Important: Red Hat Security Advisory: java-1.7.0-openjdk security update

Updated java-1.7.0-openjdk packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

S.u.S.E 6.4/7.0/7.1/7.2 Berkeley Parallel Make Shell Definition Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3572/info Parallel Make pmake is a freely available version of the make program, originally distributed with Berkeley Unix. It is designed to execute Makefiles and build programs. pmake is not typically setuid root,...

BolinTech Dream FTP Server 1.0 User Name Format String Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/9600/info It has been reported that Dream FTP Server may be prone to a remote format string vulnerability when processing a malicious request from a client for a username during FTP authentication. The issue could crash t...

id Software Doom 3 Engine Console String Visualization Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25893/info id Software Doom 3 engine is prone to a format-string vulnerability. Exploiting this issue will allow attackers to execute arbitrary code with the permissions of a user running the application. Failed attacks...

Apple Mac OS X 10.4.x Help Viewer .help Filename Format String

No description provided by source. source: http://www.securityfocus.com/bid/22326/info Multiple products for Mac OS X are prone to multiple remote format-string vulnerabilities. The affected applications include Help Viewer, Safari, iPhoto, and iMovie. Exploiting these issues can allow...

Skype Technologies Skype 1.5 NSRunAlertPanel Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20218/info Skype is prone to a remote format-string vulnerability because the application fails to properly sanitize user-supplied input before using it in the format-specification argument of a formatted-printing functio...

LPRng use_syslog Remote Format String Vulnerability

No description provided by source. $Id: lprngformatstring.rb 9666 2010-07-03 01:09:32Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms o...

gpsdrive <= 2.09 (friendsd2) Remote Format String Exploit (x86)

No description provided by source. !/usr/bin/perl -w Code by KF, although it is most likely ripped from John H. kflistsatdigitalmunitiondotcom http://www.digitalmunition.com FrSIRT 24/24 & 7/7 - Centre de Recherche on Donkey Testicles. Free 14 day Testicle licking trial available! friendsd.c:367:...

Sun Java System Web Server 6.1/7.0 WebDAV Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37910/info Sun Java System Web Server is prone to a format-string vulnerability because it fails to properly sanitize user-supplied input. The issue affects the WebDAV functionality. Currently very few technical details a...

Half-Life 1.1 Invalid Command Error Response Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8730/info It has been reported that Half-Life clients may be prone to a format string vulnerability. The problem occurs when an invalid command is issued to the server, and an error response is returned and displayed by t...

McAfee Framework ePolicy 3.x - Orchestrator '_naimcomn_Log' Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28228/info McAfee Framework is prone to a remote format-string vulnerability. Exploiting this issue will allow attackers to execute arbitrary code with the permissions of the framework or of an application that uses the...

Rlpr 2.0 msg() Function Multiple Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/10578/info It is reported that rlpr is prone to multiple vulnerabilities. These vulnerabilities can allow a remote attacker to execute arbitrary code in order to gain unauthorized access. The application is affected by a...

Xine 0.9/1.0 Playlist Handling Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17579/info The xine package is reported prone to a remote format-string vulnerability. This issue arises when the application handles specially crafted playlist files. An attacker can exploit this vulnerability by craftin...

WarFTP Daemon 1.82 RC 11 Remote Format String Vulnerability

No description provided by source. Exploit Title: War FTP Daemon Remote Format String Vulnerability crash: http://img826.imageshack.us/img826/6222/69004160.png Date: 2012-08-30 Author: coolkaveh [email protected] https://twitter.com/coolkaveh Vendor Homepage: http://www.warftp.org Version:...

SX Design sipd 0.1.2/0.1.4 - Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9236/info sipd has been reported prone to a format string vulnerability that may be triggered remotely. It has been reported that sip URI arguments passed to the affected server are not sufficiently handled. An attacker m...

Ipswitch Instant Messaging 2.0.8.1 Multiple Security Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/27677/info Ipswitch Instant Messaging is prone to multiple security vulnerabilities, including a denial-of-service vulnerability, a format-string vulnerability, and a vulnerability that allows attackers to overwrite...

YepYep MTFTPD 0.2/0.3 - Remote CWD Argument Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12947/info mtftpd is reported prone to a remote format string vulnerability. Reports indicate that this issue may be exploited by a remote authenticated attacker to execute arbitrary code in the context of the vulnerable...

Crysis <= 1.1.1.5879 Remote Format String Denial of Service PoC

No description provided by source. The Crysis engine passes along internal debug strings through the game. One of them is passed to vsprintf in the crt lib: 30503263 8D8C24 10100000 LEA ECX,DWORD PTR SS:ESP+1010 3050326A 51 PUSH ECX 3050326B 50 PUSH EAX 3050326C 8D5424 08 LEA EDX,DWORD PTR SS:ESP...

Mbedthis AppWeb 2.2.2 URL Protocol Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24454/info Mbedthis AppWeb is prone to a format-string vulnerability because the application fails to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing function. This...

Crob FTP Server 2.50.4 - Remote Username Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7776/info A vulnerability has been reported for Crob FTP Server. The problem occurs due to invalid format specifiers used when displaying a user-supplied username. As a result, it may be possible for an attacker to embed...