8 matches found
FreeBSD : sharutils -- buffer overflows (26c9e8c6-1c99-11d9-814e-0001020eed82)
From Gentoo advisory GLSA 200410-01 : sharutils contains two buffer overflows. Ulf Harnhammar discovered a buffer overflow in shar.c, where the length of data returned by the wc command is not checked. Florian Schilhabel discovered another buffer overflow in unshar.c. An attacker could exploit...
Gentoo Security Advisory GLSA 200410-01 (sharutils)
The remote host is missing updates announced in advisory GLSA 200410-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200410-01 (sharutils)
The remote host is missing updates announced in advisory GLSA 200410-01. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD Ports: sharutils
The remote host is missing an update to the system as announced in the referenced advisory. VID 26c9e8c6-1c99-11d9-814e-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
CentOS 3 / 4 : sharutils (CESA-2005:377)
An updated sharutils package is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The sharutils package contains a set of tools for encoding and decoding packages of files in binary or text format. A stack based overflow bug was found i...
RHEL 4 : sharutils (RHSA-2005:377)
The remote Redhat Enterprise Linux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2005:377 advisory. The sharutils package contains a set of tools for encoding and decoding packages of files in binary or text format. A stack based overflow bu...
CVE-2004-1773
CVE-2004-1773 affects sharutils up to version 4.2.1 and earlier. The issue comprises two buffer overflows: (1) in shar.c related to the length of data returned by the wc command, and (2) in unshar.c. An attacker could exploit these to execute arbitrary code with the privileges of the user running...
CVE-2004-1773
Multiple buffer overflows in sharutils 4.2.1 and earlier may allow attackers to execute arbitrary code via 1 long output from wc to shar, or 2 unknown vectors in unshar...