EUVD-2006-6478

Malware in sbrugna...

Format string

Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...

Stack overflow

Stack-based buffer overflow in PccScan.dll before build 1451 in Trend Micro AntiVirus plus AntiSpyware 2008, Internet Security 2008, and Internet Security Pro 2008 allows user-assisted remote attackers to cause a denial of service SfCtlCom.exe crash, and allows local users to gain privileges, via...

CVE-2007-6109

Stack-based buffer overflow in emacs allows user-assisted attackers to cause a denial of service application crash and possibly have unspecified other impact via a large precision value in an integer format string specifier to the format function, as demonstrated via a certain "emacs -batch -eval...

CVE-2007-0338

Dream FTP Server is affected by a heap-based buffer overflow triggered by a USER command with a large number of format string specifiers, causing overflow during Server Log processing and allowing remote arbitrary code execution. The issue is documented across multiple sources in the Connected do...

Format string

Format string vulnerability in the raydiumlog function in console.c in Raydium before SVN revision 310 allows local users to execute arbitrary code via format string specifiers in the format parameter, which are not properly handled in a call to raydiumconsolelineadd...

MDaemon IMAP Server Mail Folder Name Format String

The remote host is running Alt-N MDaemon, an SMTP/IMAP server for the Windows operating system family. The IMAP server component of MDaemon is affected by a format string vulnerability involving folders with format string specifiers in their names . An authenticated attacker can leverage this iss...