8516 matches found
[SECURITY] [DSA 930-2] New smstools packages fix format string vulnerability
-------------------------------------------------------------------------- Debian Security Advisory DSA 930-2 [email protected] http://www.debian.org/security/ Steve Kemp January 10, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 930-2] New smstools packages fix format string vulnerability
-------------------------------------------------------------------------- Debian Security Advisory DSA 930-2 [email protected] http://www.debian.org/security/ Steve Kemp January 10, 2006 http://www.debian.org/security/faq -...
DSA-930-2 smstools - format string attack
Bulletin has no description...
Apache mod-auth-pgsql authorization module format string vulnerabilities
Several format string bugs in error logging...
mod_auth_pgsql: Multiple format string vulnerabilities
Background modauthpgsql is an Apache2 module that allows user authentication against a PostgreSQL database. Description The error logging functions of modauthpgsql fail to validate certain strings before passing them to syslog, resulting in format string vulnerabilities. Impact An unauthenticated...
iDefense Security Advisory 01.09.06: Multiple Vendor mod_auth_pgsql Format String Vulnerability
Multiple Vendor modauthpgsql Format String Vulnerability iDefense Security Advisory 01.09.06 http://www.idefense.com/intelligence/vulnerabilities/display.php?id=367 January 09, 2006 I. BACKGROUND The modauthpgsql apache module allows user authentication against information stored in a PostgreSQL...
Apache auth_ldap authentication module format string vulnerabilities
Format string vulnerability on error logging...
Apache < 1.6.1 auth_ldap Module Remote Format String
Binary data 3360.prm...
DSA-935-1 libapache2-mod-auth-pgsql - format string vulnerability
Bulletin has no description...
Format string
Multiple format string vulnerabilities in the authldaplogreason function in Apache authldap 1.6.0 and earlier allows remote attackers to execute arbitrary code via various vectors, including the username...
CVE-2006-0150
Multiple format string vulnerabilities in the authldaplogreason function in Apache authldap 1.6.0 and earlier allows remote attackers to execute arbitrary code via various vectors, including the username...
CVE-2006-0150
Multiple format string vulnerabilities in the authldaplogreason function in Apache authldap 1.6.0 and earlier allows remote attackers to execute arbitrary code via various vectors, including the username...
CVE-2006-0150
CVE-2006-0150 is a format-string vulnerability in the Apache auth_ldap module (auth_ldap) caused by improper handling in the logging function. The issue exists in libapache-auth-ldap and affects Apache auth_ldap 1.6.0 and earlier, enabling remote attackers to execute arbitrary code with the httpd...
CVE-2006-0150
Multiple format string vulnerabilities in the authldaplogreason function in Apache authldap 1.6.0 and earlier allows remote attackers to execute arbitrary code via various vectors, including the username...
CVE-2006-0083
Format string vulnerability in the logging code of SMS Server Tools smstools 1.14.8 and earlier allows local users to execute arbitrary code via unspecified attack vectors...
Format string
Format string vulnerability in the logging code of SMS Server Tools smstools 1.14.8 and earlier allows local users to execute arbitrary code via unspecified attack vectors...
CVE-2006-0083
Format string vulnerability in the logging code of SMS Server Tools smstools 1.14.8 and earlier allows local users to execute arbitrary code via unspecified attack vectors...
DEBIAN-CVE-2006-0083
Format string vulnerability in the logging code of SMS Server Tools smstools 1.14.8 and earlier allows local users to execute arbitrary code via unspecified attack vectors...
CVE-2006-0083
Format string vulnerability in the logging code of SMS Server Tools smstools 1.14.8 and earlier allows local users to execute arbitrary code via unspecified attack vectors...
CVE-2006-0083
CVE-2006-0083 affects SMS Server Tools (smstools) with a format-string vulnerability in the logging code, allowing local users to execute arbitrary code with root privileges on affected releases. Public details consistently reference smstools 1.14.8 and earlier. Debian and OpenVAS advisories docu...