1662 matches found
[ESA-20021029-028] syslog-ng: buffer overflow in macro handling code (UPDATED)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +------------------------------------------------------------------------+ | EnGarde Secure Linux Security Advisory October 29, 2002 | | http://www.engardelinux.org/ ESA-20021029-028 | | | | Package: syslog-ng | | Summary: buffer overflow in macro...
CVE-2002-1200
Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute...
DEBIAN-CVE-2002-1200
Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute...
CVE-2002-1200
Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute...
[SECURITY] [DSA 175-1] New syslog-ng packages fix buffer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 175-1 [email protected] http://www.debian.org/security/ Martin Schulze October 15th, 2002 http://www.debian.org/security/faq -...
[SECURITY] [DSA 175-1] New syslog-ng packages fix buffer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 175-1 [email protected] http://www.debian.org/security/ Martin Schulze October 15th, 2002 http://www.debian.org/security/faq -...
DSA-175 syslog-ng - buffer overflow
Bulletin has no description...
syslog-ng buffer overflow
---------------------------------------------------------------------------- PACKAGE : syslog-ng VERSION : -1.4.15 stable and -1.5.20 development SUMMARY : buffer overflow TYPE : remote exploit VULNERABLE: : exploitable not in default configuration ZORP-OS SPECIFIC : No ZSA-AUTHOR : Balazs...
DEBIAN-CVE-2002-0916
Format string vulnerability in the allowuser code for the Stellar-X msntauth authentication module, as distributed in Squid 2.4.STABLE6 and earlier, allows remote attackers to execute arbitrary code via format strings in the user name, which are not properly handled in a syslog call...
CVE-2000-1208
Format string vulnerability in startprinting function of printjob.c in BSD-based lpr lpd package may allow local users to gain privileges via an improper syslog call that uses format strings from the checkremote call...
ISDN4Linux 3.1 - IPPPD Device String SysLog Format String (1)
ISDN4Linux 3.1 - IPPPD Device String SysLog Format String 1 // source: https://www.securityfocus.com/bid/5437/info isdn4linux is a freely available, open source package of isdn compatibility tools. It is available for Linux operating systems. isdn4linux contains a format string vulnerability in t...
ISDN4Linux 3.1 - IPPPD Device String SysLog Format String (1)
// source: https://www.securityfocus.com/bid/5437/info isdn4linux is a freely available, open source package of isdn compatibility tools. It is available for Linux operating systems. isdn4linux contains a format string vulnerability in the ipppd utility. In some installations, this utility is...
CVE-2000-1208
Format string vulnerability in startprinting function of printjob.c in BSD-based lpr lpd package may allow local users to gain privileges via an improper syslog call that uses format strings from the checkremote call...
William Deich Super 3.x - SysLog Format String
William Deich Super 3.x - SysLog Format String // source: https://www.securityfocus.com/bid/5367/info super is prone to a format string vulnerability. This problem is due to incorrect use of the syslog function to log error messages. It is possible to corrupt memory by passing format strings...
William Deich Super 3.x - SysLog Format String
// source: https://www.securityfocus.com/bid/5367/info super is prone to a format string vulnerability. This problem is due to incorrect use of the syslog function to log error messages. It is possible to corrupt memory by passing format strings through the vulnerable logging function. This may...
Format string bug in decfingerd
Ошибка форматной строки при вызове syslog...
Formatstring Vulnerability in decfingerd 0.7
Hello all, I have no idea if this is the most current version of this application, I found it while browsing packetstormsecurity earlier. For all I know it may not even be kept current anymore. Anyhow... bad call to syslog is the culprit. I'm to lazy to code an exploit for this at the moment but ...
Slurp 1.10 - SysLog Remote Format String
Slurp 1.10 - SysLog Remote Format String source: https://www.securityfocus.com/bid/4935/info slurp is a freely available, open source NNTP client. It is designed for use on most Unix and Linux operating systems. It may be possible for a remote server to execute code on a vulnerable client. slurp...
Slurp 1.10 - SysLog Remote Format String
source: https://www.securityfocus.com/bid/4935/info slurp is a freely available, open source NNTP client. It is designed for use on most Unix and Linux operating systems. It may be possible for a remote server to execute code on a vulnerable client. slurp offers functionality that allows the...
Format string bug in pam_ldap/squid_auth_ldap
Format string bug on syslog call...