CVE-2007-6386

Stack-based buffer overflow in PccScan.dll before build 1451 in Trend Micro AntiVirus plus AntiSpyware 2008, Internet Security 2008, and Internet Security Pro 2008 allows user-assisted remote attackers to cause a denial of service SfCtlCom.exe crash, and allows local users to gain privileges, via...

Tftpd32 2.81 (GET Request) Format String Denial of Service PoC

No description provided by source. !/usr/bin/perl Tftpd32 Format String PoC DoS by Critical Security research http://www.critical.lt use IO::Socket; $port = "69"; $host = "127.0.0.1"; $tftpudp = IO::Socket::INET-newPeerPort = $port,PeerAddr = $host,Proto= 'udp'; $bzz = "\x00\x01" ; GET $bzz .=...

SuSE 10 Security Update : xine (ZYPP Patch Number 2505)

This update fixes several format string bugs that can be exploited remotely with user-assistance to execute arbitrary code. CVE-2007-0017 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc...

SuSE 10 Security Update : inkscape (ZYPP Patch Number 3061)

Several format string problems where fixed in inkscape. - A format string vulnerability in Inkscape allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a URI, which is not properly handled by certain dialogs. CVE-2007-1463 - Format string vulnerability ...

SuSE 10 Security Update : vim and gvim (ZYPP Patch Number 4095)

This update of Vim addresses a format-string bug in 'helptags'. This bug can be exploited to execute code with the privileges of the user running Vim. CVE-2007-2953 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

SuSE 10 Security Update : w3m (ZYPP Patch Number 2439)

A format string problem in w3m -dump / -backend mode could be used by a malicious server to crash w3m or execute code. CVE-2006-6772 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

SuSE 10 Security Update : gnomemeeting (ZYPP Patch Number 3163)

This update fixes format string problems in gnomemeeting which might be used by remote attackers to crash gnomemeeting and on older distributions potentially execute code. CVE-2007-1007 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

SuSE 10 Security Update : Qt3 (ZYPP Patch Number 3898)

Format string bugs in QTextEdit can be exploited via specially crafted HTML tags to potentially execute code. CVE-2007-3388 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

FreeBSD : smbftpd -- format string vulnerability (b2571f88-a867-11dc-a6f0-00a0cce0781e)

Secunia reports : Format string vulnerability in the SMBDirList function in dirlist.c in SmbFTPD 0.96 allows remote attackers to execute arbitrary code via format string specifiers in a directory name. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

Debian DSA-1431-1 : ruby-gnome2 - format string

It was discovered that ruby-gnome2, the GNOME-related bindings for the Ruby language, didn't properly sanitize input prior to constructing dialogs. This could allow the execution of arbitrary code if untrusted input is displayed within a dialog. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

[SECURITY] [DSA 1431-1] New ruby-gnome2 packages fix execution of arbitrary code

------------------------------------------------------------------------ Debian Security Advisory DSA-1431-1 [email protected] http://www.debian.org/security/ Steve Kemp December 11, 2007 http://www.debian.org/security/faq -...

Fedora 8 : ruby-gnome2-0.16.0-18.fc8 (2007-4216)

Fix CVE-2007-6183, format string vulnerability bugzilla 402871 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

Debian DSA-1426-1 : qt-x11-free - several vulnerabilities

Several local/remote vulnerabilities have been discovered in the Qt GUI library. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-3388 Tim Brown and Dirk Muller discovered several format string vulnerabilities in the handling of error messages, which...

GLSA-200712-09 : Ruby-GNOME2: Format string error

The remote host is affected by the vulnerability described in GLSA-200712-09 Ruby-GNOME2: Format string error Chris Rohlf discovered that the 'Gtk::MessageDialog.new' method in the file gtk/src/rbgtkmessagedialog.c does not properly sanitize the 'message' parameter before passing it to the...

Fedora 7 : ruby-gnome2-0.16.0-18.fc7 (2007-4229)

Fix CVE-2007-6183, format string vulnerability Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Ruby-GNOME2: Format string error

Background Ruby-GNOME2 is a set of bindings for using GTK+ within the Ruby programming language. Description Chris Rohlf discovered that the "Gtk::MessageDialog.new" method in the file gtk/src/rbgtkmessagedialog.c does not properly sanitize the "message" parameter before passing it to the...

[SECURITY] [DSA 1426-1] New qt-x11-free packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1426-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 08, 2007 http://www.debian.org/security/faq -...

DSA-1426-1 qt-x11-free - several vulnerabilities

Bulletin has no description...

Format string

Multiple format string vulnerabilities in the configuration file in SonicWALL GLobal VPN Client 3.1.556 and 4.0.0.810 allow user-assisted remote attackers to execute arbitrary code via format string specifiers in the 1 Hostname tag or the 2 name attribute in the Connection tag. NOTE: there might...

CVE-2007-6273

Multiple format string vulnerabilities in the configuration file in SonicWALL GLobal VPN Client 3.1.556 and 4.0.0.810 allow user-assisted remote attackers to execute arbitrary code via format string specifiers in the 1 Hostname tag or the 2 name attribute in the Connection tag. NOTE: there might...