FreeBSD : bidwatcher -- format string vulnerability (74c86a29-81ef-11d9-a9e7-0001020eed82)

A Debian Security Advisory reports : Ulf Harnhammer from the Debian Security Audit Project discovered a format string vulnerability in bidwatcher, a tool for watching and bidding on eBay auctions. This problem can be triggered remotely by a web server of eBay, or someone pretending to be eBay,...

FreeBSD : sup -- format string vulnerability (2c5757f4-88bf-11d9-8720-0007e900f87b)

Debian Security Advisory reports : [email protected] discovered a format string vulnerability in sup, a set of programs to synchronize collections of files across a number of machines, whereby a remote attacker could potentially cause arbitrary code to be executed with the privileges of the...

FreeBSD : mkbold-mkitalic -- format string vulnerability (32d4f0f1-85c3-11d9-b6dc-0007e900f747)

The version 0.061 and prior have a format string vulnerability which can be triggered by using a carefully-crafted BDF font file. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright...

FreeBSD : hashcash -- format string vulnerability (5ebfe901-a3cb-11d9-b248-000854d03344)

A Gentoo Linux Security Advisory reports : Tavis Ormandy of the Gentoo Linux Security Audit Team identified a flaw in the Hashcash utility that an attacker could expose by specifying a malformed reply address. Successful exploitation would permit an attacker to disrupt Hashcash users, and...

FreeBSD : dillo -- format string vulnerability (28ab7ddf-61ab-11d9-a9e7-0001020eed82)

dillo contains a format string vulnerability which could lead to execution of arbitrary code simply by viewing a web page or opening a HTML file. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML...

[SECURITY] [DSA 753-1] New gedit packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 753-1 [email protected] http://www.debian.org/security/ Martin Schulze July 12th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 753-1] New gedit packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 753-1 [email protected] http://www.debian.org/security/ Martin Schulze July 12th, 2005 http://www.debian.org/security/faq -...

CVE-2005-2237

Format string vulnerability in the swcons command in IBM AIX 5.3, and possibly other versions, might allow local users to execute arbitrary code via long command line arguments...

CVE-2005-2237

CVE-2005-2237 describes a format string vulnerability in the swcons command on IBM AIX 5.3 (and possibly other versions) that could allow local users to execute arbitrary code via long command line arguments. The vulnerability arises from a format string handling flaw in swcons, enabling local pr...

CVE-2005-2237

Format string vulnerability in the swcons command in IBM AIX 5.3, and possibly other versions, might allow local users to execute arbitrary code via long command line arguments...

CVE-2005-2236

Format string vulnerability in the paginit command in IBM AIX 5.3, and possibly other versions, might allow local users to execute arbitrary code via format strings in command line arguments...

CVE-2005-2236

Format string vulnerability in the paginit command in IBM AIX 5.3, and possibly other versions, might allow local users to execute arbitrary code via format strings in command line arguments...

CVE-2005-2236

CVE-2005-2236 describes a format string vulnerability in the paginit command for IBM AIX 5.3 (and possibly other versions). The issue could allow local users to execute arbitrary code via format strings supplied in command line arguments. This is a local privilege concern with an impact described...

Debian DSA-753-1 : gedit - format string

A format string vulnerability has been discovered in gedit, a light-weight text editor for GNOME, that may allow attackers to cause a denial of service application crash via a binary file with format string specifiers in the filename. Since gedit supports opening files via 'http://' URLs through...

Debian DSA-749-1 : ettercap - format string error

A vulnerability was discovered in the ettercap package which could allow a remote attacker to execute arbitrary code on the system running ettercap. The old stable distribution woody did not include ettercap. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

[SECURITY] [DSA 749-1] New ettercap packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA 749-1 [email protected] http://www.debian.org/security/ Michael Stone July 10, 2005 http://www.debian.org/security/faq - ------------------------------------------------------------------------...

[SECURITY] [DSA 749-1] New ettercap packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA 749-1 [email protected] http://www.debian.org/security/ Michael Stone July 10, 2005 http://www.debian.org/security/faq - ------------------------------------------------------------------------...

CVE-2004-2160

Format string vulnerability in xmlelem.c for XMLStarlet Command Line XML Toolkit 0.9.3 may allow attackers to cause a denial of service or execute arbitrary code...

CVE-2004-2160

Format string vulnerability in xmlelem.c for XMLStarlet Command Line XML Toolkit 0.9.3 may allow attackers to cause a denial of service or execute arbitrary code...

CVE-2004-2160

XMLStarlet Command Line XML Toolkit 0.9.3 is affected by a format string vulnerability in xml_elem.c, as described for CVE-2004-2160. The issue enables denial of service or arbitrary code execution and is exploitable via network access with low attack complexity, according to the NVD entry. Affec...