CVE-2006-1615

Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...

CVE-2006-1614

ClamAV is affected by CVE-2006-1614 (integer overflow in the PE header parser libclamav/pe.c when ArchiveMaxFileSize is disabled), potentially enabling DoS or arbitrary code execution. Related issues CVE-2006-1615 (format string vulnerabilities in logging) and CVE-2006-1630 (invalid memory access...

CVE-2006-1615

Multiple format string vulnerabilities in the logging code in Clam AntiVirus ClamAV before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized...

CVE-2006-0559

Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitrary code via format strings in the domain name portion of a destination address, which are not properly handled when a bounce message is constructed...

Directory traversal

Multiple directory traversal vulnerabilities in document/rqmkhtml.php in Claroline 1.7.4 and earlier allow remote attackers to use ".." dot dot sequences to 1 read arbitrary files via the file parameter in a rqEditHtml command to document/rqmkhtml.php or 2 execute arbitrary code via the includePa...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools PHP Live Helper 1.8 allow remote attackers to include and execute arbitrary PHP code via the abspath parameter in 1 initiate.php, 2 waiting.php, 3 welcome.php, 4 admin/index.php, 5 javascript.php, 6 checkchat.php, and 7...

CVE-2006-1402

Buffer overflow in client/server Doom csDoom 0.7 and earlier allows remote attackers to 1 cause a denial of service via a long nickname or teamname to the SVSetupUserInfo function or 2 execute arbitrary code via a long string sent when joining a match or a long chat message to the SVBroadcastPrin...

CVE-2006-1359

Microsoft Internet Explorer 6 and 7 Beta 2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a certain createTextRange call on a checkbox object, which results in a dereference of an invalid table pointer...

Null pointer dereference

Microsoft Internet Explorer 6 and 7 Beta 2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a certain createTextRange call on a checkbox object, which results in a dereference of an invalid table pointer...

Buffer overflow

Buffer overflow in the POP 3 POP3 service in MailEnable Standard Edition before 1.93, Professional Edition before 1.73, and Enterprise Edition before 1.21 allows remote attackers to execute arbitrary code via unknown vectors before authentication...

CVE-2006-0745

X.Org server xorg-server 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and 1 execute arbitrary code via the -modulepath command line optio...

CVE-2006-1298

Format string vulnerability in the Job Engine service bengine.exe in the Media Server in Veritas Backup Exec 10d 10.1 for Windows Servers rev. 5629, Backup Exec 10.0 for Windows Servers rev. 5520, Backup Exec 10.0 for Windows Servers rev. 5484, and Backup Exec 9.1 for Windows Servers rev. 4691,...

CVE-2006-1255

Stack-based buffer overflow in the IMAP service in Mercur Messaging 5.0 SP3 and earlier allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long string to the 1 LOGIN or 2 SELECT command, a different set of attack vectors and possibly a...

Buffer overflow

Buffer overflow in Mail in Apple Mac OS X 10.4 up to 10.4.5, when patched with Security Update 2006-001, allows remote attackers to execute arbitrary code via a long Real Name value in an e-mail attachment sent in AppleDouble format, which triggers the overflow when the user double-clicks on an...

CVE-2006-0396

Buffer overflow in Mail in Apple Mac OS X 10.4 up to 10.4.5, when patched with Security Update 2006-001, allows remote attackers to execute arbitrary code via a long Real Name value in an e-mail attachment sent in AppleDouble format, which triggers the overflow when the user double-clicks on an...

Ubuntu 4.10 / 5.04 / 5.10 : libtasn1-2 vulnerability (USN-251-1)

Evgeny Legerov discovered a buffer overflow in the DER format decoding function of the libtasn library. This library is mainly used by the GNU TLS library; by sending a specially crafted X.509 certificate to a server which uses TLS encryption/authentication, a remote attacker could exploit this t...

Format string

Format string vulnerability in Easy File Sharing EFS Web Server 3.2 allows remote attackers to cause a denial of service server crash and possibly execute arbitrary code via format string specifiers in the query string argument in an HTTP GET request...

CVE-2006-1159

Format string vulnerability in Easy File Sharing EFS Web Server 3.2 allows remote attackers to cause a denial of service server crash and possibly execute arbitrary code via format string specifiers in the query string argument in an HTTP GET request...

Buffer overflow

Buffer overflow in RevilloC MailServer and Proxy 1.21 allows remote attackers to execute arbitrary code via a long USER command...

Buffer overflow

Multiple buffer overflows in LISTSERV 14.3 and 14.4, including LISTSERV Lite and HPO, with the web archive interface enabled, allow remote attackers to execute arbitrary code via unknown attack vectors related to the WA CGI. NOTE: technical details will be released after the grace period has ende...