CVE-2005-1246

Format string vulnerability in the snmppdlog function in snmppdutil.c for snmppd 0.4.5 and earlier may allow remote attackers to cause a denial of service or execute arbitrary code via format string specifiers that are not properly handled in a syslog call...

CVE-2001-1466

Buffer overflow in VanDyke SecureCRT before 3.4.2, when using the SSH-1 protocol, allows remote attackers to execute arbitrary code via a long 1 username or 2 password...

kdelibs -- kimgio input validation errors

A KDE Security Advisory reports: kimgio contains a PCX image file format reader that does not properly perform input validation. A source code audit performed by the KDE security team discovered several vulnerabilities in the PCX and other image file format readers, some of them exploitable to...

CVE-2005-1122

Format string vulnerability in cgi.c for Monkey daemon monkeyd before 0.9.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP GET request containing double-encoded format string specifiers aka "double expansion error"...

CVE-2005-0124

The codapioctl function in the coda functionality pioctl.c for Linux kernel 2.6.9 and 2.4.x before 2.4.29 may allow local users to cause a denial of service crash or execute arbitrary code via negative vi.insize or vi.outsize values, which may trigger a buffer overflow...

CVE-2005-1018

Buffer overflow in the UniversalAgent for Computer Associates CA BrightStor ARCserve Backup allows remote authenticated users to cause a denial of service or execute arbitrary code via an agent request to TCP port 6050 with a large argument before the option field...

CVE-2002-1652

Buffer overflow in cgicso.c for cgiemail 1.6 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long query parameter...

CVE-2002-1615

HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f contain multiple buffer overflows that allow local users to execute arbitrary code via two vectors: (1) msgchk and (2) .upd..loader. The CVE entry identifies the affected platforms and the nature of the flaw (buffer overflows) and states the impact is...

CVE-2005-0861

Multiple buffer overflows in DeleGate before 8.11.1 may allow attackers to cause a denial of service or execute arbitrary code, possibly due to "overflows on arrays."...

Mozilla Browser < 1.7.6 Multiple Vulnerabilities

The remote version of Mozilla contains multiple security issues that could allow an attacker to impersonate a website and to trick a user into accepting and executing arbitrary files or to cause a heap overflow in the FireFox process and execute arbitrary code on the remote host. C Tenable Networ...

HP-UX PHSS_31058 : s700_800 11.04 Virtualvault 4.7 OWS update

s700800 11.04 Virtualvault 4.7 OWS update : The remote HP-UX host is affected by multiple vulnerabilities : - A potential security vulnerability has been identified with HP-UX running Apache where the vulnerability could be exploited remotely to create a Denial of Service DoS or to execute...

CVE-2005-0729

Format string vulnerability in Xpand Rally 1.1.0.0 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a message...

CVE-2005-0737

CVE-2005-0737 describes a buffer overflow in Yahoo! Messenger that allows remote attackers to execute arbitrary code via the offline mode. The vulnerability is associated with Yahoo! Messenger; the underlying cause is a buffer overflow condition, enabling potential arbitrary code execution and im...

CVE-2005-0707

Buffer overflow in the IMAP daemon IMAP4d32.exe for Ipswitch Collaboration Suite ICS before 8.15 Hotfix 1 allows remote authenticated users to execute arbitrary code via a long EXAMINE command...

GLSA-200502-31 : uim: Privilege escalation vulnerability

The remote host is affected by the vulnerability described in GLSA-200502-31 uim: Privilege escalation vulnerability Takumi Asaki discovered that uim insufficiently checks environment variables. setuid/setgid applications linked against libuim could end up executing arbitrary code. This...

CVE-2005-0575

CVE-2005-0575 affects Stormy Studios Knet server (versions 1.04c and earlier). A buffer overflow allows remote attackers to cause a denial of service and potentially execute arbitrary code via a long HTTP GET request. Exploitation details are not provided in the included documents; no patch or re...

Working Resources BadBlue 2.55 - MFCISAPICommand Remote Buffer Overflow (2)

Working Resources BadBlue 2.55 - MFCISAPICommand Remote Buffer Overflow 2 // source: https://www.securityfocus.com/bid/12673/info A remote buffer overflow vulnerability affects Working Resources BadBlue. This issue is due to a failure of the application to securely copy GET request parameters int...

HP-UX FTP daemon is vulnerable to a buffer overflow

Overview The HP-UX FTP daemon ftpd contains a buffer overflow that may allow an unauthenticated, remote attacker to execute arbitrary code. Description The HP-UX FTP daemon ftpd is vulnerable to a buffer overflow when the FTP daemon is configured to log debugging information. Debug logging is...

CVE-2004-1430

SQL injection vulnerability in the showstats module in Arcade.php in IbProArcade allows remote attackers to execute arbitrary SQL code via the gameid parameter...

sympa -- buffer overflow in "queue"

Erik Sjölund discovered a vulnerability in Sympa. The queue application processes messages received via aliases. It contains a buffer overflow in the usage of sprintf. In some configurations, it may allow an attacker to execute arbitrary code as the sympa user...