bcksrvr format string in Sybase Adaptive Server 15.5

Luigi Auriemma Application: Sybase Adaptive Server http://www.sybase.com/products/databasemanagement/adaptiveserverenterprise Versions: = 15.5 Platforms: Solaris, Windows, Linux, AIX, HP Bug: format string in bcksrvr Exploitation: remote, versus server Date: 27 Jun 2011 found 28 Oct 2010 Author:...

CVE-2011-2475

Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail Gateway in OneBridge Server and DMZ Proxy in Sybase OneBridge Mobile Data Suite 5.5 and 5.6 allows remote attackers to execute arbitrary code via format string specifiers in unspecified string fields,...

Format string

Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail Gateway in OneBridge Server and DMZ Proxy in Sybase OneBridge Mobile Data Suite 5.5 and 5.6 allows remote attackers to execute arbitrary code via format string specifiers in unspecified string fields,...

CVE-2011-2475

Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail Gateway in OneBridge Server and DMZ Proxy in Sybase OneBridge Mobile Data Suite 5.5 and 5.6 allows remote attackers to execute arbitrary code via format string specifiers in unspecified string fields,...

CVE-2011-2475

CVE-2011-2475 involves a format string vulnerability in ECTrace.dll, used by the iMailGateway service of the Internet Mail Gateway in Sybase OneBridge Mobile Data Suite (versions 5.5 and 5.6). The flaw allows remote attackers to execute arbitrary code through improperly filtered input in authenti...

Sybase OneBridge Mobile Data Suite format string vulnerability

Format string vulnerability during IMAPs/SMTPs requests parsing...

ZDI-11-171: Sybase OneBridge Mobile Data Suite Format String Remore Code Execution Vulnerability

ZDI-11-171: Sybase OneBridge Mobile Data Suite Format String Remore Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-171 June 3, 2011 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Sybase -- Affected Products: Sybase OneBridge -- TippingPointTM IPS...

Sybase OneBridge Mobile Data Suite Format String Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sybase OneBridge Mobile Data Suite. Authentication is not required to exploit this vulnerability. The specific flaw exists within the iMailGatewayService server process ECTrace.dll which listens fo...

FreeBSD : Exim -- remote code execution and information disclosure (36594c54-7be7-11e0-9838-0022156e8794)

Release notes for Exim 4.76 says : Bugzilla 1106: CVE-2011-1764 - DKIM log line was subject to a format-string attack -- SECURITY: remote arbitrary code execution. DKIM signature header parsing was double-expanded, second time unintentionally subject to list matching rules, letting the header cau...

Exim -- remote code execution and information disclosure

Release notes for Exim 4.76 says: Bugzilla 1106: CVE-2011-1764 - DKIM log line was subject to a format-string attack -- SECURITY: remote arbitrary code execution. DKIM signature header parsing was double-expanded, second time unintentionally subject to list matching rules, letting the header caus...

Exim < 4.76 dkim_exim_verify_finish Remote Format String Vulnerability

Binary data 5911.prm...

Exim < 4.76 dkim_exim_verify_finish() DKIM-Signature Header Format String

Based on its response to a specially formatted mail message, the Exim mail server listening on this port appears to be affected by a format string vulnerability. The vulnerability is due to a failure in the dkimeximverifyfinish function to properly sanitize format string specifiers in the...

Debian DSA-2232-1 : exim4 - format string vulnerability

It was discovered that Exim, the default mail transport agent in Debian, uses DKIM data obtain from DNS directly in a format string, potentially allowing malicious mail senders to execute arbitrary code. CVE-2011-1764 The oldstable distribution lenny is not affected by this problem because it doe...

[SECURITY] [DSA 2232-1] exim4 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2232-1 [email protected] http://www.debian.org/security/ Florian Weimer May 06, 2011 http://www.debian.org/security/faq -...

exim format string vulnerability

Format string vulnerability on DKIM data obtained from DNS...

[SECURITY] [DSA 2232-1] exim4 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2232-1 [email protected] http://www.debian.org/security/ Florian Weimer May 06, 2011 http://www.debian.org/security/faq -...

DSA-2232-1 exim4 - format string vulnerability

Bulletin has no description...

Apache HTTP Server mod_tcl Module Format String (CVE-2006-4154)

Apache HTTP server is the most widely deployed web server product on the Internet. Apache HTTP server is capable of running on many platforms, including Microsoft Windows and a wide variety of Unix-like platforms. The Apache HTTP server is very flexible and customizable in many aspects of its...

PHP multiple security vulnerabilities

Privilege escalation, memory corruptions, buffer overflows, DoS conditions, integer overflows, format string vulnerabilities, information leaks...

PHP <5.3.2 phar扩展多个格式化字符串漏洞

No description provided by source...