Monolith Lithtech Game Engine - Multiple Remote Format String Vulnerabilities

// source: https://www.securityfocus.com/bid/11610/info Lithtech game engine is prone to multiple remote format-string vulnerabilities because of incorrect usage of 'printf'-type functions. Format specifiers can be supplied directly to vulnerable functions from external data. A denial-of-service...

[SECURITY] [DSA 584-1] New dhcp packages fix format string vulnerability

-------------------------------------------------------------------------- Debian Security Advisory DSA 584-1 [email protected] http://www.debian.org/security/ Martin Schulze November 4th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 584-1] New dhcp packages fix format string vulnerability

-------------------------------------------------------------------------- Debian Security Advisory DSA 584-1 [email protected] http://www.debian.org/security/ Martin Schulze November 4th, 2004 http://www.debian.org/security/faq -...

DSA-584-1 dhcp - format string vulnerability

Bulletin has no description...

Cherokee Web Server < 0.4.17.1 auth_pam Authentication Format String

Binary data 2383.prm...

Speedtouch USB driver for linux format string bugs

Format string bug on syslog call...

Proxytunnel: Format string vulnerability

Background Proxytunnel is a program that tunnels connections to a remote server through a standard HTTPS proxy. Description Florian Schilhabel of the Gentoo Linux Security Audit project found a format string vulnerability in Proxytunnel. When the program is started in daemon mode -a port, it...

proxytunnel format string bug

Format string bug on syslog...

[Full-Disclosure] [ GLSA 200411-07 ] Proxytunnel: Format string vulnerability

Gentoo Linux Security Advisory GLSA 200411-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

GLSA-200411-07 : Proxytunnel: Format string vulnerability

The remote host is affected by the vulnerability described in GLSA-200411-07 Proxytunnel: Format string vulnerability Florian Schilhabel of the Gentoo Linux Security Audit project found a format string vulnerability in Proxytunnel. When the program is started in daemon mode -a port, it improperly...

Cherokee Web Server auth_pam Authentication Format String

The remote host is running Cherokee - a fast and tiny web server. The remote version of this software is vulnerable to a format string attack when processing authentication requests using authpam. This could allow a remote attacker to cause a denial of service, or potentially execute arbitrary...

Speedtouch USB driver: Privilege escalation vulnerability

Background The speedtouch package contains a driver for the ADSL SpeedTouch USB modem. Description The Speedtouch USB driver contains multiple format string vulnerabilities in modemrun, pppoa2 and pppoa3. This flaw is due to an improperly made syslog system call. Impact A malicious local user cou...

[ GLSA 200411-02 ] Cherokee: Format string vulnerability

Gentoo Linux Security Advisory GLSA 200411-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

Cherokee formatstring bug

Format string bug on syslog call and gile logging in NCSA format, cherokeeloggerncsawritestring...

GLSA-200411-02 : Cherokee: Format string vulnerability

The remote host is affected by the vulnerability described in GLSA-200411-02 Cherokee: Format string vulnerability Florian Schilhabel from the Gentoo Linux Security Audit Team found a format string vulnerability in the cherokeeloggerncsawritestring function. Impact : Using a specially crafted URL...

GLSA-200411-04 : Speedtouch USB driver: Privilege escalation vulnerability

The remote host is affected by the vulnerability described in GLSA-200411-04 Speedtouch USB driver: Privilege escalation vulnerability The Speedtouch USB driver contains multiple format string vulnerabilities in modemrun, pppoa2 and pppoa3. This flaw is due to an improperly made syslog system cal...

Cherokee: Format string vulnerability

Background Cherokee is an extra-light web server. Description Florian Schilhabel from the Gentoo Linux Security Audit Team found a format string vulnerability in the cherokeeloggerncsawritestring function. Impact Using a specially crafted URL when authenticating via authpam, a malicious user may ...

proxytunnel -- format string vulnerability

A Gentoo Linux Security Advisory reports: Florian Schilhabel of the Gentoo Linux Security Audit project found a format string vulnerability in Proxytunnel. When the program is started in daemon mode -a port, it improperly logs invalid proxy answers to syslog. A malicious remote server could send...

qwik-smtpd format string bug

Format string bug on file logging...

bug.

-= Unl0ck Team Security Advisory =- | | | | | | / | | / | | / / / | |/ / | |/ / | | / | | / | | | / / | Y Y |/|| // / | || /|| / / / / / / / / ... the best way of protection is attack http://unl0ck.net.ru || http://unl0ck.info Advisory : 9 by unl0ck team Product : qwik-smtpd latest version. Vendo...