Lucene search
K

8517 matches found

Debian CVE
Debian CVE
added 2007/08/27 5:0 p.m.19 views

CVE-2007-2958

Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...

6.8CVSS6.7AI score0.03429EPSS
Exploits1
Prion
Prion
added 2007/08/25 12:17 a.m.14 views

Format string

Format string vulnerability in the Say command in svmain.cpp in Vavoom 1.24 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a chat message, related to a call to the BroadcastPrintf function...

6.8CVSS8.1AI score0.08493EPSS
Exploits1References8Affected Software1
NVD
NVD
added 2007/08/25 12:17 a.m.20 views

CVE-2007-4533

Format string vulnerability in the Say command in svmain.cpp in Vavoom 1.24 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a chat message, related to a call to the BroadcastPrintf function...

6.8CVSS7.7AI score0.08493EPSS
Exploits1References8
CVE
CVE
added 2007/08/25 12:0 a.m.52 views

CVE-2007-4533

The CVE-2007-4533 issue affects Vavoom 1.24 and earlier, specifically the Say command in sv_main.cpp. A format string vulnerability could allow remote attackers to execute arbitrary code via format string specifiers in a chat message, tied to a call to BroadcastPrintf. This vulnerability is confi...

6.8CVSS7.6AI score0.08493EPSS
Exploits1References8Affected Software1
exploitpack
exploitpack
added 2007/08/24 12:0 a.m.10 views

Vavoom 1.24 - str.cpp VStr::Resize Function Crafted UDP Packet Remote Denial of Service

Vavoom 1.24 - str.cpp VStr::Resize Function Crafted UDP Packet Remote Denial of Service source: https://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can...

0.9AI score
Exploits0
exploitpack
exploitpack
added 2007/08/24 12:0 a.m.22 views

Vavoom 1.24 - sv_main.cpp Say Command Remote Format String

Vavoom 1.24 - svmain.cpp Say Command Remote Format String source: https://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can exploit these issues to execu...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2007/08/24 12:0 a.m.9 views

Vavoom 1.24 - p_thinker.cpp VThinker::BroadcastPrintf Multiple Remote Overflows

Vavoom 1.24 - pthinker.cpp VThinker::BroadcastPrintf Multiple Remote Overflows source: https://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can exploit...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/08/24 12:0 a.m.24 views

Vavoom 1.24 - str.cpp VStr::Resize Function Crafted UDP Packet Remote Denial of Service

source: https://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can exploit these issues to execute arbitrary code within the context of the affected...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/08/24 12:0 a.m.26 views

Vavoom 1.24 - sv_main.cpp Say Command Remote Format String

source: https://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can exploit these issues to execute arbitrary code within the context of the affected...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/08/24 12:0 a.m.37 views

Vavoom 1.24 - 'p_thinker.cpp VThinker::BroadcastPrintf' Multiple Remote Overflows

source: https://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can exploit these issues to execute arbitrary code within the context of the affected...

7.4AI score
Exploits0
FreeBSD
FreeBSD
added 2007/08/24 12:0 a.m.26 views

claws-mail -- POP3 Format String Vulnerability

A Secunia Advisory reports: A format string error in the "incputerror" function in src/inc.c when displaying a POP3 server's error response can be exploited via specially crafted POP3 server replies containing format specifiers. Successful exploitation may allow execution of arbitrary code, but...

6.8CVSS6.6AI score0.03429EPSS
Exploits1References2
seebug.org
seebug.org
added 2007/08/23 12:0 a.m.35 views

Toribash多个拒绝服务及远程代码执行漏洞

BUGTRAQ ID: 25359 Toribash是一款流行的格斗游戏。 Toribash中存在多个远程漏洞,远程攻击者可能利用这些漏洞控制服务器。 --------------------------------- A 专用服务器格式串漏洞 --------------------------------- 如果客户端在加入游戏的时候直接向vfprintf发送了包含有BOUT ID; 1 0 0 0 0 0 NICKNAME 0的格式串,就可能导致服务器崩溃或执行任意指令。 ---------------------------------- B 客户端命令缓冲区溢出...

6.9AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2007/08/22 12:0 a.m.39 views

Qt: Multiple format string vulnerabilities

Background Qt is a cross-platform GUI framework, which is used e.g. by KDE. Description Tim Brown of Portcullis Computer Security Ltd and Dirk Mueller of KDE reported multiple format string errors in qWarning calls in files qtextedit.cpp, qdatatable.cpp, qsqldatabase.cpp, qsqlindex.cpp,...

6.8CVSS6.8AI score0.04203EPSS
Exploits0
NVD
NVD
added 2007/08/21 12:17 a.m.16 views

CVE-2007-4446

Format string vulnerability in the server in Toribash 2.71 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the NICK command client nickname when entering a game...

7.5CVSS7.8AI score0.04171EPSS
Exploits1References5
securityvulns
securityvulns
added 2007/08/21 12:0 a.m.25 views

Toribash multiple security vulnerabilities

Format string vulnerability, multiple buffer overflows, multiple DoS conditions...

2.4AI score
Exploits0References1Affected Software1
seebug.org
seebug.org
added 2007/08/21 12:0 a.m.40 views

联想Automated Solutions ActiveX控件多个安全漏洞

BUGTRAQ ID: 25311 CVECAN ID: CVE-2007-2928,CVE-2007-2929,CVE-2007-2240 Automated Solutions是联想和IBM电脑中所安装的ActiveX工具软件包。 Automated Solutions的ActiveX控件实现上存在格式串处理漏洞,远程攻击者可能利用此漏洞控制用户系统。 Automated...

5.8CVSS6.4AI score0.0457EPSS
Exploits1
securityvulns
securityvulns
added 2007/08/21 12:0 a.m.30 views

Multiple vulnerabilities in Toribash 2.71

Luigi Auriemma Application: Toribash http://www.toribash.com Versions: = 2.71 Platforms: Windows, Mac and Linux Bugs: A dedicated server format string B client commands buffer-overflow C client unicode buffer-overflow in the SAY command D server crash through uninitialized values E line-feed...

Exploits0
CVE
CVE
added 2007/08/21 12:0 a.m.49 views

CVE-2007-4446

CVE-2007-4446 affects the Toribash server (2.71 and earlier). The vulnerability is a format string issue in the NICK command (client nickname) that can allow remote attackers to execute arbitrary code. The NVD entry lists a CVSS v2 base score of 7.5 (HIGH) with network access, low attack complexi...

7.5CVSS7.8AI score0.04171EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2007/08/21 12:0 a.m.24 views

CVE-2007-4446

Format string vulnerability in the server in Toribash 2.71 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the NICK command client nickname when entering a game...

7.8AI score0.04171EPSS
Exploits1References5
Prion
Prion
added 2007/08/18 9:17 p.m.26 views

Format string

IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary directories and execute arbitrary code via a "crafted localized message file" that enables a format string attack, possibly involving the 1 OSSEMEMDBG or 2 TRCLOGFILE environment variable in db2licd...

4.6CVSS7.2AI score0.00414EPSS
Exploits1References11Affected Software1
Rows per page
Query Builder