21 matches found
EUVD-2002-1868
Malware in sbrugna...
EUVD-2011-3585
Malware in sbrugna...
CVE-2011-3626
Double free vulnerability in the prepareexec function in src/exec.c in Logsurfer 1.5b and earlier, and Logsurfer+ 1.7 and earlier, allows remote attackers to execute arbitrary commands via crafted strings in a log file...
CVE-2002-1889
Off-by-one buffer overflow in the contextaction function in context.c of Logsurfer 1.41 through 1.5a allows remote attackers to cause a denial of service crash via a malformed log entry...
SUSE CVE-2011-3626
Double free vulnerability in the prepareexec function in src/exec.c in Logsurfer 1.5b and earlier, and Logsurfer+ 1.7 and earlier, allows remote attackers to execute arbitrary commands via crafted strings in a log file...
The vulnerability of the Gentoo Linux operating system allows a malicious intruder to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the logsurfer+ package up to version 1.8 of the Gentoo Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...
Gentoo Security Advisory GLSA 201201-04 (Logsurfer)
The remote host is missing updates announced in advisory GLSA 201201-04. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Gentoo Security Advisory GLSA 201201-04 (Logsurfer)
The remote host is missing updates announced in advisory GLSA 201201-04. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
[ GLSA 201201-04 ] Logsurfer: Arbitrary code execution
Gentoo Linux Security Advisory GLSA 201201-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
logsurfer double free vulnerability
prepareexec double free vulnerability...
CVE-2011-3626
Double free vulnerability in the prepareexec function in src/exec.c in Logsurfer 1.5b and earlier, and Logsurfer+ 1.7 and earlier, allows remote attackers to execute arbitrary commands via crafted strings in a log file...
Double free
Double free vulnerability in the prepareexec function in src/exec.c in Logsurfer 1.5b and earlier, and Logsurfer+ 1.7 and earlier, allows remote attackers to execute arbitrary commands via crafted strings in a log file...
CVE-2011-3626
Double free vulnerability in the prepareexec function in src/exec.c in Logsurfer 1.5b and earlier, and Logsurfer+ 1.7 and earlier, allows remote attackers to execute arbitrary commands via crafted strings in a log file...
CVE-2011-3626
CVE-2011-3626 affects Logsurfer and Logsurfer+ prior to versions 1.8. The prepare_exec function in src/exec.c contains a double-free vulnerability that allows a remote attacker to execute arbitrary commands via crafted strings in a log file. Connected advisories confirm affected releases: Logsurf...
GLSA-201201-04 : Logsurfer: Arbitrary code execution
The remote host is affected by the vulnerability described in GLSA-201201-04 Logsurfer: Arbitrary code execution Logsurfer log files may contain substrings used for executing external commands. The prepareexec function in src/exec.c contains a double-free vulnerability. Impact : A remote attacker...
Logsurfer: Arbitrary code execution
Background Logsurfer is a real time log monitoring and analysis tool. Description Logsurfer log files may contain substrings used for executing external commands. The prepareexec function in src/exec.c contains a double-free vulnerability. Impact A remote attacker could inject specially-crafted...
CVE-2002-1889
The CVE refers to an off-by-one buffer overflow in the context_action function (context.c) affecting Logsurfer versions 1.41 through 1.5a. The underlying issue is a buffer boundary condition in processing log entries, enabling remote attackers to cause a denial of service (crash) by sending a mal...
CVE-2002-1889
Off-by-one buffer overflow in the contextaction function in context.c of Logsurfer 1.41 through 1.5a allows remote attackers to cause a denial of service crash via a malformed log entry...
CVE-2002-1889
Off-by-one buffer overflow in the contextaction function in context.c of Logsurfer 1.41 through 1.5a allows remote attackers to cause a denial of service crash via a malformed log entry...
vulnerabilities in logsurfer
-----BEGIN PGP SIGNED MESSAGE----- The program "logsurfer" was designed to monitor any text-based logfiles on systems in realtime. For more informations about logsurfer we refer to http://www.cert.dfn.de/eng/logsurf/home.html 1. Affected software: All logsurfer versions including 1.5a and earlier...