7 matches found
FreeBSD Ports: ngircd
The remote host is missing an update to the system as announced in the referenced advisory. VID bc4a7efa-7d9a-11d9-a9e7-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: ngircd
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD : ngircd -- format string vulnerability (bc4a7efa-7d9a-11d9-a9e7-0001020eed82)
A No System Group security advisory reports that ngircd is vulnerable to a format string vulnerability in the LogResolver function of log.c, if IDENT support is enabled. This could allow a remote attacker to execute arbitrary code with the permissions of the ngircd daemon, which is root by defaul...
CVE-2005-0226
ngIRCd is affected by a format-string vulnerability in Log_Resolver() (log.c) for versions 0.8.2 and earlier when IDENT is enabled, SYSLOG logging is used, and DEBUG is on. This can allow a remote attacker to execute arbitrary code with ngIRCd’s privileges (typically root). Several advisories and...
CVE-2005-0226
Format string vulnerability in the LogResolver function in log.c for ngIRCd 0.8.2 and earlier, when compiled with IDENT, logging to SYSLOG, and with DEBUG enabled, allows remote attackers to execute arbitrary code...
CVE-2005-0226
Format string vulnerability in the LogResolver function in log.c for ngIRCd 0.8.2 and earlier, when compiled with IDENT, logging to SYSLOG, and with DEBUG enabled, allows remote attackers to execute arbitrary code...
ngIRCd < 0.8.3 Log_Resolver() Format String
According to its banner, the version of the ngIRCd chat service running on the remote host contains a format string vulnerability. If it was compiled with IDENT, DEBUG is enabled, and it's logging to SYSLOG, a remote attacker can leverage this issue to execute arbitrary code on the remote host...