Maelstrom Player 3.0.x - Argument Buffer Overflow (1)

source: https://www.securityfocus.com/bid/7632/info Maelstrom for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it is copied into an internal memory space. It may be...

Maelstrom Server 3.0.x - Argument Buffer Overflow (1)

source: https://www.securityfocus.com/bid/7630/info Maelstrom for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it is copied into an internal memory space. It may be...

Maelstrom Player 3.0.x - Argument Buffer Overflow (2)

Maelstrom Player 3.0.x - Argument Buffer Overflow 2 // source: https://www.securityfocus.com/bid/7632/info Maelstrom for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it ...

SheerDNS < 1.0.1 Multiple Vulnerabilities

The remote server seems to be running SheerDNS 1.0.0 or older. This version is vulnerable to several flaws allowing : - A remote attacker to read certain files with predefined names A, PTR, CNAME, ... - A local attacker to read the first line of arbitrary files with the privileges of the DNS serv...

CVE-2002-1051

Format string vulnerability in TrACESroute 6.0 GOLD aka NANOG traceroute allows local users to execute arbitrary code via the -T terminator command line argument...

CVE-2001-1375

tcl/tk package tcltk 8.3.1 searches for its libraries in the current working directory before other directories, which could allow local users to execute arbitrary code via a Trojan horse library that is under a user-controlled directory...

CVE-2003-0004

Buffer overflow in the Windows Redirector function in Microsoft Windows XP allows local users to execute arbitrary code via a long parameter...

CVE-2003-0056

Buffer overflow in secure locate slocate before 2.7 allows local users to execute arbitrary code via a long 1 -c or 2 -r command line argument...

SECURITY.NNOV: Far buffer overflow

Title: Buffer overflow in Far Manager Affected: Far Manager 1.70beta1 and prior saved EIP overflow 1.70beta4 off-by-one frame pointer overflow Vendor: RARSoft Risk: Average local code execution Exploitable: Yes Remote: No Vendor Notified: January, 30 2003 I. Introduction: FAR is most convinient...

CVE-2003-0034

Buffer overflow in the mtink status monitor, as included in the printer-drivers package in Mandrake Linux, allows local users to execute arbitrary code via a long HOME environment variable...

CVE-2003-0034

Buffer overflow in the mtink status monitor, as included in the printer-drivers package in Mandrake Linux, allows local users to execute arbitrary code via a long HOME environment variable...

CVE-2003-0034

Buffer overflow in the mtink status monitor, as included in the printer-drivers package in Mandrake Linux, allows local users to execute arbitrary code via a long HOME environment variable...

DEBIAN-CVE-2002-1384

Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf...

CVE-2002-1617

Multiple buffer overflows in HP Tru64 UNIX 5.x allow local users to execute arbitrary code via 1 a long -contextDir argument to dtaction, 2 a long -p argument to dtprintinfo, 3 a long -customization argument to dxterm, or 4 a long DISPLAY environment variable to dtterm...

CVE-2002-2282

McAfee VirusScan 4.5.1, when the WebScanX.exe module is enabled, searches for particular DLLs from the user's home directory, even when browsing the local hard drive, which allows local users to run arbitrary code via malicious versions of those DLLs...

CVE-2002-1789

Format string vulnerability in newsx NNTP client before 1.4.8 allows local users to execute arbitrary code via format string specifiers that are not properly handled in a call to the syslog function...

CVE-2002-2396

Buffer overflow in Advanced TFTP atftp 0.5 and 0.6, if installed setuid or setgid, may allow local users to execute arbitrary code via a long argument to the -g option...

CVE-2002-1767

Buffer overflow in tnslsnr of Oracle 8i Database Server 8.1.5 for Linux allows local users to execute arbitrary code as the oracle user via a long command line argument...

CVE-2002-2087

Buffer overflow in Borland InterBase 6.0 allows local users to execute arbitrary code via a long INTERBASE environment variable when calling 1 gdsdrop, 2 gdslockmgr, or 3 gdsinetserver...

PT-2002-2274 · Trend Micro · Pc-Cillin

Name of the Vulnerable Software and Affected Versions: PC-cillin versions 2000, 2002, 2003 Description: The issue allows local users to execute arbitrary code via a long input string to the TCP port 110, which is used for POP3. This is due to a buffer overflow in the pop3trap.exe component...