DEBIAN-CVE-2004-1289

Multiple buffer overflows in 1 the getline function in pcalutil.c and 2 the getholiday function in readfile.c for pcal 4.7.1 allow remote attackers to execute arbitrary code via a crafted calendar file...

CVE-2004-0793

The calendar program in bsdmainutils 6.0 through 6.0.14 does not drop root privileges when executed with the -a flag, which allows attackers to execute arbitrary commands via a calendar event file...

DEBIAN-CVE-2004-0793

The calendar program in bsdmainutils 6.0 through 6.0.14 does not drop root privileges when executed with the -a flag, which allows attackers to execute arbitrary commands via a calendar event file...

CVE-2004-0793

The calendar program in bsdmainutils 6.0 through 6.0.14 does not drop root privileges when executed with the -a flag, which allows attackers to execute arbitrary commands via a calendar event file...

CVE-2004-0793

The calendar program in bsdmainutils 6.0 through 6.0.14 does not drop root privileges when executed with the -a flag, which allows attackers to execute arbitrary commands via a calendar event file...

CVE-2004-0793

The CVE-2004-0793 issue affects the calendar program in bsdmainutils 6.0–6.0.14, which does not drop root privileges when run with -a, allowing an attacker to execute arbitrary commands via a crafted calendar event file. The underlying cause is privilege retention when processing event files, ena...

webevent.txt

To whom it may concern, I found what seems to be a bug in a program called webevent www.webevent.com. Webevent is a calander program that allows multiple users to post to, and read the calander. The bug comes in from the fact that you still have access to the perl file that is run when the...