Lucene search
K

8517 matches found

securityvulns
securityvulns
added 2007/03/03 12:0 a.m.26 views

Limited format string in Netrek 2.12.0

Luigi Auriemma Application: Netrek http://www.netrek.org Versions: = 2.12.0 Vanilla server Platforms: nix and Windows Bug: format string Exploitation: remote in-game Date: 02 Mar 2007 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug 3 The Code 4 Fix...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2007/03/03 12:0 a.m.20 views

Netrek format string vulnerability

Format string vulnerability on blocking player with malformed nickname...

9.3CVSS2.2AI score0.06457EPSS
Exploits1References1Affected Software1
0day.today
0day.today
added 2007/03/02 12:0 a.m.42 views

Netrek 2.12.0 pmessage2() Remote Limited Format String Exploit

Exploit for unknown platform in category dos / poc ============================================================== Netrek 2.12.0 pmessage2 Remote Limited Format String Exploit ============================================================== Luigi Auriemma Application: Netrek http://www.netrek.org...

7AI score
Exploits0
exploitpack
exploitpack
added 2007/03/02 12:0 a.m.30 views

Netrek 2.12.0 - pmessage2() Remote Limited Format String

Netrek 2.12.0 - pmessage2 Remote Limited Format String Luigi Auriemma Application: Netrek http://www.netrek.org Versions: = 2.12.0 Vanilla server Platforms: nix and Windows Bug: format string Exploitation: remote in-game Date: 02 Mar 2007 Author: Luigi Auriemma e-mail: [email protected] web:...

Exploits0
Exploit DB
Exploit DB
added 2007/03/02 12:0 a.m.35 views

Netrek 2.12.0 - 'pmessage2()' Remote Limited Format String

Luigi Auriemma Application: Netrek http://www.netrek.org Versions: = 2.12.0 Vanilla server Platforms: nix and Windows Bug: format string Exploitation: remote in-game Date: 02 Mar 2007 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug 3 The Code 4 Fix...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2007/03/01 12:0 a.m.13 views

XM Easy Personal FTP Server 5.30 (ABOR) Format String DoS Exploit

No description provided by source. !/usr/bin/perl -w ========================================================================================================= XM Easy Personal FTP Server 5.3.0 Multiple vulnerabilities By Umesh Wanve ...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/02/28 12:0 a.m.12 views

XM Easy Personal FTP Server 5.30 - ABOR Format String Denial of Service

XM Easy Personal FTP Server 5.30 - ABOR Format String Denial of Service !/usr/bin/perl -w ========================================================================================================= XM Easy Personal FTP Server 5.3.0 Multiple vulnerabilities By Umesh Wanve...

Exploits0
0day.today
0day.today
added 2007/02/28 12:0 a.m.15 views

XM Easy Personal FTP Server 5.30 (ABOR) Format String DoS Exploit

Exploit for unknown platform in category dos / poc ================================================================= XM Easy Personal FTP Server 5.30 ABOR Format String DoS Exploit ================================================================= !/usr/bin/perl -w...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2007/02/28 12:0 a.m.28 views

XM Easy Personal FTP Server 5.30 - 'ABOR' Format String Denial of Service

!/usr/bin/perl -w ========================================================================================================= XM Easy Personal FTP Server 5.3.0 Multiple vulnerabilities By Umesh Wanve...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/02/27 12:0 a.m.32 views

Fedora Core 5 : php-5.1.6-1.4 (2007-287)

This update fixes a number of security issues in PHP. A number of buffer overflow flaws were found in the PHP session extension, the strreplace function, and the imapmailcompose function. If very long strings under the control of an attacker are passed to the strreplace function then an integer...

10CVSS6.8AI score0.11752EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2007/02/26 9:49 a.m.7 views

Important: Red Hat Security Advisory: php security update for Stronghold

Updated PHP packages that fix multiple security issues are now available for Stronghold 4.0 for Enterprise Linux. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

10CVSS6.5AI score0.11752EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2007/02/26 9:49 a.m.5 views

security flaw

Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to 1 all of the print functions on 64-bit systems, and 2 the odbcresultall function...

7.5CVSS6.2AI score0.03252EPSS
Exploits0References4
Cent OS
Cent OS
added 2007/02/25 6:2 a.m.80 views

php security update

CentOS Errata and Security Advisory CESA-2007:0081-01 Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...

10CVSS6.3AI score0.11752EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2007/02/23 12:0 a.m.40 views

Fedora Core 6 : php-5.1.6-3.4.fc6 (2007-261)

This update fixes a number of security issues in PHP. A number of buffer overflow flaws were found in the PHP session extension, the strreplace function, and the imapmailcompose function. If very long strings under the control of an attacker are passed to the strreplace function then an integer...

10CVSS6.8AI score0.11752EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2007/02/23 12:0 a.m.38 views

Mandrake Linux Security Advisory : php (MDKSA-2007:048)

A number of vulnerabilities were discovered in PHP language. Many buffer overflow flaws were discovered in the PHP session extension, the strreplace function, and the imapmailcompose function. An attacker able to use a PHP application using any of these functions could trigger these flaws and...

10CVSS6.7AI score0.11752EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2007/02/23 12:0 a.m.20 views

Fedora Core 5 : ekiga-2.0.1-4 (2007-262)

A format string flaw was found in the way Ekiga processes certain messages form remote clients. This flaw could potentially allow a remote attacker to execute arbitrary code as the user running Ekiga. Note that Tenable Network Security has extracted the preceding description block directly from t...

10CVSS6AI score0.0364EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/02/23 12:0 a.m.36 views

RHEL 2.1 : php (RHSA-2007:0081)

Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server....

10CVSS6.8AI score0.11752EPSS
Exploits2References19
Tenable Nessus
Tenable Nessus
added 2007/02/23 12:0 a.m.39 views

Fedora Core 6 : ekiga-2.0.5-2.fc6 (2007-263)

A format string flaw was found in the way Ekiga processes certain messages. If a user is running Ekiga, a remote attacker who can connect to Ekiga could trigger this flaw and potentially execute arbitrary code with the privileges of the user. Note that Tenable Network Security has extracted the...

10CVSS5.5AI score0.0364EPSS
Exploits0References2
CVE
CVE
added 2007/02/22 10:0 p.m.40 views

CVE-2004-2677

CVE-2004-2677 affects QwikMail SMTP (qwik-smtpd) version 0.3 and earlier. The flaw is a format string vulnerability in qwik-smtpd.c that allows remote attackers to achieve arbitrary code execution via format specifiers in the (1) clientRcptTo array, and the (2) Received and (3) messageID variable...

7.5CVSS8.2AI score0.06436EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2007/02/22 10:0 p.m.16 views

CVE-2004-2677

Format string vulnerability in qwik-smtpd.c in QwikMail SMTP qwik-smtpd 0.3 and earlier allows remote attackers to execute arbitrary code via format specifiers in the 1 clientRcptTo array, and the 2 Received and 3 messageID variables, possibly involving HELO and hostname arguments...

7.8AI score0.06436EPSS
Exploits1References8
Rows per page
Query Builder