8517 matches found
CVE-2007-4644
Format string vulnerability in the ClGetPackets function in clmain.c in the client in Doomsday aka deng 1.9.0-beta5.1 and earlier allows remote Doomsday servers to execute arbitrary code via format string specifiers in a PSVCONSOLETEXT message...
CVE-2007-4644
The CVE-2007-4644 format-string vulnerability affects the Doomsday (deng) client, specifically in Cl_GetPackets() in cl_main.c for Doomsday 1.9.0-beta5.1 and earlier. The flaw allows a remote attacker sending PSV_CONSOLE_TEXT messages to cause arbitrary code execution. Reports (NVD, GLSA 200802-0...
Doomsday game multiple security vulnerabilities
Multiple buffer overflows and format string vulnerabilities...
Multiple vulnerabilities in Doomsday 1.9.0-beta5.1
Luigi Auriemma Application: Doomsday http://www.doomsdayhq.com http://www.dengine.net http://sourceforge.net/projects/deng/ Versions: = 1.9.0-beta5.1 and current SVN Platforms: Windows, Linux and Mac Bugs: A DNetPlayerEvent global buffer-overflow using PKTCHAT B MsgWrite global buffer-overflow...
Doomsday Engine 1.8.6/1.9 - Multiple Remote Vulnerabilities
source: https://www.securityfocus.com/bid/25483/info Doomsday Engine is prone to multiple remote vulnerabilities, including multiple buffer-overflow issues, a denial-of-service issue, a format-string issue, and an integer-overflow issue. An attacker can exploit these issues to execute arbitrary...
Format string
Format string vulnerability in ALPass 2.7 English and 3.02 Korean might allow user-assisted remote attackers to execute arbitrary code via format string specifiers in an fnm field in a folder-name record in an ALPASS DB APW file...
CVE-2007-4550
Format string vulnerability in ALPass 2.7 English and 3.02 Korean might allow user-assisted remote attackers to execute arbitrary code via format string specifiers in an fnm field in a folder-name record in an ALPASS DB APW file...
Sylpheed和Sylpheed-Claws POP3远程格式串处理漏洞
BUGTRAQ ID: 25430 CVECAN ID: CVE-2007-2958 Sylpheed和Sylpheed-Claws都是轻型的邮件客户端。 Sylpheed和Sylpheed-Claws在处理用户请求存在格式串处理漏洞,远程攻击者可能利用此漏洞控制客户端。 Sylpheed和Sylpheed-Claws邮件客户端的src/inc.c文件中的incputerror函数在显示POP3服务器的错误响应时存在格式串漏洞处理,如果用户受骗连接到了恶意的POP3服务器并接收到包含有格式标识符的回复的话,就可能触发这个漏洞,导致执行任意指令。 Sylpheed Sylpheed 2.4...
CVE-2007-4550
Format string vulnerability in ALPass 2.7 English and 3.02 Korean might allow user-assisted remote attackers to execute arbitrary code via format string specifiers in an fnm field in a folder-name record in an ALPASS DB APW file...
GLSA-200708-16 : Qt: Multiple format string vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200708-16 Qt: Multiple format string vulnerabilities Tim Brown of Portcullis Computer Security Ltd and Dirk Mueller of KDE reported multiple format string errors in qWarning calls in files qtextedit.cpp, qdatatable.cpp,...
Mandrake Linux Security Advisory : vim (MDKSA-2007:168)
A format string vulnerability in the helptags support in vim allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file. Updated packages have been patched to prevent this issue. %NASLMINLEVEL 70300 C Tenable Network Security, In...
CVE-2007-4550
CVE-2007-4550 describes a format string vulnerability in ALPass 2.7 English and 3.02 Korean. The issue allows user-assisted remote attackers to execute arbitrary code through format string specifiers in an fnm field within a folder-name record in an ALPASS DB (APW) file. The vulnerability affects...
FreeBSD : claws-mail -- POP3 Format String Vulnerability (d9867f50-54d0-11dc-b80b-0016179b2dd5)
A Secunia Advisory reports : A format string error in the 'incputerror' function in src/inc.c when displaying a POP3 server's error response can be exploited via specially crafted POP3 server replies containing format specifiers. Successful exploitation may allow execution of arbitrary code, but...
DEBIAN-CVE-2007-2958
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...
CVE-2007-2958
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...
Format string
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...
CVE-2007-2958
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...
CVE-2007-2958
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...
CVE-2007-2958
CVE-2007-2958 affects Sylpheed 2.4.4 and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0. The vulnerability is a format string issue in inc_put_error (src/inc.c) that can be triggered by crafted POP3 replies from a remote server, allowing arbitrary code execution. Public references and OpenVAS ent...
CVE-2007-2958
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...