6323 matches found
Vim - mch_expand_wildcards() Heap Buffer Overflow
Vim - mchexpandwildcards Heap Buffer Overflow source: https://www.securityfocus.com/bid/30648/info Vim is prone to a heap-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. An attacker may exploit this issue to execute arbitrary code wi...
CVE-2004-0812
Unknown vulnerability in the Linux kernel before 2.4.23, on the AMD AMD64 and Intel EM64T architectures, associated with "setting up TSS limits," allows local users to cause a denial of service crash and possibly execute arbitrary code...
CVE-2004-1374
Multiple buffer overflows in NetBSD kernel may allow local users to execute arbitrary code and gain privileges...
CVE-2004-1373
CVE-2004-1373 describes a format-string vulnerability in SHOUTcast 1.9.4 where a specially crafted filename in a URL can cause a crash or remote code execution. Multiple public sources (Metasploit module, Exploit-DB, and vendor/OpenVAS advisories) corroborate remote code execution and denial of s...
CVE-2005-0012
Format string vulnerability in the aInterfacemsg function in Dillo before 0.8.3-r4 allows remote attackers to execute arbitrary code via format string specifiers in a web page...
Debian Linux Netkit telnetd-ssl contains a format string vulnerability
Overview Debian Linux Netkit telnetd-ssl contains a format string vulnerability that may allow a remote attacker to execute arbitrary code. Description An unspecified format string vulnerability in Debian Linux Netkit telnetd-ssl may allow a remote attacker to execute arbitrary code on a vulnerab...
pdftohtml: Vulnerabilities in included Xpdf
Background pdftohtml is a utility to convert PDF files to HTML or XML formats. It makes use of Xpdf code to decode PDF files. Description Xpdf is vulnerable to integer overflows, as described in GLSA 200412-24. Impact An attacker could entice a user to convert a specially-crafted PDF file,...
CVE-2004-1383
Multiple SQL injection vulnerabilities in phpGroupWare 0.9.16.003 and earlier allow remote attackers to execute arbitrary SQL statements via the 1 order, 2 projectid, 3 promain, or 4 hoursid parameters to index.php or 5 ticketid to viewticketdetails.php...
CVE-2004-2690
Unrestricted file upload vulnerability in the Administration Panel for NewsPHP allows remote authenticated administrators to upload and execute arbitrary code instead of video files...
CVE-2004-1494
Buffer overflow in the Screen Fetch option in XDICT 2002 through 2005 allows remote attackers to cause a denial of service CPU consumption or application exit and possibly execute arbitrary code via a long string...
CVE-2004-2350
SQL injection vulnerability in search.php for phpBB 1.0 through 2.0.6 allows remote attackers to execute arbitrary SQL and gain privileges via the searchresults parameter...
CVE-2004-1570
SQL injection vulnerability in bBlog 0.7.2 and 0.7.3 allows remote attackers to execute arbitrary SQL commands via the p parameter...
Fedora Core 2 : cups-1.1.20-11.8 (2004-574)
This package fixes a buffer overflow which may possibly allow attackers to execute arbitrary code as the 'lp' user. The Common Vulnerabilities and Exposures projects cve.mitre.org has assigned the name CVE-2004-1125 to this issue. Note that Tenable Network Security has extracted the preceding...
Solaris 7/8/9 CDE LibDTHelp Local Buffer Overflow Exploit (2)
Exploit for solaris platform in category local exploits ============================================================= Solaris 7/8/9 CDE LibDTHelp Local Buffer Overflow Exploit 2 ============================================================= / $Id: raptorlibdthelp2.c,v 1.1 2004/12/04 14:44:38 rapto...
Solaris 7/8/9 CDE LibDTHelp - Local Buffer Overflow (2)
/ $Id: raptorlibdthelp2.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorlibdthelp2.c - libDtHelp.so local, Solaris/SPARC 7/8/9 Copyright c 2003-2004 Marco Ivaldi Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via a modified DTHELPUSERSEARCHPATH environment...
CVE-2004-1262
Buffer overflow in the bsbopenheader function in libbsb for bsb2ppm 0.0.6 allows remote attackers to execute arbitrary code via crafted BSB pictures...
CVE-2004-1261
Multiple buffer overflows in the preparse function in asp2php 0.76.23 allow remote attackers to execute arbitrary code via crafted ASP scripts...
CVE-2004-1258
Buffer overflow in the putwords function in subs.c for abcm2ps 3.7.20 allows remote attackers to execute arbitrary code via crafted ABC files...
CVE-2004-1192
Format string vulnerability in the lprintf function in Citadel/UX 6.27 and earlier allows remote attackers to execute arbitrary code via format string specifiers sent to the server...
cups-base -- HPGL buffer overflow vulnerability
Ariel Berkman has discovered a buffer overflow vulnerability in CUPS's HPGL input driver. This vulnerability could be exploited to execute arbitrary code with the permission of the CUPS server by printing a specially crated HPGL file...