8515 matches found
sudo -- format string vulnerability
Todd Miller reports: Sudo 1.8.0 introduced simple debugging support that was primarily intended for use when developing policy or I/O logging plugins. The sudodebug function contains a flaw where the program name is used as part of the format string passed to the fprintf function. The program nam...
Format string
The logcookie function in modlogconfig.c in the modlogconfig module in the Apache HTTP Server 2.2.17 through 2.2.21, when a threaded MPM is used, does not properly handle a %C format string, which allows remote attackers to cause a denial of service daemon crash via a cookie that lacks both a nam...
GLSA-201201-06 : iSCSI Enterprise Target: Arbitrary code execution
The remote host is affected by the vulnerability described in GLSA-201201-06 iSCSI Enterprise Target: Arbitrary code execution Multiple functions in usr/iscsi/isns.c of iSCSI Enterprise Target contain format string errors. Impact : A remote attacker could send a specially crafted Internet Storage...
iSCSI Enterprise Target: Arbitrary code execution
Background iSCSI Enterprise Target is an open source iSCSI target with professional features. Description Multiple functions in usr/iscsi/isns.c of iSCSI Enterprise Target contain format string errors. Impact A remote attacker could send a specially-crafted Internet Storage Name Service iSNS...
OpenSSH < 2.1.1p3 Format String Privilege Escalation
According to the banner, a version of OpenSSH earlier than 2.1.1p3 is running on the remote host. As such, it is reportedly affected by a format string vulnerability. C Tenable, Inc. include"compat.inc"; if description scriptid17839; scriptversion"1.4";...
MySQL < 4.1.21 / 5.0 Denial of Service
The version of MySQL installed on the remote host is earlier than 4.1.21 / 5.0 and reportedly allows a remote, authenticated user to crash the server via a format string attack. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid17800; scriptversion"1.4";...
HP OpenView NNM ov.dll _OVBuildPath Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within ov.dll. When processing a user supplied file name for the textFile optio...
Corona iOS Jailbreak Tool Released
A security researcher has released a tool that will untether iPhones and other devices running iOS 5.01, allowing them to run unsigned code. The tool relies on a pair of exploits, one in an iOS binary and another in the kernel, and the jailbreak will survive after a reboot. The tool, called Coron...
Fedora 15 : clearsilver-0.10.5-15.fc15 (2011-17040)
This update fixes : - Bug 757543 - clearsilver neocgi: Format string flaw by processing CGI error messages in Python module fedora-all Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automaticall...
Fedora 16 : clearsilver-0.10.5-15.fc16 (2011-17042)
This update fixes : - Bug 757543 - clearsilver neocgi: Format string flaw by processing CGI error messages in Python module fedora-all Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automaticall...
BroadWin WebAccess SCADA Client ActiveX Format String
Added: 12/12/2011 OSVDB: 74897 Background BroadWin WebAccess is a web-based SCADA reporting and control solution. Problem BroadWin WebAccess installs an ActiveX Control in the user's browser. The OcxSpool function of this control accepts a parameter that is evaluated using a format string. A form...
BroadWin WebAccess SCADA Client ActiveX Format String
Added: 12/12/2011 OSVDB: 74897 Background BroadWin WebAccess is a web-based SCADA reporting and control solution. Problem BroadWin WebAccess installs an ActiveX Control in the user's browser. The OcxSpool function of this control accepts a parameter that is evaluated using a format string. A form...
BroadWin WebAccess SCADA Client ActiveX Format String
Added: 12/12/2011 OSVDB: 74897 Background BroadWin WebAccess is a web-based SCADA reporting and control solution. Problem BroadWin WebAccess installs an ActiveX Control in the user's browser. The OcxSpool function of this control accepts a parameter that is evaluated using a format string. A form...
BroadWin WebAccess SCADA Client ActiveX Format String
Added: 12/12/2011 OSVDB: 74897 Background BroadWin WebAccess is a web-based SCADA reporting and control solution. Problem BroadWin WebAccess installs an ActiveX Control in the user's browser. The OcxSpool function of this control accepts a parameter that is evaluated using a format string. A form...
CVE-2011-4357
Format string vulnerability in the pcgierror function in python/neocgi.c in the Python CGI Kit neocgi module for Clearsilver 0.10.5 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers that are not properly handled...
CVE-2011-4357
Format string vulnerability in the pcgierror function in python/neocgi.c in the Python CGI Kit neocgi module for Clearsilver 0.10.5 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers that are not properly handled...
DEBIAN-CVE-2011-4357
Format string vulnerability in the pcgierror function in python/neocgi.c in the Python CGI Kit neocgi module for Clearsilver 0.10.5 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers that are not properly handled...
CVE-2011-4357
Format string vulnerability in the pcgierror function in python/neocgi.c in the Python CGI Kit neocgi module for Clearsilver 0.10.5 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers that are not properly handled...
Format string
Format string vulnerability in the pcgierror function in python/neocgi.c in the Python CGI Kit neocgi module for Clearsilver 0.10.5 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers that are not properly handled...
CVE-2011-4357
CVE-2011-4357 describes a format string vulnerability in the p_cgi_error function of the Clearsilver neo_cgi module (Python CGI Kit) affecting Clearsilver 0.10.5 and earlier. This allows remote attackers to crash the process and potentially execute arbitrary code via unhandled CGI error message f...