155 matches found
[SECURITY] [DSA 930-2] New smstools packages fix format string vulnerability
-------------------------------------------------------------------------- Debian Security Advisory DSA 930-2 [email protected] http://www.debian.org/security/ Steve Kemp January 10, 2006 http://www.debian.org/security/faq -...
DSA-930-2 smstools - format string attack
Bulletin has no description...
[SECURITY] [DSA 930-1] New smstools packages fix format string vulnerability
-------------------------------------------------------------------------- Debian Security Advisory DSA 930-1 [email protected] http://www.debian.org/security/ Steve Kemp Jan 9, 2006 http://www.debian.org/security/faq - --------------------------------------------------------------------------...
[Full-disclosure] [SECURITY] [DSA 930-1] New smstools packages fix format string vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 930-1 [email protected] http://www.debian.org/security/ Steve Kemp Jan 9, 2006 http://www.debian.org/security/faq -...
DSA-930-1 smstools - format string error
Bulletin has no description...
Xine-Lib 1.1 - Media Player Library Remote Format String
Xine-Lib 1.1 - Media Player Library Remote Format String !/usr/bin/perl -- When playing an Audio CD, using xine-lib based media application, the library contacts a CDDB server to retrieve metadata like the title and artist's name. During processing of this data, a response from the server, which ...
GNU Mailutils imap4d 0.6 - Search Remote Format String
GNU Mailutils imap4d 0.6 - Search Remote Format String / GNU Mailutils 0.6 imap4d 'search' format string exploit. Ref: www.idefense.com/application/poi/display?id=303&type=vulnerabilities This silly exploit uses hardcoded values taken from GNU/Debian testing etch. $ ./imap4dsearchexpl -h 127.0.0....
GNU Mailutils imap4d <= 0.6 Remote Format String Exploit
Exploit for linux platform in category remote exploits ======================================================== GNU Mailutils imap4d Original Reference: http://www.idefense.com/application/poi/display?id=246&type=vulnerabilities email protected:/home/coki/audit$ ./mu-imap4dfsexp GNU Mailutils...
PlatinumFTPserver format string vulnerability ( IHSTeam )
advisory URL : http://www.ihsteam.com/advisory/PlatinumFTPserver.txt IHS Iran Hackers Sabotage Public advisory by : c0d3r "Kaveh Razavi" [email protected] well yesterday a guy found a simple user overflow in PlatinumFTPserver vr : 1.0.18 and prior. I downloaded the package at :...
Berlios gpsd gpsd_report() Function Format String
The remote host is running GPSD, a daemon which monitors a GPS device and publishes its data over the network. The remote version of this software is vulnerable to format string attack due to the way it uses the syslog call. An attacker may exploit this flaw to execute arbitrary code on the remot...
SHOUTcast Server Filename Handling Format String
According to its banner, the version of SHOUTcast Server installed on the remote host is earlier than 1.9.5. Such versions fail to validate requests containing format string specifiers before using them in a call to 'sprintf'. An unauthenticated, remote attacker may be able to exploit this issue ...
CVE-2004-1097
Format string vulnerability in the cherokeeloggerncsawritestring function in Cherokee 0.4.17 and earlier, when authenticating via authpam, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via format string specifiers in the URL...
HTTP URI Handling Format String
The remote web server seems to be vulnerable to a format string attack on the URI. An attacker might use this flaw to make it crash or even execute arbitrary code on this host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid15640; scriptversion"$Revision: 1.19 $";...
Debian DSA-014-2 : splitvt - buffer overflow and format string attack
It was reported recently that splitvt is vulnerable to numerous buffer overflow attack and a format string attack. An attacker was able to gain access to the root user id. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fr...
dwhttpd < 4.2 GET Request Remote Format String (deprecated)
Binary data 1506.prm...
OpenFTPD SITE MSG FTP Command Format String
The remote host is running OpenFTPD - an FTP server designed to help file sharing aka 'warez'. Some versions of this server are vulnerable to a remote format string attack that could allow an authenticated attacker to execute arbitrary code on the remote host. Note that Nessus did not actually...
Multiple format string vulnerabilities in cadaver
Background According to http://www.webdav.org/cadaver, cadaver is a command-line WebDAV client for Unix. It supports file upload, download, on-screen display, namespace operations move/copy, collection creation and deletion, and locking operations. Description Cadaver code includes the neon...
lcdproc lcdd 0.x/4.x - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/10085/info LCDproc Server LCDd has been reported to be prone to multiple remote vulnerabilities. The first issue is reported to exist in the parseallclientmessages function of parse.c, and is due to a lack of sufficient boundary checks performed on...
DreamFTP Server username Remote Format String
The remote DreamFTP server is vulnerable to a format string attack when processing the USER command. An attacker may exploit this flaw to gain a shell on this host. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid12086; scriptcveid"CVE-2004-2074"; scriptbugtraqid9800;...
BolinTech DreamFTP Server 1.2 (1.02/TryFTP 1.0.0.1) - Remote User Name Format String
include include include include // WIN NT/2K/XP cmd.exe shellcode // kernel32.dll baseaddress calculation: OS/SP-independent // string-save: 00, 0a and 0d free. // portbinding: port 28876 // looping: reconnect after disconnect char shellcode =...