format string in ssl dump

Sorry if this has already got posted. Seeweed found this in ssldump the other day. The follwoing text is from his website http://dropwire.dhs.org/seeweed/: SSLDUMP is a program witch is simallar to tcpdump, but also adds encryption to its network debugging procedures..It captures traffic then...

Локальная дырка в OpenBSD

Ошибка в ядре системы позволяет "уронить" систему в режим отладки ядра, в котором можно проделывать любые действия...

CVE-2000-0430

Cart32 allows remote attackers to access sensitive debugging information by appending /expdate to the URL request...

CVE-2000-0430

The provided documents identify CVE-2000-0430 as a flaw in Cart32 where remote attackers can access sensitive debugging information by appending /expdate to the URL. Affected component: Cart32 (web/URL handling). Root cause: improper handling of URL paths leading to exposure of debugging data; im...

format bug in agetty ??

util-linux-2.10h/login-utils agetty.c:244 ifdef DEBUGGING define debugs fprintfdbf,s; fflushdbf FILE dbf; else define debugs / nothing / endif agetty.c:281 ifdef DEBUGGING dbf = fopen"/dev/ttyp0", "w"; int i; fori = 1; i argc; i++ debugargvi; endif w/ -DDEBUGGING is bogus. -- Carlos E Gorges...

CVE-2000-0157

CVE-2000-0157 concerns NetBSD on VAX where a ptrace-based flaw lets local users gain privileges by modifying the PSL contents during debugging. The description identifies the affected vector as a local privilege escalation via the ptrace interface, but the provided documents do not specify a vend...

CVE-2000-0350

CVE-2000-0350 affects NetworkICE ICEcap up to version 2.0.23. The issue is a debugging feature that remains enabled, allowing a remote attacker to bypass weak authentication and post unencrypted events. Public sources in connected documents corroborate that ICEcap stores/receives alerts and can b...

CVE-2000-0350

A debugging feature in NetworkICE ICEcap 2.0.23 and earlier is enabled, which allows a remote attacker to bypass the weak authentication and post unencrypted events...

CVE-2000-0430

Cart32 allows remote attackers to access sensitive debugging information by appending /expdate to the URL request...

Cart32 3.0 - expdate Administrative Information Disclosure

Cart32 3.0 - expdate Administrative Information Disclosure source: https://www.securityfocus.com/bid/1358/info By appending the string "/expdate" to a request for the cart32.exe executable, http: //target/cgi-bin/cart32.exe/expdate an attacker can access an error message followed by a debugging...

Cart32 3.0 - 'expdate' Administrative Information Disclosure

source: https://www.securityfocus.com/bid/1358/info By appending the string "/expdate" to a request for the cart32.exe executable, http: //target/cgi-bin/cart32.exe/expdate an attacker can access an error message followed by a debugging page containing the server variables, the Cart32...

CVE-1999-0979

The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into init before the privileged process is executed...

SCO Unixware 7.0/7.0.1/7.1/7.1.1 - Privileged Program Debugging

// source: https://www.securityfocus.com/bid/869/info Unixware's security model includes the concept of privileges. These can be assigned to processes and allow them to perform tasks that otherwise could only be performed by the root user. They allow programs to run with the minimum required...

proftpd_exploiting_toolkit.txt

Subject: proftpd To: [email protected] -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 / babcia padlina ltd. poland, 17/08/99 your ultimate proftpd pre0-3 exploiting toolkit based on: - adm-wuftpd by duke - kombajn do czere¶ni by Lam3rZ thx for shellcode! thx and greetz. / include include...

milo-alpha-linux-DoS.txt

Date: Fri, 5 Feb 1999 17:39:53 -0500 From: Dave G. To: [email protected] Subject: KSRT 009: Non Privileged Halt KSRT Security Advisories http://www.ksrt.org [email protected] --- KSRT Advisory 009 Date: Feb. 5th 1999 ID : NonPrivdHALT Affected Program: MILO/Alpha Linux Operating Systems: Linux...

SGI IRIX 3456 OpenLinux 1.01.1 - routed traceon

SGI IRIX 3456 OpenLinux 1.01.1 - routed traceon // source: https://www.securityfocus.com/bid/2658/info routed is a daemon used to dynamically update network routing tables. Certain operating systems including IRIX 3.x up to 6.4 inclusive, Caldera OpenLinux 1.0 and 1.1 contain a routed version whi...

SGI IRIX 3/4/5/6 / OpenLinux 1.0/1.1 - routed traceon

// source: https://www.securityfocus.com/bid/2658/info routed is a daemon used to dynamically update network routing tables. Certain operating systems including IRIX 3.x up to 6.4 inclusive, Caldera OpenLinux 1.0 and 1.1 contain a routed version which allows attackers to write limited data to...

PT-2004-3705 · Debian +1 · Lesstif-Bin +6

Name of the Vulnerable Software and Affected Versions: lesstif-dev affected versions not specified lesstif-bin affected versions not specified lesstif1 affected versions not specified lesstif-dbg affected versions not specified lesstif-doc affected versions not specified libXpm versions prior to...

Q320206: Security Update

This update resolves the "Authentication Flaw in Windows Debugger can Lead to Elevated Privileges" security vulnerability in Windows 2000. This vulnerability is the result of a flaw in the authentication mechanism for the Windows debugging facility that can allow an unauthorized program to gain...

CVE-2026-46626: SymfonyRuntime CVE-2024-50340 Patch Bypass: Web Requests Can Still Set APP_ENV/APP_DEBUG via parse_str/SAPI Argv Mismatch

More info at https://symfony.com/cve-2026-46626...