8515 matches found
CVE-2005-2958
Multiple format string vulnerabilities in the GNOME Data Access library for GNOME2 libgda2 1.2.1 and earlier allow attackers to execute arbitrary code...
CVE-2005-2958
Multiple format string vulnerabilities in the GNOME Data Access library for GNOME2 libgda2 1.2.1 and earlier allow attackers to execute arbitrary code...
[SECURITY] [DSA 871-1] New libgda2 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 871-1 [email protected] http://www.debian.org/security/ Martin Schulze October 25th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 871-1] New libgda2 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 871-1 [email protected] http://www.debian.org/security/ Martin Schulze October 25th, 2005 http://www.debian.org/security/faq -...
CVE-2005-2958
Multiple format string vulnerabilities in the GNOME Data Access library for GNOME2 libgda2 1.2.1 and earlier allow attackers to execute arbitrary code...
CVE-2004-2515
Technical details for CVE-2004-2515 are not publicly available in the provided documents. The description notes a format-string vulnerability in VMware Workstation 4.5.2 but no specifics on affected components, root cause, or fixes are included here. Monitor for updates.
CVE-2004-2489
CVE-2004-2489 concerns IBM Informix Dynamic Server (IDS). The described vulnerability is a format string flaw in IDS prior to 9.40.xC3 that enables local code execution when an attacker manipulates the INFORMIXDIR environment variable to point to a file containing format string specifiers in its ...
CVE-2004-2515
Format string vulnerability in VMware Workstation 4.5.2 build-8848, if running with elevated privileges, might allow local users to execute arbitrary code via format string specifiers in command line arguments. NOTE: it is not clear if there are any default or typical circumstances under which...
CVE-2004-2523
Format string vulnerability in the msg command catmessage function in msg.c in OpenFTPD 0.30.2 and earlier allows remote authenticated users to execute arbitrary code via format string specifiers in the message argument...
CVE-2004-2489
Format string vulnerability in IBM Informix Dynamic Server IDS before 9.40.xC3 allows local users to execute arbitrary code via a modified INFORMIXDIR environment variable that points to a file with format string specifiers in the filename...
CVE-2004-2523
OpenFTPD affected: OpenFTPD 0.30.2 and earlier. The vulnerability is a format string flaw in the SITE MSG command’s msg.c (cat_message) that lets remote authenticated users execute arbitrary code via format specifiers in the message argument. This is a remote code execution risk with authenticati...
CVE-2005-2958
CVE-2005-2958 concerns the GNOME Data Access library libgda2 for GNOME2, where two format string vulnerabilities in logging routines could allow an attacker to execute arbitrary code. The issues affect libgda2 1.2.1 and earlier. Multiple OpenVAS and distribution advisories (Debian DSA-871-1, Gent...
DSA-871-1 libgda2 - format string
Bulletin has no description...
CVE-2005-3262
Format string vulnerability in RARLAB WinRAR 2.90 through 3.50 allows remote attackers to execute arbitrary code via format string specifiers in a UUE/XXE file, which are not properly handled when WinRAR displays diagnostic errors related to an invalid filename...
CVE-2005-3262
CVE-2005-3262 relates to a format string vulnerability in WinRAR (RARLAB) versions 2.90 through 3.50. The issue arises when WinRAR displays diagnostic errors for an invalid filename, where format string specifiers in a UUE/XXE file are not properly handled, allowing remote attackers to execute ar...
CVE-2005-3262
Format string vulnerability in RARLAB WinRAR 2.90 through 3.50 allows remote attackers to execute arbitrary code via format string specifiers in a UUE/XXE file, which are not properly handled when WinRAR displays diagnostic errors related to an invalid filename...
Veritas NetBackup <= 6.0 (bpjava-msvc) Remote Exploit (win32)
Exploit for unknown platform in category remote exploits ============================================================= Veritas NetBackup rtlentercritical For win xp sp2 we overwrote SEH http://www.digitalmunition.com/ You may have to run this 2 times. use IO::Socket; use Getopt::Std;...
Veritas NetBackup 6.0 (Windows x86) - 'bpjava-msvc' Remote Command Execution
!C:\Perl\bin\perl.exe -w Vertias Netbackup Win32 format string exploit Code By: johnhatdigitalmunitiondotcom & kfatdigitalmunitiondotcom For win2k/xp pre sp2 we overwrote PEBFastlock - rtlentercritical For win xp sp2 we overwrote SEH http://www.digitalmunition.com/ You may have to run this 2 time...
Veritas NetBackup <= 6.0 (bpjava-msvc) Remote Exploit (win32)
No description provided by source. !C:\Perl\bin\perl.exe -w Vertias Netbackup Win32 format string exploit Code By: johnhatdigitalmunitiondotcom & kfatdigitalmunitiondotcom For win2k/xp pre sp2 we overwrote PEBFastlock - rtlentercritical For win xp sp2 we overwrote SEH...
OpenVMPS Logging Function Format String
The remote host appears to be running OpenVMPS, an open source VLAN Management Policy Server VMPS. There is a format string vulnerability in versions of OpenVMPS up to and including 1.3 that may allow remote attackers to crash the server or execute code on the affected host subject to the...