CVE-2012-1151

CVE-2012-1151 affects the perl-DBD-Pg/DBD-Pg module (DBI for PostgreSQL). Root cause: format string vulnerabilities in dbdimp.c that could crash a remote PostgreSQL client/application, causing a denial of service. Affected products include various Linux distributions (e.g., MiracleLinux, openSUSE...

CVE-2012-1152

Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML aka YAML-LibYAML and perl-YAML-LibYAML module 0.38 for Perl allow remote attackers to cause a denial of service process crash via format string specifiers in a 1 YAML stream to the Load function, 2 YA...

CVE-2012-1151

Multiple format string vulnerabilities in dbdimp.c in DBD::Pg aka DBD-Pg or libdbd-pg-perl module before 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service process crash via format string specifiers in 1 a crafted database warning to the pgwarn function or 2 a...

CVE-2012-1151

Multiple format string vulnerabilities in dbdimp.c in DBD::Pg aka DBD-Pg or libdbd-pg-perl module before 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service process crash via format string specifiers in 1 a crafted database warning to the pgwarn function or 2 a...

Mandrake Linux Security Advisory : mutt (MDKSA-2001:031)

A format string vulnerability was present in the IMAP code in versions of the mutt email client previous to 1.2.5. This had the effect that a compromised or malicious IMAP server could possibly execute code on the local machine. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...

Mandrake Linux Security Advisory : mod_php3 (MDKSA-2000:062)

PHP version 3 which ships with Linux-Mandrake are vulnerable to format string attacks due to logging functions that make improper use of the syslog and vsnprintf functions. This renders PHP3-enabled servers vulnerable to compromise by remote attackers. This attack is only effective on PHP...

Mandrake Linux Security Advisory : ypserv (MDKSA-2000:064)

A format string parsing bug exists in ypbind 3.3 if it is run in debug mode which leaks file descriptors under certain circumstances which can lead to a DoS. In addition, ypbind may suffer from buffer overflows. In the ypserv program, a buffer overflow and format bug exist if the build system doe...

Mandrake Linux Security Advisory : proftpd (MDKSA-2001:021)

The ProFTPD FTP server has problems with memory leaking that could be used in a DoS attack, as reported by Wojciech Purczynski. A memory leak will happen every time a SIZE command was given provided that the scoreboard file is not writable, which is not the case in a default Linux-Mandrake...

Mandrake Linux Security Advisory : lpr (MDKSA-2000:054)

There is a format string bug in lpr with its calls to the syslog facility. There are no known exploits at ths time, but it may be possible for a user to gain local root access. This new lpr fixes this problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

Mandriva Linux Security Advisory : perl-DBD-Pg (MDVSA-2012:112)

A vulnerability has been discovered and corrected in perl-DBD-Pg : Two format string flaws were found in the way perl-DBD-Pg. A rogue server could provide a specially crafted database warning or specially crafted DBD statement, which once processed by the perl-DBD-Pg interface would lead to...

CVE-2012-2288

Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4.1, and 8.0 before 8.0.0.1, allows remote attackers to execute arbitrary code via format string specifiers in a message...

Immunity Canvas: EMC_NETWORKERFS

Name| emcnetworkerFS ---|--- CVE| CVE-2012-2288 Exploit Pack| CANVAS Description| EMC Networker format string exploitation Notes| CVE Name: CVE-2012-2288 VENDOR: Notes: http://blog.exodusintel.com/2012/08/29/when-wrapping-it-up-goes-wrong/ Tested on Windows Server 2003 Standard Edition...

Format string

Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4.1, and 8.0 before 8.0.0.1, allows remote attackers to execute arbitrary code via format string specifiers in a message...

CVE-2012-2288

Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4.1, and 8.0 before 8.0.0.1, allows remote attackers to execute arbitrary code via format string specifiers in a message...

CVE-2012-2288

EMC NetWorker nsrd RPC service is affected by a remote format-string vulnerability (CVE-2012-2288) in NetWorker 7.6.3–8.0, allowing arbitrary code execution via crafted messages. Public sources indicate the issue stems from the nsrd format string handling (format string vulnerability in the lg_sp...

War FTP Daemon 'USER' and 'PASS' Remote Format String Vulnerability

War FTP is prone to format string vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WarFTP Daemon 1.82 RC 11 - Remote Format String

WarFTP Daemon 1.82 RC 11 - Remote Format String Exploit Title: War FTP Daemon Remote Format String Vulnerability crash: http://img826.imageshack.us/img826/6222/69004160.png Date: 2012-08-30 Author: coolkaveh [email protected] https://twitter.com/coolkaveh Vendor Homepage:...

War FTP Daemon Format String

Exploit Title: War FTP Daemon Remote Format String Vulnerability crash: http://img826.imageshack.us/img826/6222/69004160.png Date: 2012-08-30 Author: coolkaveh [email protected] https://twitter.com/coolkaveh Vendor Homepage: http://www.warftp.org Version: War FTP Daemon 1.82 RC 11 Tested o...

War FTP Daemon 1.82 RC 11 Daemon Remote Format String Vulnerability

Exploit for windows platform in category remote exploits Exploit Title: War FTP Daemon Remote Format String Vulnerability crash: http://img826.imageshack.us/img826/6222/69004160.png Date: 2012-08-30 Author: coolkaveh email protected https://twitter.com/coolkaveh Vendor Homepage:...

WarFTP Daemon 1.82 RC 11 - Remote Format String

Exploit Title: War FTP Daemon Remote Format String Vulnerability crash: http://img826.imageshack.us/img826/6222/69004160.png Date: 2012-08-30 Author: coolkaveh [email protected] https://twitter.com/coolkaveh Vendor Homepage: http://www.warftp.org Version: War FTP Daemon 1.82 RC 11 Tested o...