[ GLSA 200504-14 ] monkeyd: Multiple vulnerabilities

Gentoo Linux Security Advisory GLSA 200504-14 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

GLSA-200504-14 : monkeyd: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200504-14 monkeyd: Multiple vulnerabilities Tavis Ormandy of the Gentoo Linux Security Audit Team discovered a double expansion error in monkeyd, resulting in a format string vulnerability. Ciaran McCreesh of Gentoo Linux discover...

CVE-2003-0363

The CVE-2003-0363 entry covers a format string vulnerability in LICQ versions 1.2.6 and 1.0.3 (and possibly others). The underlying issue is a format string vulnerability in which an attacker can influence format specifiers to perform unknown actions remotely. The vulnerability affects LICQ’s han...

CVE-2003-0363

Format string vulnerability in LICQ 1.2.6, 1.0.3 and possibly other versions allows remote attackers to perform unknown actions via format string specifiers...

monkeyd: Multiple vulnerabilities

Background monkeyd is a fast, efficient, small and easy to configure web server for Linux. Description Tavis Ormandy of the Gentoo Linux Security Audit Team discovered a double expansion error in monkeyd, resulting in a format string vulnerability. Ciaran McCreesh of Gentoo Linux discovered a...

Monkey HTTP Daemon (monkeyd) < 0.9.1 Multiple Vulnerabilities

The version of the Monkey HTTP Server installed on the remote host suffers from the following flaws : - A Format String Vulnerability A remote attacker may be able to execute arbitrary code with the permissions of the user running monkeyd by sending a specially- crafted request. - A Denial of...

CVE-2004-1004

Multiple format string vulnerabilities in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...

CVE-2005-1122

Format string vulnerability in cgi.c for Monkey daemon monkeyd before 0.9.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP GET request containing double-encoded format string specifiers aka "double expansion error"...

CVE-2004-1004

Multiple format string vulnerabilities in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...

CVE-2004-1004

Multiple format string vulnerabilities in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...

DEBIAN-CVE-2004-1004

Multiple format string vulnerabilities in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...

oops -- format string vulnerability

A RST/GHC Advisory reports that there is an format string vulnerability in oops. The vulnerability can be found in the MySQL/PgSQL authentication module. Succesful exploitation may allow execution of arbitrary code...

GLSA-200504-10 : Gld: Remote execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200504-10 Gld: Remote execution of arbitrary code dong-hun discovered several buffer overflows in server.c, as well as several format string vulnerabilities in cnf.c. Impact : An attacker could exploit this vulnerability to execut...

CVE-2005-1100

CVE-2005-1100 affects Greylisting daemon (GLD) 1.3 and 1.4. The vulnerability is a format-string bug in the ErrorLog function (cnf.c) that allows remote code execution via data passed to syslog. Linked advisories (GLSA 200504-10) describe remote arbitrary-code execution due to format-string issue...

CVE-2005-1100

Format string vulnerability in the ErrorLog function in cnf.c in Greylisting daemon GLD 1.3 and 1.4 allows remote attackers to execute arbitrary code via format string specifiers in data that is passed directly to syslog...

CVE-2005-1100

Format string vulnerability in the ErrorLog function in cnf.c in Greylisting daemon GLD 1.3 and 1.4 allows remote attackers to execute arbitrary code via format string specifiers in data that is passed directly to syslog...

gld 1.4 (Postfix Greylisting Daemon) Remote Format String Exploit

Exploit for linux platform in category remote exploits ================================================================= gld 1.4 Postfix Greylisting Daemon Remote Format String Exploit ================================================================= / 0x82-meOw-linuxerforever - gld 1.4 remote...

gld 1.4 - Postfix Greylisting Daemon Remote Format String

gld 1.4 - Postfix Greylisting Daemon Remote Format String / 0x82-meOw-linuxerforever - gld 1.4 remote overflow format string exploit. c 2005 Team INetCop Security. Nickname of this code is, Kill two bird with one stone.' or, One shot, two kill!.' hehehe ;-D Advisory URL:...

GLD &#40;Greylisting daemon for Postfix&#41; multiple vulnerabilities.

======================================== INetCop Security Advisory 2005-0x82-026 ======================================== Title: GLD Greylisting daemon for Postfix multiple vulnerabilities. 0x01. Description About: Gld is a standalone greylisting server for Postfix. Greylisting is a new weapon to...

Gld: Remote execution of arbitrary code

Background Gld is a standalone greylisting server for Postfix. Description dong-hun discovered several buffer overflows in server.c, as well as several format string vulnerabilities in cnf.c. Impact An attacker could exploit this vulnerability to execute arbitrary code with the permissions of the...