line in a playlist. A remote attacker could execute arbitrary code via format specifiers. Affected software is xine 0.99.3 (and related CVE-2006-...

7.5CVSS7.4AI score0.14259EPSS
Exploits1References14Affected Software1
Cvelist
Cvelist
added 2006/04/20 10:0 a.m.30 views

CVE-2006-1905

Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file...

7.4AI score0.14259EPSS
Exploits1References14
Debian CVE
Debian CVE
added 2006/04/20 10:0 a.m.23 views

CVE-2006-1905

Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file...

7.5CVSS7.5AI score0.14259EPSS
Exploits1
NVD
NVD
added 2006/04/19 4:6 p.m.9 views

CVE-2006-1840

Multiple format string vulnerabilities in Empire Server before 4.3.1 allow attackers to cause a denial of service crash via the 1 load, 2 spy and 3 bomb functions...

6.4CVSS6.7AI score0.01464EPSS
Exploits0References6
Prion
Prion
added 2006/04/19 4:6 p.m.11 views

Format string

Multiple format string vulnerabilities in Empire Server before 4.3.1 allow attackers to cause a denial of service crash via the 1 load, 2 spy and 3 bomb functions...

6.4CVSS7.2AI score0.01464EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2006/04/19 4:0 p.m.14 views

CVE-2006-1840

Multiple format string vulnerabilities in Empire Server before 4.3.1 allow attackers to cause a denial of service crash via the 1 load, 2 spy and 3 bomb functions...

6.7AI score0.01464EPSS
Exploits0References6
CVE
CVE
added 2006/04/19 4:0 p.m.46 views

CVE-2006-1840

CVE-2006-1840 – Normal mode Affected software: Empire Server (pre-4.3.1). Vulnerability: multiple format string vulnerabilities in the functions load, spy, and bomb. Impact: denial of service (crash). Root cause: format string handling issue in the specified functions. Exploitation: not described...

6.4CVSS6.7AI score0.01464EPSS
Exploits0References6Affected Software1
exploitpack
exploitpack
added 2006/04/18 12:0 a.m.17 views

Xine 0.91.0 - Playlist Handling Remote Format String

Xine 0.91.0 - Playlist Handling Remote Format String source: https://www.securityfocus.com/bid/17579/info The xine package is reported prone to a remote format-string vulnerability. This issue arises when the application handles specially crafted playlist files. An attacker can exploit this...

Exploits0
securityvulns
securityvulns
added 2006/04/18 12:0 a.m.32 views

[Full-disclosure] Remote Xine Format String Vulnerability

/ $ An open security advisory 16 - Xine Media Player Format String Bug 1: Bug Researcher: c0ntex - c0ntexbatgmail.com -+- www.open-security.org 2: Bug Released: April 18th 2006 3: Bug Impact Rate: Undefined 4: Bug Scope Rate: Local / Remote $ This advisory and/or proof of concept code must not be...

7.7AI score
Exploits0
Exploit DB
Exploit DB
added 2006/04/18 12:0 a.m.18 views

Xine 0.9/1.0 - Playlist Handling Remote Format String

source: https://www.securityfocus.com/bid/17579/info The xine package is reported prone to a remote format-string vulnerability. This issue arises when the application handles specially crafted playlist files. An attacker can exploit this vulnerability by crafting a malicious file that contains...

7AI score
Exploits0
FreeBSD
FreeBSD
added 2006/04/18 12:0 a.m.31 views

xine -- multiple remote string vulnerabilities

c0ntexb reports: There are 2 format string bugs in the latest version of Xine that could be exploited by a malicious person to execute code on the system of a remote user running the media player against a malicious playlist file. By passing a format specifier in the path of a file that is embedd...

7.5CVSS6.7AI score0.14259EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2006/04/17 12:0 a.m.27 views

SUSE-SA:2006:020: clamav

The remote host is missing the patch for the advisory SUSE-SA:2006:020 clamav. Clamav was updated to version 0.88.1 to fix the following security problems: - An integer overflow in the PE header parser CVE-2006-1614. - Format string bugs in the logging code could potentially be exploited to execu...

10CVSS8.9AI score0.11352EPSS
Exploits1
securityvulns
securityvulns
added 2006/04/10 12:0 a.m.27 views

Multiple ClamAV Clam Antivirus security vulnerabilities

Integer overflow on PE files parsing, format string vulnerabilitry, unallocated memory access...

4.9AI score
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2006/04/08 12:0 a.m.18 views

GLSA-200604-05 : Doomsday: Format string vulnerability

The remote host is affected by the vulnerability described in GLSA-200604-05 Doomsday: Format string vulnerability Luigi Auriemma discovered that Doomsday incorrectly implements formatted printing. Impact : A remote attacker could exploit these vulnerabilities to execute arbitrary code with the...

7.5CVSS6AI score0.13191EPSS
Exploits1References3
Rows per page
Query Builder