8515 matches found
CVE-2005-4610
Technical details about CVE-2005-4610 are not publicly available in the provided documents. Monitor for updates for affected software, exact root cause, vulnerable components, and remediation information.
CVE-2005-4610
Format string vulnerability in the server for Dopewars before 1.5.12, when running as an NT service, allows remote attackers to execute arbitrary code via unspecified attack vectors...
Dopewars format string vulnerability
FOrmat string bug on file logging...
CVE-2005-4610
Format string vulnerability in the server for Dopewars before 1.5.12, when running as an NT service, allows remote attackers to execute arbitrary code via unspecified attack vectors...
CVE-2005-4817
Format string vulnerability in ui.c in Textbased MSN Client TMSNC before 0.2.5 allows attackers to cause a denial of service and possibly execute arbitrary code via unknown attack vectors that cause format strings to be injected into the wprintw function...
CVE-2005-4846
Format string vulnerability in Logger.cc for Spey 0.3.3 allows attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in a syslog call...
CVE-2005-4817
Format string vulnerability in ui.c in Textbased MSN Client TMSNC before 0.2.5 allows attackers to cause a denial of service and possibly execute arbitrary code via unknown attack vectors that cause format strings to be injected into the wprintw function...
CVE-2005-3656
Multiple format string vulnerabilities in logging functions in modauthpgsql before 2.0.3, when used for user authentication against a PostgreSQL database, allows remote unauthenticated attackers to execute arbitrary code, as demonstrated via the username...
CVE-2005-3656
Multiple format string vulnerabilities in logging functions in modauthpgsql before 2.0.3, when used for user authentication against a PostgreSQL database, allows remote unauthenticated attackers to execute arbitrary code, as demonstrated via the username...
CVE-2005-4714
Format string vulnerability in the vmpslog function in OpenVMPS VLAN Management Policy Server 1.3 allows remote attackers to execute arbitrary code via unknown vectors...
SUSE-SA:2005:071: perl
The remote host is missing the patch for the advisory SUSE-SA:2005:071 perl. Integer overflows in the format string functionality in Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap...
RHEL 4 : perl (RHSA-2005:880)
Updated Perl packages that fix security issues and bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Perl is a high-level programming language commonly used for system administration utilitie...
CVE-2005-4565
Format string vulnerability in the Internet Key Exchange version 1 IKEv1 implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via format string specifiers in crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1...
CVE-2005-4568
Multiple format string vulnerabilities in FTGate Technology formerly known as Floosietek FTGate 4.4 aka Build 4.4.000 Oct 26 2005 allow remote attackers to execute arbitrary code via format string specifiers in the 1 USER, 2 PASS, and 3 TOP commands to the POP3 server; and the 4 LIST and 5...
CVE-2005-4568
Multiple format string vulnerabilities in FTGate Technology formerly known as Floosietek FTGate 4.4 aka Build 4.4.000 Oct 26 2005 allow remote attackers to execute arbitrary code via format string specifiers in the 1 USER, 2 PASS, and 3 TOP commands to the POP3 server; and the 4 LIST and 5...
CVE-2005-4565
Format string vulnerability in the Internet Key Exchange version 1 IKEv1 implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via format string specifiers in crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1...
CVE-2005-4565
CVE-2005-4565 affects ADTRAN NetVanta devices (before 10.03.03.E) via the Internet Key Exchange v1 (IKEv1) implementation. The issue is a format string vulnerability in IKEv1, exploitable by crafted IKE packets to yield an impact that is not explicitly quantified in the available documents. The v...
CVE-2005-4568
FTGate 4.4 (Build 4.4.000 Oct 26 2005) is affected by multiple format string vulnerabilities in both the POP3 and IMAP services. Specifically, remote attackers can trigger arbitrary code execution via format string specifiers in the POP3 commands (USER, PASS, TOP) and the IMAP commands (LIST, AUT...
SHOUTcast DNAS/win32 1.9.4 File Request Format String Overflow
This module exploits a format string vulnerability in the Nullsoft SHOUTcast server for Windows. The vulnerability is triggered by requesting a file path that contains format string specifiers. This vulnerability was discovered by Tomasz Trojanowski and Damian Put. This module requires Metasploit...
Webmin 'miniserv.pl' 'username' Parameter Format String
The version of Webmin installed on the remote host contains a format string flaw when logging failed authentication attempts. Using specially crafted values for the 'username' parameter of the 'sessionlogin.cgi', an attacker could exploit the flaw to crash the affected server or to potentially...