Lucene search
K

8517 matches found

Tenable Nessus
Tenable Nessus
added 2006/04/08 12:0 a.m.27 views

GLSA-200604-06 : ClamAV: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200604-06 ClamAV: Multiple vulnerabilities ClamAV contains format string vulnerabilities in the logging code CVE-2006-1615. Furthermore Damian Put discovered an integer overflow in ClamAV's PE header parser CVE-2006-1614 and David...

10CVSS8.8AI score0.11352EPSS
Exploits1References4
Gentoo Linux
Gentoo Linux
added 2006/04/07 12:0 a.m.28 views

ClamAV: Multiple vulnerabilities

Background ClamAV is a GPL virus scanner. Description ClamAV contains format string vulnerabilities in the logging code CVE-2006-1615. Furthermore Damian Put discovered an integer overflow in ClamAV's PE header parser CVE-2006-1614 and David Luyer discovered that ClamAV can be tricked into...

10CVSS7.2AI score0.11352EPSS
Exploits1
NVD
NVD
added 2006/04/06 10:4 p.m.16 views

CVE-2006-1615

Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...

10CVSS7.3AI score0.11352EPSS
Exploits0References23
UbuntuCve
UbuntuCve
added 2006/04/06 10:4 p.m.24 views

CVE-2006-1615

Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...

10CVSS6AI score0.11352EPSS
Exploits0References1
Prion
Prion
added 2006/04/06 10:4 p.m.17 views

Format string

Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...

10CVSS7.4AI score0.11352EPSS
Exploits0References23Affected Software1
OSV
OSV
added 2006/04/06 10:4 p.m.2 views

DEBIAN-CVE-2006-1615

Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...

10CVSS7.7AI score0.11352EPSS
Exploits0References1
OSV
OSV
added 2006/04/06 10:4 p.m.9 views

CVE-2006-1615

Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...

7.2AI score
Exploits0References31
Cvelist
Cvelist
added 2006/04/06 10:0 p.m.19 views

CVE-2006-1615

Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...

7.2AI score0.11352EPSS
Exploits0References23
CVE
CVE
added 2006/04/06 10:0 p.m.109 views

CVE-2006-1615

CVE-2006-1615 refers to ClamAV (prior to 0.88.1) format-string vulnerabilities in the logging code that may allow remote attackers to execute arbitrary code. Public sources (Debian DSA-1024-1, OpenVAS entries) describe this format-string issue as potentially enabling code execution, with remote i...

10CVSS7.1AI score0.11352EPSS
Exploits0References23Affected Software1
Gentoo Linux
Gentoo Linux
added 2006/04/06 12:0 a.m.31 views

Doomsday: Format string vulnerability

Background Doomsday is a modern gaming engine for popular ID games like Doom, Heretic and Hexen. Description Luigi Auriemma discovered that Doomsday incorrectly implements formatted printing. Impact A remote attacker could exploit these vulnerabilities to execute arbitrary code with the rights of...

7.5CVSS7.5AI score0.13191EPSS
Exploits1
FreeBSD
FreeBSD
added 2006/04/06 12:0 a.m.29 views

clamav -- Multiple Vulnerabilities

Secunia reports: Some vulnerabilities have been reported in ClamAV, which potentially can be exploited by malicious people to cause a DoS Denial of Service and compromise a vulnerable system. An unspecified integer overflow error exists in the PE header parser in "libclamav/pe.c". Successful...

5.1CVSS7.5AI score0.07635EPSS
Exploits1References2
NVD
NVD
added 2006/04/05 10:4 a.m.16 views

CVE-2006-1618

Format string vulnerability in the 1 Conmessage and 2 conPrintf functions in conmain.c in Doomsday engine 1.8.6 allows remote attackers to execute arbitrary code via format string specifiers in an argument to the JOIN command, and possibly other command arguments...

7.5CVSS7.8AI score0.13191EPSS
Exploits1References10
Prion
Prion
added 2006/04/05 10:4 a.m.13 views

Format string

Format string vulnerability in the 1 Conmessage and 2 conPrintf functions in conmain.c in Doomsday engine 1.8.6 allows remote attackers to execute arbitrary code via format string specifiers in an argument to the JOIN command, and possibly other command arguments...

7.5CVSS8.1AI score0.13191EPSS
Exploits1References10Affected Software1
CVE
CVE
added 2006/04/05 10:0 a.m.60 views

CVE-2006-1618

Doomsday engine 1.8.6 is affected by a format-string vulnerability in Con_message and conPrintf (in con_main.c). A remote attacker can cause arbitrary code execution by sending crafted strings (e.g., via the JOIN command or other arguments). The issue stems from incorrect handling of format speci...

7.5CVSS7.7AI score0.13191EPSS
Exploits1References10Affected Software1
Cvelist
Cvelist
added 2006/04/05 10:0 a.m.21 views

CVE-2006-1618

Format string vulnerability in the 1 Conmessage and 2 conPrintf functions in conmain.c in Doomsday engine 1.8.6 allows remote attackers to execute arbitrary code via format string specifiers in an argument to the JOIN command, and possibly other command arguments...

7.7AI score0.13191EPSS
Exploits1References10
OSV
OSV
added 2006/04/05 12:0 a.m.25 views

DSA-1024-1 clamav - heap overflow

Bulletin has no description...

10CVSS9.3AI score0.11352EPSS
Exploits1
NVD
NVD
added 2006/04/04 2:4 p.m.10 views

CVE-2006-0559

Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitrary code via format strings in the domain name portion of a destination address, which are not properly handled when a bounce message is constructed...

10CVSS7.6AI score0.06075EPSS
Exploits0References8
Prion
Prion
added 2006/04/04 2:4 p.m.18 views

Format string

Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitrary code via format strings in the domain name portion of a destination address, which are not properly handled when a bounce message is constructed...

10CVSS8.2AI score0.06075EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2006/04/04 2:0 p.m.62 views

CVE-2006-0559

McAfee WebShield SMTP format-string vulnerability (CVE-2006-0559) affects McAfee WebShield SMTP prior to MR2. The flaw occurs in the bounce message construction where a format string in the original destination address can be processed unsafe, allowing an unauthenticated attacker to execute arbit...

10CVSS7.6AI score0.06075EPSS
Exploits0References8Affected Software1
securityvulns
securityvulns
added 2006/04/04 12:0 a.m.39 views

McAfee WebShield antivirus format string vulnerability

Format string vulnerability on SMTP address...

2.1AI score
Exploits0References1Affected Software1
Rows per page
Query Builder