8517 matches found
CVE-2007-2958
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...
Format string
Format string vulnerability in the Say command in svmain.cpp in Vavoom 1.24 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a chat message, related to a call to the BroadcastPrintf function...
CVE-2007-4533
Format string vulnerability in the Say command in svmain.cpp in Vavoom 1.24 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a chat message, related to a call to the BroadcastPrintf function...
CVE-2007-4533
The CVE-2007-4533 issue affects Vavoom 1.24 and earlier, specifically the Say command in sv_main.cpp. A format string vulnerability could allow remote attackers to execute arbitrary code via format string specifiers in a chat message, tied to a call to BroadcastPrintf. This vulnerability is confi...
Vavoom 1.24 - str.cpp VStr::Resize Function Crafted UDP Packet Remote Denial of Service
Vavoom 1.24 - str.cpp VStr::Resize Function Crafted UDP Packet Remote Denial of Service source: https://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can...
Vavoom 1.24 - sv_main.cpp Say Command Remote Format String
Vavoom 1.24 - svmain.cpp Say Command Remote Format String source: https://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can exploit these issues to execu...
Vavoom 1.24 - p_thinker.cpp VThinker::BroadcastPrintf Multiple Remote Overflows
Vavoom 1.24 - pthinker.cpp VThinker::BroadcastPrintf Multiple Remote Overflows source: https://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can exploit...
Vavoom 1.24 - str.cpp VStr::Resize Function Crafted UDP Packet Remote Denial of Service
source: https://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can exploit these issues to execute arbitrary code within the context of the affected...
Vavoom 1.24 - sv_main.cpp Say Command Remote Format String
source: https://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can exploit these issues to execute arbitrary code within the context of the affected...
Vavoom 1.24 - 'p_thinker.cpp VThinker::BroadcastPrintf' Multiple Remote Overflows
source: https://www.securityfocus.com/bid/25436/info Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue. An attacker can exploit these issues to execute arbitrary code within the context of the affected...
claws-mail -- POP3 Format String Vulnerability
A Secunia Advisory reports: A format string error in the "incputerror" function in src/inc.c when displaying a POP3 server's error response can be exploited via specially crafted POP3 server replies containing format specifiers. Successful exploitation may allow execution of arbitrary code, but...
Toribash多个拒绝服务及远程代码执行漏洞
BUGTRAQ ID: 25359 Toribash是一款流行的格斗游戏。 Toribash中存在多个远程漏洞,远程攻击者可能利用这些漏洞控制服务器。 --------------------------------- A 专用服务器格式串漏洞 --------------------------------- 如果客户端在加入游戏的时候直接向vfprintf发送了包含有BOUT ID; 1 0 0 0 0 0 NICKNAME 0的格式串,就可能导致服务器崩溃或执行任意指令。 ---------------------------------- B 客户端命令缓冲区溢出...
Qt: Multiple format string vulnerabilities
Background Qt is a cross-platform GUI framework, which is used e.g. by KDE. Description Tim Brown of Portcullis Computer Security Ltd and Dirk Mueller of KDE reported multiple format string errors in qWarning calls in files qtextedit.cpp, qdatatable.cpp, qsqldatabase.cpp, qsqlindex.cpp,...
CVE-2007-4446
Format string vulnerability in the server in Toribash 2.71 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the NICK command client nickname when entering a game...
Toribash multiple security vulnerabilities
Format string vulnerability, multiple buffer overflows, multiple DoS conditions...
联想Automated Solutions ActiveX控件多个安全漏洞
BUGTRAQ ID: 25311 CVECAN ID: CVE-2007-2928,CVE-2007-2929,CVE-2007-2240 Automated Solutions是联想和IBM电脑中所安装的ActiveX工具软件包。 Automated Solutions的ActiveX控件实现上存在格式串处理漏洞,远程攻击者可能利用此漏洞控制用户系统。 Automated...
Multiple vulnerabilities in Toribash 2.71
Luigi Auriemma Application: Toribash http://www.toribash.com Versions: = 2.71 Platforms: Windows, Mac and Linux Bugs: A dedicated server format string B client commands buffer-overflow C client unicode buffer-overflow in the SAY command D server crash through uninitialized values E line-feed...
CVE-2007-4446
CVE-2007-4446 affects the Toribash server (2.71 and earlier). The vulnerability is a format string issue in the NICK command (client nickname) that can allow remote attackers to execute arbitrary code. The NVD entry lists a CVSS v2 base score of 7.5 (HIGH) with network access, low attack complexi...
CVE-2007-4446
Format string vulnerability in the server in Toribash 2.71 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the NICK command client nickname when entering a game...
Format string
IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary directories and execute arbitrary code via a "crafted localized message file" that enables a format string attack, possibly involving the 1 OSSEMEMDBG or 2 TRCLOGFILE environment variable in db2licd...