8515 matches found
CVE-2004-0179
Multiple format string vulnerabilities in 1 neon 0.24.4 and earlier, and other products that use neon including 2 Cadaver, 3 Subversion, and 4 OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code...
CVE-2004-0179
CVE-2004-0179 involves multiple format-string vulnerabilities in neon 0.24.4 and earlier, and in other products that use neon (Cadaver, Subversion, OpenOffice). The underlying issue is format-string bugs in neon’s error reporting code, which could allow a remote attacker—via a malicious WebDAV se...
DSA-487 neon - format string
Bulletin has no description...
CVE-2004-0153
Multiple format string vulnerabilities in emil 2.1.0 and earlier may allow remote attackers to execute arbitrary code by triggering certain error messages...
CVE-2003-0257
Format string vulnerability in the printer capability for IBM AIX .3, 5.1, and 5.2 allows local users to gain printq or root privileges...
CVE-2003-1037
Format string vulnerability in the WGate component for SAP Internet Transaction Server ITS allows remote attackers to execute arbitrary code via a high "trace level."...
[SECURITY] [DSA 485-1] New ssmtp packages fix format string vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 485-1 [email protected] http://www.debian.org/security/ Matt Zimmerman April 14th, 2004 http://www.debian.org/security/faq -...
ssmtp format string bug
Format string bug in logging...
[Full-Disclosure] [SECURITY] [DSA 485-1] New ssmtp packages fix format string vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 485-1 [email protected] http://www.debian.org/security/ Matt Zimmerman April 14th, 2004 http://www.debian.org/security/faq -...
security flaw
Multiple format string vulnerabilities in 1 neon 0.24.4 and earlier, and other products that use neon including 2 Cadaver, 3 Subversion, and 4 OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code...
Important: Red Hat Security Advisory: openoffice.org security update
Updated OpenOffice packages that fix a vulnerability in neon exploitable by a malicious DAV server are now available. OpenOffice.org is an Open Source, community-developed, multi-platform office productivity suite. OpenOffice internally uses inbuilt code from neon, an HTTP and WebDAV client...
Important: Red Hat Security Advisory: cadaver security update
An updated cadaver package that fixes a vulnerability in neon exploitable by a malicious DAV server is now available. cadaver is a command-line WebDAV client that uses inbuilt code from neon, an HTTP and WebDAV client library. Versions of the neon client library up to and including 0.24.4 have be...
Neon WebDAV Client Library 0.2x - Format String
Neon WebDAV Client Library 0.2x - Format String source: https://www.securityfocus.com/bid/10136/info It has been reported that the Neon client library is prone to multiple remote format string vulnerabilities. This issue is due to a failure of the application to properly implement format string...
DSA-485 ssmtp - format string
Bulletin has no description...
neon format string vulnerabilities
Greuff reports that the neon WebDAV client library contains several format string bugs within error reporting code. A malicious server may exploit these bugs by sending specially crafted PROPFIND or PROPPATCH responses. Although several applications include neon, such as cadaver and subversion, t...
Neon WebDAV Client Library 0.2x - Format String
source: https://www.securityfocus.com/bid/10136/info It has been reported that the Neon client library is prone to multiple remote format string vulnerabilities. This issue is due to a failure of the application to properly implement format string functions. Ultimately this vulnerability could...
[ GLSA 200404-12 ] Scorched 3D server chat box format string vulnerability
Gentoo Linux Security Advisory GLSA 200404-12 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
CVE-2004-1917
Format string vulnerability in testfuncfunc in LCDProc 0.4.1 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the str variable...
CVE-2004-1917
Format string vulnerability in testfuncfunc in LCDProc 0.4.1 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the str variable...
DEBIAN-CVE-2004-1917
Format string vulnerability in testfuncfunc in LCDProc 0.4.1 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the str variable...