Lucene search
K

8517 matches found

NVD
NVD
added 2007/02/20 1:28 a.m.19 views

CVE-2007-1006

Multiple format string vulnerabilities in the gmmainwindowflashmessage function in Ekiga before 2.0.5 allow attackers to cause a denial of service and possibly execute arbitrary code via a crafted Q.931 SETUP packet...

10CVSS7.4AI score0.0364EPSS
Exploits0References23
UbuntuCve
UbuntuCve
added 2007/02/20 1:28 a.m.40 views

CVE-2007-1006

Multiple format string vulnerabilities in the gmmainwindowflashmessage function in Ekiga before 2.0.5 allow attackers to cause a denial of service and possibly execute arbitrary code via a crafted Q.931 SETUP packet...

10CVSS6.3AI score0.0364EPSS
Exploits0References2
Prion
Prion
added 2007/02/20 1:28 a.m.21 views

Format string

Multiple format string vulnerabilities in the gmmainwindowflashmessage function in Ekiga before 2.0.5 allow attackers to cause a denial of service and possibly execute arbitrary code via a crafted Q.931 SETUP packet...

10CVSS7.6AI score0.0364EPSS
Exploits0References23Affected Software1
CVE
CVE
added 2007/02/20 12:0 a.m.72 views

CVE-2007-1006

CVE-2007-1006 affects Ekiga prior to 2.0.5, where multiple format string vulnerabilities in gm_main_window_flash_message can be triggered by a crafted Q.931 SETUP packet. This could cause denial of service and potentially allow arbitrary code execution. The advisory details indicate the issue res...

10CVSS7.3AI score0.0364EPSS
Exploits0References23Affected Software1
Cvelist
Cvelist
added 2007/02/20 12:0 a.m.27 views

CVE-2007-1006

Multiple format string vulnerabilities in the gmmainwindowflashmessage function in Ekiga before 2.0.5 allow attackers to cause a denial of service and possibly execute arbitrary code via a crafted Q.931 SETUP packet...

7.3AI score0.0364EPSS
Exploits0References23
Debian CVE
Debian CVE
added 2007/02/20 12:0 a.m.19 views

CVE-2007-1006

Removed by vendor...

10CVSS6.6AI score0.0364EPSS
Exploits0
Oracle linux
Oracle linux
added 2007/02/20 12:0 a.m.25 views

Critical: gnomemeeting security update

1.0.2-9 - Fix for format string vulnerability bug 229266...

10CVSS1.8AI score0.07031EPSS
Exploits0
Cent OS
Cent OS
added 2007/02/19 9:40 p.m.78 views

php security update

CentOS Errata and Security Advisory CESA-2007:0076 Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...

10CVSS6.4AI score0.11752EPSS
Exploits2References9
RedHat Linux
RedHat Linux
added 2007/02/19 9:8 p.m.41 views

Important: Red Hat Security Advisory: php security update

Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

10CVSS6.4AI score0.11752EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2007/02/19 9:8 p.m.2 views

security flaw

Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to 1 all of the print functions on 64-bit systems, and 2 the odbcresultall function...

7.5CVSS6.2AI score0.03252EPSS
Exploits0References4
seebug.org
seebug.org
added 2007/02/19 12:0 a.m.40 views

Axigen eMail Server 2.0.0b2 (pop3) Remote Format String Exploit

No description provided by source. / axiagen.c Axigen eMail Server v2.0 beta by fuGich Tue Dec 5 2006 thanks to mu-b - Tested on: Axigen V2 beta logType for the pop3 service must be "system" and the logLevel set to any number with 4th bit set remote shell format string vulnerability in pop3...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.25 views

Mandrake Linux Security Advisory : gdm (MDKSA-2006:231)

Local exploitation of a format string vulnerability in GNOME Foundation's GNOME Display Manager host chooser window gdmchooser could allow an unauthenticated attacker to execute arbitrary code on the affected system. The updated packages have been patched to correct this issue. %NASLMINLEVEL 7030...

4.3CVSS5.9AI score0.00397EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.42 views

FreeBSD : php -- multiple vulnerabilities (7fcf1727-be71-11db-b2ec-000c6ec775d9)

Multiple vulnerabilities have been found in PHP, including : buffer overflows, stack overflows, format string, and information disclosure vulnerabilities. The session extension contained safemode and openbasedir bypasses, but the FreeBSD Security Officer does not consider these real security...

10CVSS5.3AI score0.11752EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.17 views

SUSE-SA:2007:005: w3m

The remote host is missing the patch for the advisory SUSE-SA:2007:005 w3m. A format string problem in w3m -dump / -backend mode could be used by a malicious server to crash w3m or execute code. In SUSE Linux 10.1, openSUSE 10.2 and SUSE Linux Enterprise Server and Desktop 10 this problem was not...

9.3CVSS7.6AI score0.04665EPSS
Exploits0
securityvulns
securityvulns
added 2007/02/18 12:0 a.m.19 views

Axigen format string vulnerability

Format string vulnerability on syslog call...

2AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2007/02/18 12:0 a.m.16 views

Axigen eMail Server 2.0.0b2 - pop3 Remote Format String

Axigen eMail Server 2.0.0b2 - pop3 Remote Format String / axiagen.c Axigen eMail Server v2.0 beta by fuGich Tue Dec 5 2006 thanks to mu-b - Tested on: Axigen V2 beta logType for the pop3 service must be "system" and the logLevel set to any number with 4th bit set remote shell format string...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2007/02/18 12:0 a.m.27 views

[Full-disclosure] Axigen server version: 2.0.0-beta1 (Linux/i686) - pop3 remote shell

The code attached exploits a format string vulnerability in the V2 beta version of Axigen. The pop3 service calls syslog in a vulnerable way when the logtype, for the pop3 service, been set to "system" and loglevel is number with 4th bit set. Any unknown command causes the log call with overwriti...

1.2AI score
Exploits0
0day.today
0day.today
added 2007/02/18 12:0 a.m.32 views

Axigen eMail Server 2.0.0b2 (pop3) Remote Format String Exploit

Exploit for linux platform in category remote exploits =============================================================== Axigen eMail Server 2.0.0b2 pop3 Remote Format String Exploit =============================================================== / axiagen.c Axigen eMail Server v2.0 beta by fuGich...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.38 views

Mandrake Linux Security Advisory : samba (MDKSA-2007:034)

A logic error in the deferred open code for smbd may allow an authenticated user to exhaust resources such as memory and CPU on the server by opening multiple CIFS sessions, each of which will normally spawn a new smbd process, and sending each connection into an infinite loop. CVE-2007-0452 The...

7.5CVSS8.2AI score0.06412EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.32 views

SUSE-SA:2007:013: xine-ui,xine-lib,xine-extra,xine-devel

The remote host is missing the patch for the advisory SUSE-SA:2007:013 xine-ui,xine-lib,xine-extra,xine-devel. This update fixes several format string bugs that can be exploited remotely with user-assistance to execute arbitrary code. Since SUSE Linux version 10.1 format string bugs are not...

6.8CVSS5.9AI score0.11975EPSS
Exploits3
Rows per page
Query Builder