8515 matches found
IBM solidDB 6.0.10 - Format String Denial of Service
IBM solidDB 6.0.10 - Format String Denial of Service source: https://www.securityfocus.com/bid/28468/info IBM solidDB is prone to a format-string vulnerability affecting the logging function and three denial-of-service vulnerabilities. Attackers can exploit these issues to execute arbitrary code ...
IBM solidDB 6.0.10 - Format String / Denial of Service
source: https://www.securityfocus.com/bid/28468/info IBM solidDB is prone to a format-string vulnerability affecting the logging function and three denial-of-service vulnerabilities. Attackers can exploit these issues to execute arbitrary code or to deny service to legitimate users. solidDB...
Asterisk multiple security vulnerabilities
Multiple format string vulnerabilities, buffer overflow on RTP handling, HTTP interface sessions spoofing, unauthorized SIP calls...
VLC Media Player network/httpd.c httpd_FileCallBack Function Connection Parameter Format String
The remote host is running VLC, a popular media player application which can have an embedded web server. The remote version of this software is vulnerable to a format string attack when processing a malformed 'Connection:' http header. An attacker can exploit this flaw to execute arbitrary...
Debian DSA-1525-1 : asterisk - several vulnerabilities
Several remote vulnerabilities have been discovered in Asterisk, a free software PBX and telephony toolkit. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-6430 Tilghman Lesher discovered that database-based registrations are insufficiently validate...
Format string
Format string vulnerability in the Net Inspector HTTP server mghttpd in MG-SOFT Net Inspector 6.5.0.828 and earlier for Windows allows remote attackers to execute arbitrary code via format string specifiers in the URI, which is recorded in a log file...
CVE-2008-1401
Format string vulnerability in the Net Inspector HTTP server mghttpd in MG-SOFT Net Inspector 6.5.0.828 and earlier for Windows allows remote attackers to execute arbitrary code via format string specifiers in the URI, which is recorded in a log file...
CVE-2008-1401
Format string vulnerability in the Net Inspector HTTP server mghttpd in MG-SOFT Net Inspector 6.5.0.828 and earlier for Windows allows remote attackers to execute arbitrary code via format string specifiers in the URI, which is recorded in a log file...
CVE-2008-1401
CVE-2008-1401 : The Net Inspector HTTP server (mghttpd) in MG-SOFT Net Inspector ≤ 6.5.0.828 for Windows is affected by a format-string vulnerability in the URI that is logged, allowing an attacker to trigger arbitrary code execution. Vulnerable component: mghttpd (Net Inspector 6.5.0.828 and ear...
CVE-2008-1333
Format string vulnerability in Asterisk Open Source 1.6.x before 1.6.0-beta6 might allow remote attackers to execute arbitrary code via logging messages that are not properly handled by 1 the astverbose logging API call, or 2 the astmanappend function...
Format string
Format string vulnerability in Asterisk Open Source 1.6.x before 1.6.0-beta6 might allow remote attackers to execute arbitrary code via logging messages that are not properly handled by 1 the astverbose logging API call, or 2 the astmanappend function...
CVE-2008-1333
Format string vulnerability in Asterisk Open Source 1.6.x before 1.6.0-beta6 might allow remote attackers to execute arbitrary code via logging messages that are not properly handled by 1 the astverbose logging API call, or 2 the astmanappend function...
CVE-2008-1333
Format string vulnerability in Asterisk Open Source 1.6.x before 1.6.0-beta6 might allow remote attackers to execute arbitrary code via logging messages that are not properly handled by 1 the astverbose logging API call, or 2 the astmanappend function...
DEBIAN-CVE-2008-1333
Format string vulnerability in Asterisk Open Source 1.6.x before 1.6.0-beta6 might allow remote attackers to execute arbitrary code via logging messages that are not properly handled by 1 the astverbose logging API call, or 2 the astmanappend function...
CVE-2008-1333
Format string vulnerability in Asterisk Open Source 1.6.x before 1.6.0-beta6 might allow remote attackers to execute arbitrary code via logging messages that are not properly handled by 1 the astverbose logging API call, or 2 the astmanappend function...
CVE-2008-1333
CVE-2008-1333 affects Asterisk Open Source 1.6.x prior to 1.6.0-beta6. The vulnerability is a format string issue in logging paths (ast_verbose and astman_append) that could allow remote attackers to execute arbitrary code by crafting logging messages. Affected product/version: Asterisk Open Sour...
CVE-2008-1333
Format string vulnerability in Asterisk Open Source 1.6.x before 1.6.0-beta6 might allow remote attackers to execute arbitrary code via logging messages that are not properly handled by 1 the astverbose logging API call, or 2 the astmanappend function...
AST-2008-004: Format String Vulnerability in Logger and Manager
Asterisk Project Security Advisory - AST-2008-004 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | Format String Vulnerability in Logger and Manager |...
CVE-2008-0989
Format string vulnerability in mDNSResponderHelper in Apple Mac OS X 10.5.2 allows local users to execute arbitrary code via format string specifiers in the local hostname...
CVE-2008-0989
CVE-2008-0989 describes a format-string vulnerability in Apple’s mDNSResponderHelper on Mac OS X 10.5.2. Local attackers can trigger arbitrary code execution or a denial of service by providing a specially crafted local hostname. The vulnerability is confirmed in multiple feeds (NVD entry lists a...