8517 matches found
GLSA-200604-06 : ClamAV: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200604-06 ClamAV: Multiple vulnerabilities ClamAV contains format string vulnerabilities in the logging code CVE-2006-1615. Furthermore Damian Put discovered an integer overflow in ClamAV's PE header parser CVE-2006-1614 and David...
ClamAV: Multiple vulnerabilities
Background ClamAV is a GPL virus scanner. Description ClamAV contains format string vulnerabilities in the logging code CVE-2006-1615. Furthermore Damian Put discovered an integer overflow in ClamAV's PE header parser CVE-2006-1614 and David Luyer discovered that ClamAV can be tricked into...
CVE-2006-1615
Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...
CVE-2006-1615
Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...
Format string
Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...
DEBIAN-CVE-2006-1615
Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...
CVE-2006-1615
Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...
CVE-2006-1615
Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...
CVE-2006-1615
CVE-2006-1615 refers to ClamAV (prior to 0.88.1) format-string vulnerabilities in the logging code that may allow remote attackers to execute arbitrary code. Public sources (Debian DSA-1024-1, OpenVAS entries) describe this format-string issue as potentially enabling code execution, with remote i...
Doomsday: Format string vulnerability
Background Doomsday is a modern gaming engine for popular ID games like Doom, Heretic and Hexen. Description Luigi Auriemma discovered that Doomsday incorrectly implements formatted printing. Impact A remote attacker could exploit these vulnerabilities to execute arbitrary code with the rights of...
clamav -- Multiple Vulnerabilities
Secunia reports: Some vulnerabilities have been reported in ClamAV, which potentially can be exploited by malicious people to cause a DoS Denial of Service and compromise a vulnerable system. An unspecified integer overflow error exists in the PE header parser in "libclamav/pe.c". Successful...
CVE-2006-1618
Format string vulnerability in the 1 Conmessage and 2 conPrintf functions in conmain.c in Doomsday engine 1.8.6 allows remote attackers to execute arbitrary code via format string specifiers in an argument to the JOIN command, and possibly other command arguments...
Format string
Format string vulnerability in the 1 Conmessage and 2 conPrintf functions in conmain.c in Doomsday engine 1.8.6 allows remote attackers to execute arbitrary code via format string specifiers in an argument to the JOIN command, and possibly other command arguments...
CVE-2006-1618
Doomsday engine 1.8.6 is affected by a format-string vulnerability in Con_message and conPrintf (in con_main.c). A remote attacker can cause arbitrary code execution by sending crafted strings (e.g., via the JOIN command or other arguments). The issue stems from incorrect handling of format speci...
CVE-2006-1618
Format string vulnerability in the 1 Conmessage and 2 conPrintf functions in conmain.c in Doomsday engine 1.8.6 allows remote attackers to execute arbitrary code via format string specifiers in an argument to the JOIN command, and possibly other command arguments...
DSA-1024-1 clamav - heap overflow
Bulletin has no description...
CVE-2006-0559
Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitrary code via format strings in the domain name portion of a destination address, which are not properly handled when a bounce message is constructed...
Format string
Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitrary code via format strings in the domain name portion of a destination address, which are not properly handled when a bounce message is constructed...
CVE-2006-0559
McAfee WebShield SMTP format-string vulnerability (CVE-2006-0559) affects McAfee WebShield SMTP prior to MR2. The flaw occurs in the bounce message construction where a format string in the original destination address can be processed unsafe, allowing an unauthenticated attacker to execute arbit...
McAfee WebShield antivirus format string vulnerability
Format string vulnerability on SMTP address...