236 matches found
CVE-2002-1200
Balabit Syslog-NG is affected by CVE-2002-1200. Affected lines are syslog-ng 1.4.x before 1.4.15 and 1.5.x before 1.5.20. The issue arises from improper buffer size tracking during macro expansion when constant characters are appended to template filenames or output, leading to out-of-bounds writ...
CVE-2002-1200
Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute...
SUSE-SA:2002:039: syslog-ng
The remote host is missing the patch for the advisory SUSE-SA:2002:039 syslog-ng. The syslog-ng package is a portable syslog implementation which can be used as syslogd replacement. Syslog-ng contained buffer overflows in its macro expansion routines. These overflows could be triggered by remote...
syslog-ng buffer overflow
Buffer overflow in parsing $HOST variable in configuration file...
[ESA-20021029-028] syslog-ng: buffer overflow in macro handling code (UPDATED)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +------------------------------------------------------------------------+ | EnGarde Secure Linux Security Advisory October 29, 2002 | | http://www.engardelinux.org/ ESA-20021029-028 | | | | Package: syslog-ng | | Summary: buffer overflow in macro...
CVE-2002-1200
Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute...
CVE-2002-1200
Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute...
DEBIAN-CVE-2002-1200
Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute...
[SECURITY] [DSA 175-1] New syslog-ng packages fix buffer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 175-1 [email protected] http://www.debian.org/security/ Martin Schulze October 15th, 2002 http://www.debian.org/security/faq -...
[SECURITY] [DSA 175-1] New syslog-ng packages fix buffer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 175-1 [email protected] http://www.debian.org/security/ Martin Schulze October 15th, 2002 http://www.debian.org/security/faq -...
DSA-175 syslog-ng - buffer overflow
Bulletin has no description...
syslog-ng buffer overflow
---------------------------------------------------------------------------- PACKAGE : syslog-ng VERSION : -1.4.15 stable and -1.5.20 development SUMMARY : buffer overflow TYPE : remote exploit VULNERABLE: : exploitable not in default configuration ZORP-OS SPECIFIC : No ZSA-AUTHOR : Balazs...
CVE-2000-1165
Balabit syslog-ng is affected by CVE-2000-1165 due to a parsing error in messages that lack a closing > in the priority specifier, allowing remote attackers to cause an application crash (DoS). The available records identify the affected software as Balabit syslog-ng and describe the issue as ...
FreeBSD-SA-01:02.syslog-ng
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:02 Security Advisory FreeBSD, Inc. Topic: syslog-ng remote denial-of-service Category: ports Module: syslog-ng Announced: 2001-01-15 Credits: Balazs Scheidler Affects:...
DoS против syslog-ng
Определенная комбинация символов приводи к краху сервиса...
DoS possibility in syslog-ng
BalaBit security advisory Advisory ID: BB-2000/01 Package: syslog-ng Versions affected: versions prior to and including 1.4.8 Problem type: remote DoS attack Date: 2000-11-22 1 Background syslog-ng is a portable syslog implementation. Its highlights include regexp based log selection, TCP transpo...