8517 matches found
CVE-2007-1463
Inkscape before 0.45.1 contains a format string vulnerability in URIs parsed by certain dialogs, allowing user-assisted remote code execution. Public references in OpenVAS/Nessus advisories map this to CVE-2007-1463; affected OS advisories (MDKSA-2007:069, USN-438-1, Gentoo GLSA 200704-10, openSU...
CVE-2007-1463
Format string vulnerability in Inkscape before 0.45.1 allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a URI, which is not properly handled by certain dialogs...
CVE-2007-1463
Format string vulnerability in Inkscape before 0.45.1 allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a URI, which is not properly handled by certain dialogs...
Format string
Format string vulnerability in F-Secure Anti-Virus Client Security 6.02 allows local users to cause a denial of service and possibly gain privileges via format string specifiers in the Management Server name field on the Communication settings page...
CVE-2007-1557
Format string vulnerability in F-Secure Anti-Virus Client Security 6.02 allows local users to cause a denial of service and possibly gain privileges via format string specifiers in the Management Server name field on the Communication settings page...
CVE-2007-1557
Format string vulnerability in F-Secure Anti-Virus Client Security 6.02 allows local users to cause a denial of service and possibly gain privileges via format string specifiers in the Management Server name field on the Communication settings page...
CVE-2007-1557
CVE-2007-1557 affects F-Secure Anti-Virus Client Security 6.02. The vulnerability is a format string issue in the Management Server name field on the Communication settings page, allowing local users to cause a denial of service and potentially gain privileges. Impact is described as local, with ...
F-Secure Anti-Virus Client Security本地格式串处理漏洞
F-Secure Anti-Virus Client Security是PC平台上的实时病毒监测和防护系统,支持所有WINDOWS系统。 F-Secure Anti-Virus Client Security在处理Management Server名称字段时存在格式串处理漏洞,如果攻击者在Communication设置的Management Server名称字段中提供了特制格式串的话,就可以读写任意内存,并可以导致拒绝服务。 F-Secure Anti-Virus Client Security 6.03 F-Secure Anti-Virus Client Security 6.02...
CVE-2007-1503
Multiple format string vulnerabilities in comm.c in Rhapsody IRC 0.28b allow remote attackers to execute arbitrary code via format string specifiers to the createctcpmessage function using the message argument to the 1 me or 2 ctcp commands, and possibly related vectors involving the 3 whois, 4...
CVE-2007-1503
Multiple format string vulnerabilities in comm.c in Rhapsody IRC 0.28b allow remote attackers to execute arbitrary code via format string specifiers to the createctcpmessage function using the message argument to the 1 me or 2 ctcp commands, and possibly related vectors involving the 3 whois, 4...
Format string
Multiple format string vulnerabilities in comm.c in Rhapsody IRC 0.28b allow remote attackers to execute arbitrary code via format string specifiers to the createctcpmessage function using the message argument to the 1 me or 2 ctcp commands, and possibly related vectors involving the 3 whois, 4...
CVE-2007-1503
CVE-2007-1503 concerns the Rhapsody IRC client (version 0.28b) with multiple format string vulnerabilities in comm.c, specifically in create_ctcp_message used by (1) me and (2) ctcp commands, and potentially vectors involving (3) whois, (4) mode, and (5) topic. The defect allows remote attackers ...
CVE-2007-1503
Multiple format string vulnerabilities in comm.c in Rhapsody IRC 0.28b allow remote attackers to execute arbitrary code via format string specifiers to the createctcpmessage function using the message argument to the 1 me or 2 ctcp commands, and possibly related vectors involving the 3 whois, 4...
F-Secure anti-virus format string vulnerability
Format string vulnerability in management server name allows local privilege escalation...
Layered Defense Research Advisory: F-Secure Anti-Virus Client Security 6.02 Format String Vulnerability
================================================= Layered Defense Research Advisory 18 March 2007 ================================================= 1 Affected Software F-Secure Anti-Virus Client Security Version 6.02 ================================================= 2 Severity Rating: Low risk...
Rhapsody IRC client multiplesecurity vulnerabilities
Multiple buffer overflows and formatstring vulnerabilities...
FreeBSD : samba -- format string bug in afsacl.so VFS plugin (57ae52f7-b9cc-11db-bf0f-0013720b182d)
The Samba Team reports : NOTE: This security advisory only impacts Samba servers that share AFS file systems to CIFS clients and which have been explicitly instructed in smb.conf to load the afsacl.so VFS module. The source defect results in the name of a file stored on disk being used as the...
GLSA-200703-13 : SSH Communications Security's Secure Shell Server: SFTP privilege escalation
The remote host is affected by the vulnerability described in GLSA-200703-13 SSH Communications Security's Secure Shell Server: SFTP privilege escalation The SSH Secure Shell Server contains a format string vulnerability in the SFTP code that handles file transfers scp2 and sftp2. In some...
security flaw
Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to 1 all of the print functions on 64-bit systems, and 2 the odbcresultall function...
security flaw
Format string vulnerability in Ekiga 2.0.3, and probably other versions, allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2007-1006...