security flaw

Format string vulnerability in Evolution 1.4 through 2.3.6.1 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via the calendar entries such as task lists, which are not properly handled when the user selects the Calendars tab...

Important: Red Hat Security Advisory: Evolution security update

Updated evolution packages that fix a format string issue are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. Evolution is the GNOME collection of personal information management PIM tools. A format string bug was found in...

[SECURITY] [DSA 786-1] New simpleproxy packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 786-1 [email protected] http://www.debian.org/security/ Martin Schulze August 26th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 786-1] New simpleproxy packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 786-1 [email protected] http://www.debian.org/security/ Martin Schulze August 26th, 2005 http://www.debian.org/security/faq -...

Quake 2 Lithium Mod V 1.24 Macro Expansion Vuln?

Well I ran quake 2 using Lithium mod V 1.24 under OllyDBG and it seems that the lithium II mod for quake 2 latest PATCH 3.20 is parsing the '' in nicks. My well crafted nickname '999fffff' is being pushed onto the stack as 004144A1 |. 68 E821AF00 PUSH QUAKE2.00AF21E8 ; ASCII "0.000000 0.000000...

Quake 2 Lithium mode format string bug

Format string bug on parsing player's nickname...

simpleproxy proxy server format string vulnerability

Format string bug on parent HTTP proxy server reply parsing...

[Full-disclosure] [SECURITY] [DSA 786-1] New simpleproxy packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 786-1 [email protected] http://www.debian.org/security/ Martin Schulze August 26th, 2005 http://www.debian.org/security/faq -...

DSA-786-1 simpleproxy - format string vulnerability

Bulletin has no description...

Evolution: Format string vulnerabilities

Background Evolution is a GNOME groupware application. Description Ulf Harnhammar discovered that Evolution is vulnerable to format string bugs when viewing attached vCards and when displaying contact information from remote LDAP servers or task list data from remote servers CAN-2005-2549. He als...

GLSA-200508-12 : Evolution: Format string vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200508-12 Evolution: Format string vulnerabilities Ulf Harnhammar discovered that Evolution is vulnerable to format string bugs when viewing attached vCards and when displaying contact information from remote LDAP servers or task...

CVE-2004-2417

CVE-2004-2417 : A format string vulnerability in smtp.c for smtp.proxy 1.1.3 and earlier allows remote code execution by injecting format string specifiers via the client hostname or message-id into a syslog message. Affected: smtp.proxy before 1.1.3. Impact and remediation details are not provid...

CVE-2004-2417

Format string vulnerability in smtp.c for smtp.proxy 1.1.3 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the 1 client hostname or 2 message-id, which are injected into a syslog message...

CVE-2004-2386

Format string vulnerability in the LogMsg function in sercd before 2.3.1 and sredird 2.2.1 and earlier allows remote attackers to execute arbitrary code via format string specifiers passed from the HandleCPCCommand function...

CVE-2004-2386

Format string vulnerability in the LogMsg function affects sercd before 2.3.1 and sredird 2.2.1 and earlier, allowing remote attackers to execute arbitrary code via format string specifiers passed from HandleCPCCommand. Exploitation details are not provided in the connected documents. Affected pr...

CVE-2005-2550

Format string vulnerability in Evolution 1.4 through 2.3.6.1 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via the calendar entries such as task lists, which are not properly handled when the user selects the Calendars tab...

CVE-2005-2550

CVE-2005-2550 corresponds to a format-string vulnerability in Evolution, affecting versions 1.4 through 2.3.6.1. The issue can be triggered via calendar entries (such as task lists) when the user selects the Calendars tab, leading to a crash and potentially arbitrary code execution. Public disclo...

CVE-2005-2549

Evolution contains multiple format string vulnerabilities that can crash the application or allow arbitrary code execution via remote data sources. The CVE-2005-2549 entry covers vulnerabilities triggered by: (1) full vCard data, (2) contact data from remote LDAP servers, and (3) task list data f...

CVE-2005-2549

Multiple format string vulnerabilities in Evolution 1.5 through 2.3.6.1 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via 1 full vCard data, 2 contact data from remote LDAP servers, or 3 task list data from remote servers...

CVE-2005-2549

Multiple format string vulnerabilities in Evolution 1.5 through 2.3.6.1 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via 1 full vCard data, 2 contact data from remote LDAP servers, or 3 task list data from remote servers...