Lucene search
K

8517 matches found

NVD
NVD
added 2007/08/31 11:17 p.m.17 views

CVE-2007-4644

Format string vulnerability in the ClGetPackets function in clmain.c in the client in Doomsday aka deng 1.9.0-beta5.1 and earlier allows remote Doomsday servers to execute arbitrary code via format string specifiers in a PSVCONSOLETEXT message...

7.5CVSS7.5AI score0.03596EPSS
Exploits1References9
CVE
CVE
added 2007/08/31 11:0 p.m.62 views

CVE-2007-4644

The CVE-2007-4644 format-string vulnerability affects the Doomsday (deng) client, specifically in Cl_GetPackets() in cl_main.c for Doomsday 1.9.0-beta5.1 and earlier. The flaw allows a remote attacker sending PSV_CONSOLE_TEXT messages to cause arbitrary code execution. Reports (NVD, GLSA 200802-0...

7.5CVSS7.5AI score0.03596EPSS
Exploits1References9Affected Software1
securityvulns
securityvulns
added 2007/08/31 12:0 a.m.18 views

Doomsday game multiple security vulnerabilities

Multiple buffer overflows and format string vulnerabilities...

2.6AI score
Exploits0References1
securityvulns
securityvulns
added 2007/08/31 12:0 a.m.27 views

Multiple vulnerabilities in Doomsday 1.9.0-beta5.1

Luigi Auriemma Application: Doomsday http://www.doomsdayhq.com http://www.dengine.net http://sourceforge.net/projects/deng/ Versions: = 1.9.0-beta5.1 and current SVN Platforms: Windows, Linux and Mac Bugs: A DNetPlayerEvent global buffer-overflow using PKTCHAT B MsgWrite global buffer-overflow...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2007/08/29 12:0 a.m.28 views

Doomsday Engine 1.8.6/1.9 - Multiple Remote Vulnerabilities

source: https://www.securityfocus.com/bid/25483/info Doomsday Engine is prone to multiple remote vulnerabilities, including multiple buffer-overflow issues, a denial-of-service issue, a format-string issue, and an integer-overflow issue. An attacker can exploit these issues to execute arbitrary...

7.4AI score
Exploits0
Prion
Prion
added 2007/08/28 12:17 a.m.14 views

Format string

Format string vulnerability in ALPass 2.7 English and 3.02 Korean might allow user-assisted remote attackers to execute arbitrary code via format string specifiers in an fnm field in a folder-name record in an ALPASS DB APW file...

5.1CVSS8.2AI score0.04484EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2007/08/28 12:17 a.m.15 views

CVE-2007-4550

Format string vulnerability in ALPass 2.7 English and 3.02 Korean might allow user-assisted remote attackers to execute arbitrary code via format string specifiers in an fnm field in a folder-name record in an ALPASS DB APW file...

5.1CVSS7.6AI score0.04484EPSS
Exploits1References4
seebug.org
seebug.org
added 2007/08/28 12:0 a.m.27 views

Sylpheed和Sylpheed-Claws POP3远程格式串处理漏洞

BUGTRAQ ID: 25430 CVECAN ID: CVE-2007-2958 Sylpheed和Sylpheed-Claws都是轻型的邮件客户端。 Sylpheed和Sylpheed-Claws在处理用户请求存在格式串处理漏洞,远程攻击者可能利用此漏洞控制客户端。 Sylpheed和Sylpheed-Claws邮件客户端的src/inc.c文件中的incputerror函数在显示POP3服务器的错误响应时存在格式串漏洞处理,如果用户受骗连接到了恶意的POP3服务器并接收到包含有格式标识符的回复的话,就可能触发这个漏洞,导致执行任意指令。 Sylpheed Sylpheed 2.4...

6.8CVSS6.4AI score0.03429EPSS
Exploits1
Cvelist
Cvelist
added 2007/08/28 12:0 a.m.22 views

CVE-2007-4550

Format string vulnerability in ALPass 2.7 English and 3.02 Korean might allow user-assisted remote attackers to execute arbitrary code via format string specifiers in an fnm field in a folder-name record in an ALPASS DB APW file...

7.6AI score0.04484EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2007/08/28 12:0 a.m.19 views

GLSA-200708-16 : Qt: Multiple format string vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200708-16 Qt: Multiple format string vulnerabilities Tim Brown of Portcullis Computer Security Ltd and Dirk Mueller of KDE reported multiple format string errors in qWarning calls in files qtextedit.cpp, qdatatable.cpp,...

6.8CVSS5.9AI score0.04203EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/08/28 12:0 a.m.28 views

Mandrake Linux Security Advisory : vim (MDKSA-2007:168)

A format string vulnerability in the helptags support in vim allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file. Updated packages have been patched to prevent this issue. %NASLMINLEVEL 70300 C Tenable Network Security, In...

6.8CVSS8.8AI score0.04179EPSS
Exploits1References1
CVE
CVE
added 2007/08/28 12:0 a.m.55 views

CVE-2007-4550

CVE-2007-4550 describes a format string vulnerability in ALPass 2.7 English and 3.02 Korean. The issue allows user-assisted remote attackers to execute arbitrary code through format string specifiers in an fnm field within a folder-name record in an ALPASS DB (APW) file. The vulnerability affects...

5.1CVSS7.6AI score0.04484EPSS
Exploits1References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/08/28 12:0 a.m.22 views

FreeBSD : claws-mail -- POP3 Format String Vulnerability (d9867f50-54d0-11dc-b80b-0016179b2dd5)

A Secunia Advisory reports : A format string error in the 'incputerror' function in src/inc.c when displaying a POP3 server's error response can be exploited via specially crafted POP3 server replies containing format specifiers. Successful exploitation may allow execution of arbitrary code, but...

6.8CVSS5.7AI score0.03429EPSS
Exploits1References3
OSV
OSV
added 2007/08/27 5:17 p.m.1 views

DEBIAN-CVE-2007-2958

Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...

6.8CVSS7.7AI score0.03429EPSS
Exploits1References1
NVD
NVD
added 2007/08/27 5:17 p.m.10 views

CVE-2007-2958

Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...

6.8CVSS7.4AI score0.03429EPSS
Exploits1References14
Prion
Prion
added 2007/08/27 5:17 p.m.18 views

Format string

Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...

6.8CVSS7.6AI score0.03429EPSS
Exploits1References14Affected Software2
UbuntuCve
UbuntuCve
added 2007/08/27 5:17 p.m.27 views

CVE-2007-2958

Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...

6.8CVSS6.3AI score0.03429EPSS
Exploits1References1
OSV
OSV
added 2007/08/27 5:17 p.m.4 views

CVE-2007-2958

Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...

7.4AI score
Exploits0References16
CVE
CVE
added 2007/08/27 5:0 p.m.76 views

CVE-2007-2958

CVE-2007-2958 affects Sylpheed 2.4.4 and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0. The vulnerability is a format string issue in inc_put_error (src/inc.c) that can be triggered by crafted POP3 replies from a remote server, allowing arbitrary code execution. Public references and OpenVAS ent...

6.8CVSS7.2AI score0.03429EPSS
Exploits1References14Affected Software2
Debian CVE
Debian CVE
added 2007/08/27 5:0 p.m.19 views

CVE-2007-2958

Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...

6.8CVSS6.7AI score0.03429EPSS
Exploits1
Rows per page
Query Builder