IBM solidDB Logging Function Format String (CVE-2008-1705)

IBM solidDB is a relational database management system offered by Solid, an IBM Company. solidDB includes an in-memory database as well as a traditional database, which employ both the same SQL interface, and a high availability option. There exists a Format String vulnerability in the IBM solidD...

OpenBSD 4.6 NetBSD 5.0.1 - printf(1) Format String Parsing Denial of Service

OpenBSD 4.6 NetBSD 5.0.1 - printf1 Format String Parsing Denial of Service source: https://www.securityfocus.com/bid/36884/info OpenBSD and NetBSD are prone to a denial-of-service vulnerability because they fail to properly parse format strings to the 'printf1' function. An attacker can exploit...

Berlios GPSD Format String Vulnerability

require 'msf/core' class Metasploit3 'Berlios GPSD Format String Vulnerability', 'Description' = %q This module exploits a format string vulnerability in the Berlios GPSD server. This vulnerability was discovered by Kevin Finisterre. , 'Author' = 'Yann Senotier ' , 'License' = MSFLICENSE, 'Versio...

GNU Radius SQL Accounting Format String (CVE-2006-4181)

GNU Radius is a suite of applications which perform user authentication and accounting using the Remote Authentication Dial In User Service RADIUS protocol. The RADIUS protocol is specifically designed for authentication, authorization and accounting of various network services. RADIUS is most...

httpdx 'h_readrequest()' Host Header Format String Vulnerability

The host is running httpdx Web Server and is prone to Format String vulnerability. OpenVAS Vulnerability Test $Id: gbhttpdxwebserverformatstringvuln.nasl 5838 2017-04-03 10:26:36Z cfi $ httpdx 'hreadrequest' Host Header Format String Vulnerability Authors: Nikita MR Copyright: Copyright c 2009...

httpdx 'h_readrequest()' Host Header Format String Vulnerability

httpdx Web Server is prone to Format String vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ipswitch Collaboration Suite SMTP Format String (CVE-2005-2931)

Ipswitch Collaboration Suite bundles the Ipswitch IMail Server. The IMail Server contains implementations of POP3, IMAP4, and SMTP servers. The SMTP server is installed and started in a default installation. There exists a format String vulnerability in the SMTP module of Ipswitch Collaboration...

CVE-2009-3617

Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...

CVE-2009-3617

Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...

DEBIAN-CVE-2009-3617

Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...

CVE-2009-3617

Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...

Format string

Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...

CVE-2009-3617

Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...

CVE-2009-3617

Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...

CVE-2009-3617

CVE-2009-3617 is a format-string vulnerability in aria2’s AbstractCommand::onAbort (src/AbstractCommand.cc) present in aria2 before 1.6.2. When logging is enabled, an attacker could supply a download URI containing printf-style format specifiers to cause arbitrary code execution or a denial of se...

GNU Mailutils imap4d SEARCH Format String (CVE-2005-2878)

The Internet Message Access Protocol IMAP specifies a protocol for the access and manipulation of electronic mail. The protocol permits the manipulation of mailboxes on a remote server and allows a remote client, among other operations, to create, delete, or rename mailboxes on the server side. T...

SHOUTcast Filename Format String (CVE-2004-1373)

SHOUTcast is a free distributed streaming audio system developed by Nullsoft. It is widely used by Internet-based radio stations. The SHOUTcast server implements a subset of the HTTP protocol to communicate with clients. A client-server session starts with the client requesting an audio stream fr...

Trend Micro OfficeScan Atxconsole ActiveX Control Format String (CVE-2006-5157)

The Trend Micro OfficeScan product is a centralized virus and security scan management system. It is meant to consolidate the coordination of security scan actions and the management of Trend Micro virus scanner products installed on the nodes of an enterprise network. The product is a central...

SHOUTcast Filename Format String - ver 2 (CVE-2004-1373)

SHOUTcast is a free distributed streaming audio system developed by Nullsoft. It is widely used by Internet-based radio stations. The SHOUTcast server implements a subset of the HTTP protocol to communicate with clients. A client-server session starts with the client requesting an audio stream fr...

Format string

VMware Authentication Daemon 1.0 in vmware-authd.exe in the VMware Authorization Service in VMware Workstation 7.0 before 7.0.1 build 227600 and 6.5.x before 6.5.4 build 246459, VMware Player 3.0 before 3.0.1 build 227600 and 2.5.x before 2.5.4 build 246459, VMware ACE 2.6 before 2.6.1 build 2276...