6554 matches found
Buffer overflows and multiple bugs in squid
Buffer overflow on ftp:// URLs, memory leaks, etc...
FreeBSD-SN-02:04
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SN-02:04 Security Notice The FreeBSD Project Topic: security issues in ports Announced: 2002-06-19 I. Introduction Several ports in the FreeBSD Ports Collection are affected by...
Multiple bugs in SeaNox Devwex
Buffer overflows, directory traversal...
CVE-2002-0031
Affected software: Yahoo! Messenger for Windows, version 5.0.0.1064 and earlier. Vulnerability: a remote buffer overflow in the Yahoo! Messenger URI handler (ymsgr:), sharing a single vulnerable buffer for multiple functions (e.g., getimv, sendim, message, addview, adduser, call, chat). Impact: m...
CVE-2002-0552
The CVE-2002-0552 entry concerns Melange Chat Server 2.02 with multiple buffer overflows that can be triggered remotely or locally. The documented vectors include: (1) a long argument in the /yell command, (2) long lines in the /etc/melange.conf configuration file, and (3) long file names, among ...
CVE-2002-0468
CVE-2002-0468 affects Ecartis (formerly Listar) 1.0.0 and earlier snapshots. The vulnerability arises from buffer overflows in core code paths handling command line arguments and string formatting, including potential bad uses of sprintf() in files such as core.c, moderate.c, lcgi.c, fileapi.c, c...
CVE-2002-0552
Multiple buffer overflows in Melange Chat server 2.02 allow remote or local attackers to cause a denial of service crash and possibly execute arbitrary code via 1 a long argument in the /yell command, 2 long lines in the /etc/melange.conf configuration file, 3 long file names, or possibly other...
Multiple bugs in Yahoo Messenger
Multiple bugs including buffer overflows...
Potential security issues in Ethereal
Looks like Ethereal has some potential security issues: http://www.ethereal.com/appnotes/enpa-sa-00004.html -- Name: Potential issues with Ethereal 0.9.3 Docid: enpa-sa-00004 Date: May 19, 2002 Severity: High Description: Four potential security issues have been discovered in Ethereal 0.9.3: The...
CVE-2002-0247
Buffer overflows in wmtv 0.6.5 and earlier may allow local users to gain privileges...
Yahoo Messenger - Multiple Vulnerabilities
Yahoo! Instant Messenger YIM Hi-Jack 101-- Multiple Vulnerabilities & Demonstration Exploit Date : 05/02/2002 Version : Yahoo! Messenger 5, 0, 0, 1061 latest build at time Platforms : Win98, Win2K, XP Pro and likely all Windows versions Severity : Medium - High Contents : 01. Summary 02...
FreeBSD-SN-02:03
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SN-02:03 Security Notice The FreeBSD Project Topic: security issues in ports Announced: 2002-05-28 I. Introduction Several ports in the FreeBSD Ports Collection are affected by...
Multiple buffer overflows in amanda
Local andremote buffer overflows...
Multiple bugs in Windows FTP servers
Buffer overflows, directory traversal...
Multiple bugs in Solaris in.rarpd
Buffer overflows, format string bugs...
[DER Adv #7] - Multiple Vulnerabilities in solaris in.rarpd
Intro: rarpd is a reverse arp protocol for small to medium sized networks. in the solaris implementation in.rarpd there seems to be 3 remotely exploitable buffer overflows, 2 locally exploitable and 2 cases of format string exploitability. Details: In the functions error and syserr syserr also...
Multiple bugs in Solaris utils
Local and remoter root compromise via buffer overflows and remote DoS attacks...
CVE-2001-1314
Buffer overflows in Critical Path 1 InJoin Directory Server or 2 LiveContent Directory allow remote attackers to cause a denial of service crash and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite...
CVE-2001-1316
The CVE-2001-1316 issue concerns Teamware Office Enterprise Directory’s LDAP server, where buffer overflow in LDAP handling code (triggered by malformed LDAP requests) can cause remote denial-of-service and may allow arbitrary code execution, as demonstrated by the PROTOS LDAPv3 test suite. Docum...
CVE-2002-0332
The CVE-2002-0332 issue affects xtell/xtelld (Debian xtell package) and is described to allow remote code execution through three vectors: (1) a long DNS hostname obtained via reverse DNS, (2) a long AUTH string, and (3) certain data in the xtell request, across xtell versions 1.91.1 and earlier ...