CVE-2001-0060

CVE-2001-0060 affects stunnel up to version 3.8 and earlier. The vulnerability is a format-string flaw in handling the ident username, enabling an attacker to execute arbitrary commands. Connected advisories reference Debian DSA 009-1 and indicate the need to update/stabilize stunnel; no exploit ...

CVE-2001-0197

CVE-2001-0197 affects the Icecast server: vulnerable in the print_client function for Icecast versions 1.3.8beta2 and earlier. The issue is a format-string vulnerability that allows remote attackers to execute arbitrary commands. The Debian advisory notes fixes in Icecast 1.3.10-1, indicating a p...

CVE-2001-0013

CVE-2001-0013 describes a format-string vulnerability in the nslookupComplain() routine of ISC BIND 4. This flaw allows remote attackers to execute code with the BIND process’ privileges (typically root) by sending specially crafted DNS input. The CERT/CC note (CA-2001-02) identifies vulnerable v...

CVE-2001-0318

CVE-2001-0318 corresponds to a format-string vulnerability in ProFTPD 1.2.0rc2 that could allow an attacker to execute arbitrary commands by shutting down the FTP server while a malformed working directory (cwd) is in use. The vulnerability is remote and unauthenticated per the CVSS data, with At...

CVE-2001-0060

Format string vulnerability in stunnel 3.8 and earlier allows attackers to execute arbitrary commands via a malformed ident username...

CVE-2001-0318

Format string vulnerability in ProFTPD 1.2.0rc2 may allow attackers to execute arbitrary commands by shutting down the FTP server while using a malformed working directory cwd...

CVE-2001-0197

Format string vulnerability in printclient in icecast 1.3.8beta2 and earlier allows remote attackers to execute arbitrary commands...

CVE-2001-0193

CVE-2001-0193 describes a format-string vulnerability in the man page viewer, observed in some Linux distributions via the -l parameter, enabling local privilege escalation. Connected documents identify Debian as affected via the man-db package and reference Debian Security Advisory DSA-028-1, wh...

CVE-2001-0218

Format string vulnerability in marsnwe 0.99.pl19 allows remote attackers to execute arbitrary commands...

CVE-2001-0111

CVE-2001-0111 : The vulnerability affects the splitvt utility (before 1.6.5). It is a format-string flaw that can allow a local attacker to run arbitrary commands via the -rcfile argument. Debian’s DSA-014-2 describes a buffer overflow/format-string attack with root access risk; remediation is up...

EUVD-2001-0013

Format string vulnerability in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges...

CVE-2001-0193

Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter...

WU-FTPD 2.4.22.5 .02.6.0 - Remote Format String Stack Overwrite (3)

WU-FTPD 2.4.22.5 .02.6.0 - Remote Format String Stack Overwrite 3 source: https://www.securityfocus.com/bid/1387/info Washington University ftp daemon wu-ftpd is a very popular unix ftp server shipped with many distributions of Linux and other UNIX operating systems. Wu-ftpd is vulnerable to a ve...

minicom exploit

This advisory was posted Wed Apr 11 08:06:49 2001 to bugzilla.redhat.com/bugzilla and became inaccessable not long after. I went to add more information, a couple of days after and had been locked out, so I tried emailing the QAContact this information on Tue Apr 24 , but received no reply. Now...

WU-FTPD 2.4.2/2.5 .0/2.6.0 - Remote Format String Stack Overwrite (3)

source: https://www.securityfocus.com/bid/1387/info Washington University ftp daemon wu-ftpd is a very popular unix ftp server shipped with many distributions of Linux and other UNIX operating systems. Wu-ftpd is vulnerable to a very serious remote attack in the SITE EXEC implementation. Because ...

Дырка в minicom (format string)

Ошибки форматной строки egid uucp...

CVE-2001-0193

Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter...

[RHSA-2001:053-06] gftp format string vulnerability corrected

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: gftp format string vulnerability corrected Advisory ID: RHSA-2001:053-06 Issue date: 2001-04-20 Updated on: 2001-04-23 Product: Red Hat Linux Keywords: gftp format Cross...

Дырка в gftp (format string)

Ошибка форматной строки...

FreeBSD-SA-01:34.hylafax

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:34 Security Advisory FreeBSD, Inc. Topic: hylafax contains local compromise Category: ports Module: hylafax Announced: 2001-04-23 Credits: Marcin Dawcewicz Affects: Ports...