Format string on HTTP method name

The remote web server seems to be vulnerable to a format string attack on the method name. SPDX-FileCopyrightText: 2003 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVS < 1.11.17, 1.12.x < 1.12.9 Multiple Vulnerabilities

CVS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:cvs:cvs"; ifdescription...

Format string on URI

The remote web server seems to be vulnerable to a format string attack on the URI. An attacker might use this flaw to make it crash or even execute arbitrary code on this host. SPDX-FileCopyrightText: 2004 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are...

libgda: Format string vulnerabilities

Background libgda is the library handling the data abstraction layer in the Gnome data access architecture GNOME-DB. It can also be used by non-GNOME applications to manage data stored in databases or XML files. Description Steve Kemp discovered two format string vulnerabilities in the gdalogerro...

up-imapproxy-exp.txt

.:: ExploiterZ Labs aka Unl0ck Research Team ::. Advisory target: Imapproxy version: 1.2.4 and earlier type: format string remote: yes vendor: http://imapproxy.org patch: doesn't exists .: Details :. Fromat string vulnerability was found in latest version of IMAP proxy server up-imapproxy...

CVE-2005-3393

Format string vulnerability in the foreignoption function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option...

CVE-2005-3393

Format string vulnerability in the foreignoption function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option...

DEBIAN-CVE-2005-3393

Format string vulnerability in the foreignoption function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option...

CVE-2005-3393

OpenVPN 2.0.x is affected by CVE-2005-3393 due to a format-string vulnerability in the foreign_option function (options.c) used when pushing dhcp-option. This could allow a remote attacker to execute arbitrary code on non-Windows OpenVPN clients during TLS negotiation if the server/client configu...

CVE-2005-3393

Format string vulnerability in the foreignoption function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option...

CVE-2005-3393

Format string vulnerability in the foreignoption function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option...

OpenVPN VPN client format string vulnerability

Format string bug on parsing DHCP options obtained from server...

OpenVPN[v2.0.x]: foreign_option&#40;&#41; formart string vulnerability.

[email protected]: OpenVPNv2.0.x: foreignoption format string vulnerability. 1. BACKGROUND OpenVPN is a robust and highly configurable VPN Virtual Private Network daemon which can be used to securely link two or more private networks using an encrypted tunnel over the Internet. OpenVPN's principal...

openvpn -- arbitrary code execution on client through malicious or compromised server

James Yonan reports: A format string vulnerability in the foreignoption function in options.c could potentially allow a malicious or compromised server to execute arbitrary code on the client. Only non-Windows clients are affected. The vulnerability only exists if a the client's TLS negotiation...

VERITAS-Win32.pl.txt

!C:\Perl\bin\perl.exe -w Vertias Netbackup Win32 format string exploit Code By: johnhatdigitalmunitiondotcom & kfatdigitalmunitiondotcom For win2k/xp pre sp2 we overwrote PEBFastlock - rtlentercritical For win xp sp2 we overwrote SEH http://www.digitalmunition.com/ You may have to run this 2 time...

USN-212-1: libgda2 vulnerability

Steve Kemp discovered two format string vulnerabilities in the logging handler of the Gnome database access library. Depending on the application that uses the library, this could have been exploited to execute arbitrary code with the permission of the user running the application...

[SECURITY] [DSA 871-2] New libgda2 packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 871-2 [email protected] http://www.debian.org/security/ Martin Schulze October 25th, 2005 http://www.debian.org/security/faq -...

Gnome libgda library format string vulnerabilities

No description provided...

[SECURITY] [DSA 871-2] New libgda2 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 871-2 [email protected] http://www.debian.org/security/ Martin Schulze October 25th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 871-2] New libgda2 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 871-2 [email protected] http://www.debian.org/security/ Martin Schulze October 25th, 2005 http://www.debian.org/security/faq -...