Lucene search
K

1662 matches found

CVE
CVE
added 2005/02/06 5:0 a.m.66 views

CVE-2004-1388

CVE-2004-1388 describes a format-string vulnerability in BerliOS GPSD (gpsd, formerly pygps) within the gpsd_report function, affecting versions 1.9.0 through 2.7. An attacker could remotely trigger arbitrary code execution via GPS requests with format specifiers unhandled by syslog calls. Public...

7.5CVSS7.6AI score0.68195EPSS
Exploits8References5Affected Software1
Cvelist
Cvelist
added 2005/02/06 5:0 a.m.14 views

CVE-2005-0226

Format string vulnerability in the LogResolver function in log.c for ngIRCd 0.8.2 and earlier, when compiled with IDENT, logging to SYSLOG, and with DEBUG enabled, allows remote attackers to execute arbitrary code...

7.3AI score0.0972EPSS
Exploits1References4
seebug.org
seebug.org
added 2005/02/03 12:0 a.m.21 views

ngIRCd <= 0.8.2 Remote Format String Exploit

No description provided by source. / ngircdfsexp.c ngIRCd = 0.8.2 remote format string exploit Note: To obtain a successful exploitation, we need that ngIRCd has been compiled with IDENT, logging to SYSLOG and DEBUG enabled. Original Reference: http://www.nosystem.com.ar/advisories/advisory-11.tx...

7.1AI score
Exploits0
0day.today
0day.today
added 2005/02/03 12:0 a.m.46 views

ngIRCd <= 0.8.2 Remote Format String Exploit

Exploit for linux platform in category remote exploits ============================================ ngIRCd Use: ./ngircdfsexp -h options options: -h host or IP -p ircd port by default 6667 -t type of target system -g syslog GOT address -o offset RET addr by default 0x0806b000 -b brutefoce the RET...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2005/02/03 12:0 a.m.76 views

ngIRCd 0.8.2 - Remote Format String

/ ngircdfsexp.c ngIRCd Use: ./ngircdfsexp -h options options: -h host or IP -p ircd port by default 6667 -t type of target system -g syslog GOT address -o offset RET addr by default 0x0806b000 -b brutefoce the RET address from 0x0806b000 + offset -l targets list root@servidor:/home/coki/audit...

7.4AI score
Exploits0
OSV
OSV
added 2004/12/31 5:0 a.m.1 views

DEBIAN-CVE-2004-1484

Format string vulnerability in the msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to execute arbitrary code via format string specifiers in a syslog message...

5CVSS7.7AI score0.07293EPSS
Exploits1References1
OSV
OSV
added 2004/12/31 5:0 a.m.1 views

DEBIAN-CVE-2004-1388

Format string vulnerability in the gpsdreport function for BerliOS GPD daemon gpsd, formerly pygps 1.9.0 through 2.7 allows remote attackers to execute arbitrary code via certain GPS requests containing format string specifiers that are not properly handled in syslog calls...

7.5CVSS8AI score0.68195EPSS
Exploits8References1
OSV
OSV
added 2004/12/31 5:0 a.m.5 views

CVE-2004-2026

Format string vulnerability in the logmsg function in svc.c for Pound 1.5 and earlier allows remote attackers to execute arbitrary code via format string specifiers in syslog messages...

7.9AI score
Exploits0References9
NVD
NVD
added 2004/12/31 5:0 a.m.16 views

CVE-2004-1469

Format string vulnerability in the log function in SUS 2.0.2, and other versions before 2.0.6, allows local users to execute arbitrary code via format string specifiers in a command line argument that is passed directly to syslog...

7.2CVSS7.2AI score0.0062EPSS
Exploits1References6
OSV
OSV
added 2004/12/31 5:0 a.m.10 views

CVE-2004-1484

Format string vulnerability in the msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to execute arbitrary code via format string specifiers in a syslog message...

7.6AI score
Exploits0References11
OSV
OSV
added 2004/12/31 5:0 a.m.1 views

DEBIAN-CVE-2004-2026

Format string vulnerability in the logmsg function in svc.c for Pound 1.5 and earlier allows remote attackers to execute arbitrary code via format string specifiers in syslog messages...

7.5CVSS7.8AI score0.0664EPSS
Exploits1References1
securityvulns
securityvulns
added 2004/12/13 12:0 a.m.23 views

Citadel/UX format string bug

Formatr stirng bug on syslog call...

1.5AI score
Exploits0References1
exploitpack
exploitpack
added 2004/12/12 12:0 a.m.14 views

CitadelUX 6.27 - Format String

CitadelUX 6.27 - Format String / citadelfsexp.c Citadel/UX v6.27 remote format string exploit Use: ./citadelfsexp -h options options: -h host or IP -t type of target system -l targets list -g syslog GOT address -r RET address coki@nosystem:/audit$ ./citadelfsexp -h localhost -t0 Citadel/UX v6.27...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2004/12/12 12:0 a.m.51 views

Citadel/UX 6.27 - Format String

/ citadelfsexp.c Citadel/UX v6.27 remote format string exploit Use: ./citadelfsexp -h options options: -h host or IP -t type of target system -l targets list -g syslog GOT address -r RET address coki@nosystem:/audit$ ./citadelfsexp -h localhost -t0 Citadel/UX v6.27 remote format string exploit by...

7.4AI score
Exploits0
NVD
NVD
added 2004/12/06 5:0 a.m.17 views

CVE-2004-0448

Format string vulnerability in the log function for jftpgw 0.13.4 and earlier allows remote authenticated users to execute arbitrary code via format string specifiers in certain syslog messages...

10CVSS7.2AI score0.04343EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2004/12/06 5:0 a.m.26 views

CVE-2004-0623

Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote attackers to execute arbitrary code via format string specifiers in a string that gets logged by syslog...

10CVSS6.3AI score0.04487EPSS
Exploits0References1
NVD
NVD
added 2004/12/06 5:0 a.m.25 views

CVE-2004-0451

Multiple format string vulnerabilities in the 1 logquit, 2 logerr, or 3 loginfo functions in Software Upgrade Protocol SUP allows remote attackers to execute arbitrary code via format string specifiers in messages that are logged by syslog...

10CVSS7.6AI score0.0439EPSS
Exploits0References4
NVD
NVD
added 2004/12/06 5:0 a.m.17 views

CVE-2004-0623

Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote attackers to execute arbitrary code via format string specifiers in a string that gets logged by syslog...

10CVSS7.3AI score0.04487EPSS
Exploits0References3
OSV
OSV
added 2004/12/06 5:0 a.m.1 views

DEBIAN-CVE-2004-0451

Multiple format string vulnerabilities in the 1 logquit, 2 logerr, or 3 loginfo functions in Software Upgrade Protocol SUP allows remote attackers to execute arbitrary code via format string specifiers in messages that are logged by syslog...

10CVSS8.1AI score0.0439EPSS
Exploits0References1
OSV
OSV
added 2004/12/06 5:0 a.m.2 views

DEBIAN-CVE-2004-0393

Format string vulnerability in the msg function for rlpr daemon rlprd 2.0.4 allows remote attackers to execute arbitrary code via format string specifiers in a buffer that can not be resolved, which is provided to the syslog function...

10CVSS8.2AI score0.17427EPSS
Exploits1References1
Rows per page
Query Builder