8517 matches found
CVE-2007-4273
IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary directories and execute arbitrary code via a "crafted localized message file" that enables a format string attack, possibly involving the 1 OSSEMEMDBG or 2 TRCLOGFILE environment variable in db2licd...
CVE-2007-4273
IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary directories and execute arbitrary code via a "crafted localized message file" that enables a format string attack, possibly involving the 1 OSSEMEMDBG or 2 TRCLOGFILE environment variable in db2licd...
CVE-2007-4273
CVE-2007-4273 affects IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3. Local attackers could create arbitrary directories and execute arbitrary code by supplying a crafted localized message file that enables a format-string attack, potentially involving the OSSEMEMDBG or TRC_LOG_FILE envir...
CVE-2007-4378
Multiple format string vulnerabilities in Babo Violent 2 2.08.00 and earlier allow remote attackers to execute arbitrary code via format string specifiers in 1 a message or 2 certain data associated with an admin login...
Format string
Multiple format string vulnerabilities in Babo Violent 2 2.08.00 and earlier allow remote attackers to execute arbitrary code via format string specifiers in 1 a message or 2 certain data associated with an admin login...
CVE-2007-4378
Multiple format string vulnerabilities in Babo Violent 2 2.08.00 and earlier allow remote attackers to execute arbitrary code via format string specifiers in 1 a message or 2 certain data associated with an admin login...
CVE-2007-4378
CVE-2007-4378 describes multiple format string vulnerabilities in Babo Violent 2 (version 2.08.00 and earlier). The issue allows remote attackers to execute arbitrary code through format string specifiers in (1) a message or (2) data associated with an admin login. The connected documents confirm...
Format string
Format string vulnerability in the IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll before 1.2.8.0 and possibly acpir.dll before 1.0.0.9 Automated Solutions 1.0 before fix pack 1, allows remote attackers to execute arbitrary code via format string specifier...
CVE-2007-2928
Format string vulnerability in the IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll before 1.2.8.0 and possibly acpir.dll before 1.0.0.9 Automated Solutions 1.0 before fix pack 1, allows remote attackers to execute arbitrary code via format string specifier...
CVE-2007-2928
Format string vulnerability in the IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll before 1.2.8.0 and possibly acpir.dll before 1.0.0.9 Automated Solutions 1.0 before fix pack 1, allows remote attackers to execute arbitrary code via format string specifier...
CVE-2007-2928
The CVE-2007-2928 vulnerability affects the IBM/Lenovo Automated Solutions acpRunner ActiveX control (AcpController.dll) prior to v1.2.8.0 and possibly acpir.dll prior to v1.0.0.9. It exposes a format-string vulnerability that may let a remote attacker execute arbitrary code by convincing a user ...
[Full-disclosure] Multiple vulnerabilities in Babo Violent 2 2.08.00
Luigi Auriemma Application: Babo Violent 2 http://www.rndlabs.ca http://baboviolent.net Versions: = 2.08.00 Platforms: Windows and Linux Bugs: A crash through malformed value B format string C crash through unexistent map D crash through malformed UDP packet Exploitation: A, B and C versus server...
Babo Violent game multiple security vulnerabilities
Crash on UDP packet with malformed data. Format string vulnerability...
Format string
Format string vulnerability in the SMTP server component in Qbik WinGate 5.x and 6.x before 6.2.2 allows remote attackers to cause a denial of service service crash via format string specifiers in certain unexpected commands, which trigger a crash during error logging...
CVE-2007-4335
Format string vulnerability in the SMTP server component in Qbik WinGate 5.x and 6.x before 6.2.2 allows remote attackers to cause a denial of service service crash via format string specifiers in certain unexpected commands, which trigger a crash during error logging...
CVE-2007-4335
WinGate (Qbik WinGate) SMTP server before 6.2.2 is vulnerable to a remote denial-of-service due to a format-string vulnerability in its error-logging path. Affected products are WinGate 5.x and 6.x prior to 6.2.2; exploitation can crash the service by sending certain unexpected commands that trig...
CVE-2007-4335
Format string vulnerability in the SMTP server component in Qbik WinGate 5.x and 6.x before 6.2.2 allows remote attackers to cause a denial of service service crash via format string specifiers in certain unexpected commands, which trigger a crash during error logging...
IBM and Lenovo Access Support acpRunner ActiveX control format string vulnerability
Overview The IBM Lenovo Access Support acpRunner ActiveX control contains a format string vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The Access Support software package for IBM and Lenovo systems includes several...
RndLabs Babo Violent 2 - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/25329/info Babo Violent 2 is prone to four vulnerabilities: a format-string issue and three denial-of-service issues. Successful attacks could allow attackers to execute arbitrary code or crash game servers...
Qbik WinGate format string vulnerability
Unsafe vsprintf call on invalid SMTP command...