DEBIAN-CVE-2004-2160

Format string vulnerability in xmlelem.c for XMLStarlet Command Line XML Toolkit 0.9.3 may allow attackers to cause a denial of service or execute arbitrary code...

DEBIAN-CVE-2004-0561

Format string vulnerability in the log routine for gopher daemon gopherd 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code...

CVE-2004-1484

Format string vulnerability in the msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to execute arbitrary code via format string specifiers in a syslog message...

CVE-2004-2714

Unspecified vulnerability in Window Maker 0.80.2 and earlier allows attackers to perform unknown actions via format string specifiers in a font specification in WMGLOBAL, probably a format string vulnerability...

PT-2004-3159 · Gnu · Gnu Less

Name of the Vulnerable Software and Affected Versions: GNU less versions 358 through 382 Description: A format string bug in the open altfile function in filename.c might allow local users to cause a denial of service or possibly execute arbitrary code via format strings in the LESSOPEN environme...

PT-2004-3133 · Inter7 · Vpopmail

Name of the Vulnerable Software and Affected Versions: vpopmail version 5.4.2 and earlier Description: The issue in vsybase.c has been observed to use constants that become static format strings when compiled, thus it is not considered a vulnerability. There is no information about the impact or...

SHOUTcast < 1.9.5 Filename Remote Format String

Binary data 2476.prm...

SHOUTcast Server Filename Handling Format String

According to its banner, the version of SHOUTcast Server installed on the remote host is earlier than 1.9.5. Such versions fail to validate requests containing format string specifiers before using them in a call to 'sprintf'. An unauthenticated, remote attacker may be able to exploit this issue ...

[SECURITY] [DSA 616-1] New telnetd-ssl packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 616-1 [email protected] http://www.debian.org/security/ Martin Schulze December 23rd, 2004 http://www.debian.org/security/faq -...

SHOUTcast remote format string vulnerability

Product: SHOUTcast v1.9.4 and older? Vendor: http://www.shoutcast.com Vuln: Remote format string BugFinder: Tomasz Trojanowski onestep Author: Damian Put [email protected] www.CC-Team.org Date: Dec 23, 2004 1. BACKGROUND "SHOUTcast is Nullsoft's Free Winamp-based distributed streaming audio syste...

[SECURITY] [DSA 616-1] New telnetd-ssl packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 616-1 [email protected] http://www.debian.org/security/ Martin Schulze December 23rd, 2004 http://www.debian.org/security/faq -...

CVE-2004-0834

Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via 1 modemrun, 2 pppoa2, or 3 pppoa3...

CVE-2004-0834

Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via 1 modemrun, 2 pppoa2, or 3 pppoa3...

DEBIAN-CVE-2004-0998

Format string vulnerability in telnetd-ssl 0.17 and earlier allows remote attackers to execute arbitrary code...

Debian DSA-616-1 : netkit-telnet-ssl - format string

Joel Eriksson discovered a format string vulnerability in telnetd-ssl which may be able to lead to the execution of arbitrary code on the victims machine. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Securit...

SHOUTcast DNASLinux 1.9.4 - Format String Remote Overflow

SHOUTcast DNASLinux 1.9.4 - Format String Remote Overflow / SHOUTcast DNAS/Linux v1.9.4 format string remote exploit / / Damian Put Cyber-Crime Team www.CC-Team.org / / Tested on slackware 9.1 and 10.0 0xbf3feee0 / / When exploit only crash SHOUTcast we should calculate new address: / / / /...

SHOUTcast DNAS/Linux 1.9.4 Format String Remote Exploit

Exploit for linux platform in category remote exploits ======================================================= SHOUTcast DNAS/Linux 1.9.4 Format String Remote Exploit ======================================================= / SHOUTcast DNAS/Linux v1.9.4 format string remote exploit / / Damian Put...

DSA-616-1 telnetd-ssl - format string

Bulletin has no description...

SHOUTcast DNAS/Linux 1.9.4 - Format String Remote Overflow

/ SHOUTcast DNAS/Linux v1.9.4 format string remote exploit / / Damian Put Cyber-Crime Team www.CC-Team.org / / Tested on slackware 9.1 and 10.0 0xbf3feee0 / / When exploit only crash SHOUTcast we should calculate new address: / / / / bash-2.05b$ gdb scserv core / / ... / / gdb x/x $edi / /...

CVE-2004-1153

Adobe Acrobat Reader (Windows/macOS/Linux) versions 6.0.0–6.0.2 are affected by a DoS/vulnerability in the ETD file parser caused by a format string flaw, which can crash the app and potentially enable code execution. The OpenVAS entries corroborate a DoS impact but do not provide a patch or miti...