6323 matches found
CVE-2002-1424
CVE-2002-1424 describes a buffer overflow in the munpack component of the mpack package (version 1.5 and earlier). The underlying issue allows remote attackers to cause a denial of service and potentially execute arbitrary code. Public advisories indicate fixes have been released in subsequent De...
CVE-2002-1244
Pablo FTP Server (versions 1.3 and 1.5, and possibly others) is affected by a format string vulnerability in the USER command due to incorrect handling of format string markers in user input. This can allow a remote attacker to cause a denial of service and, potentially, execute arbitrary code. T...
CVE-2002-1158
Buffer overflow in the irwthrough function for Canna 3.5b2 and earlier allows local users to execute arbitrary code as the bin user...
DSA-543-1 krb5 -- several vulnerabilities
Bulletin has no description...
GLSA-200407-06 : libpng: Buffer overflow on row buffers
The remote host is affected by the vulnerability described in GLSA-200407-06 libpng: Buffer overflow on row buffers Due to a wrong calculation of loop offset values, libpng contains a buffer overflow vulnerability on the row buffers. This vulnerability was initially patched in January 2003 but...
GLSA-200404-14 : Multiple format string vulnerabilities in cadaver
The remote host is affected by the vulnerability described in GLSA-200404-14 Multiple format string vulnerabilities in cadaver Cadaver code includes the neon library, which in versions 0.24.4 and previous is vulnerable to multiple format string attacks. The latest version of cadaver uses version...
CVE-2004-0798
Buffer overflow in the maincfgret.cgi script for Ipswitch WhatsUp Gold before 8.03 Hotfix 1 allows remote attackers to execute arbitrary code via a long instancename parameter...
Sun Solaris dtmail contains a format string vulnerability
Overview A vulnerability in the way dtmail handles command-line arguments could allow an attacker to execute arbitrary code. Description The dtmail program is a mail user agent MUA for the Common Desktop Environment CDE. It provides a graphical user interface for reading, sending, and managing...
gv: Exploitable Buffer Overflow
Background gv is a PostScript and PDF viewer for X which provides a user interface for the ghostscript interpreter. Description gv contains a buffer overflow vulnerability where an unsafe sscanf call is used to interpret PDF and PostScript files. Impact By enticing a user to view a malformed PDF ...
GNU Mailutils 0.6 - Mail Email Header Buffer Overflow
source: https://www.securityfocus.com/bid/13766/info GNU Mailutils mail is affected by an email header buffer overflow vulnerability. The problem exists in the 'headergetfieldname' function of the 'mailbox/header.c' source file and manifests while the software is processing superfluous email head...
CVE-2004-0649
Buffer overflow in writepacket in control.c for l2tpd may allow remote attackers to execute arbitrary code...
CVE-2004-0579
Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root...
CVE-2004-0579
Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root...
CVE-2004-0707
SQL injection vulnerability in editusers.cgi in Bugzilla 2.16.x before 2.16.6, and 2.18 before 2.18rc1, allows remote attackers with privileges to grant membership to any group to execute arbitrary SQL...
CVE-2004-0733
The CVE-2004-0733 issue affects OllyDbg 1.10, with a format string vulnerability in calls to OutputDebugString. The underlying flaw allows remote attackers to trigger a crash (DoS) and potentially execute arbitrary code via untrusted format specifiers. Documentation notes the impact as Denial of ...
Fedora Core 1 : rsync-2.5.7-2 (2003-030)
A heap overflow bug exists in rsync versions prior to 2.5.7. On machines where the rsync server has been enabled, a remote attacker could use this flaw to execute arbitrary code as an unprivileged user. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the name...
Fedora Core 2 : libpng10-1.0.15-5 (2004-176)
During an audit of Red Hat Linux updates, the Fedora Legacy team found a security issue in libpng that had not been fixed in Fedora Core. An attacker could carefully craft a PNG file in such a way that it would cause an application linked to libpng to crash or potentially execute arbitrary code...
SCO Multi-channel Memorandum Distribution Facility - Multiple Vulnerabilities
/ source: https://www.securityfocus.com/bid/10758/info It has been reported that the SCO Multi-channel Memorandum Distribution Facility MMDF is affected by multiple vulnerabilities. These issues are due to a failure of the utility to properly validate buffer boundaries when copying user-supplied...
CVE-2004-0402
Buffer overflow in xpcd-svga in xpcd before 2.08, and possibly other versions, may allow local users to execute arbitrary code...
CVE-2004-0398
Heap-based buffer overflow in the nerfc1036parse date parsing function for the neon library libneon 0.24.5 and earlier, as used by cadaver before 0.22, allows remote WebDAV servers to execute arbitrary code on the client...