8513 matches found
Multiple bugs in ICQ 2003
Format string bug in integer overflows in POP3 client, multiple DoS conditions...
Mod_Gzip 1.3.x - Debug Mode
ModGzip 1.3.x - Debug Mode // source: https://www.securityfocus.com/bid/7769/info Modgzip is reported prone to a stack overflow, format string vulnerability and a file corruption issue due to a predictable naming scheme for log files. Exploitation of these issues could result in execution of...
Mod_Gzip 1.3.x - Debug Mode
// source: https://www.securityfocus.com/bid/7769/info Modgzip is reported prone to a stack overflow, format string vulnerability and a file corruption issue due to a predictable naming scheme for log files. Exploitation of these issues could result in execution of malicious instructions or...
smallftpd multiple bugs
Directory traversal, format string bug...
mod_ntlm for Apache Multiple Remote Vulnerabilities
The remote host seems to be running modntlm, a NTLM authentication module for Apache. This version of modntlm has a buffer overflow and a format string vulnerability. A remote attacker could exploit these issues to execute arbitrary code. C Tenable Network Security, Inc. include"compat.inc"; if...
mod_ntlm format string bug
Format string bug in logging...
Mod_NTLM 0.x - Authorisation Format String
ModNTLM 0.x - Authorisation Format String source: https://www.securityfocus.com/bid/7393/info A format string vulnerability has been reported for the modntlm Apache module. The problem occurs when logging authentication strings passed in HTTP requests. By passing malicious format specifiers in a...
Mod_NTLM 0.x - Authorisation Format String
source: https://www.securityfocus.com/bid/7393/info A format string vulnerability has been reported for the modntlm Apache module. The problem occurs when logging authentication strings passed in HTTP requests. By passing malicious format specifiers in a request, it may be possibile for an attack...
CVE-2002-0690
Format string vulnerability in McAfee Security ePolicy Orchestrator ePO 2.5.1 allows remote attackers to execute arbitrary code via an HTTP GET request with a URI containing format strings...
CVE-2002-1415
Format string vulnerability in SMTP service for WebEasyMail 3.4.2.2 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via format strings in SMTP requests...
AOL Server proxy API format string bug
Format string bug on syslog call...
Multiple vulnerabilities in AutomatedShops WebC shopping cart
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Security Vulnerability Advisory Product: WebC shopping cart Versions: 2.011 - 5.005 Vulnerable to all exploits 5.010 vulnerable to local exploit Vendor: Automated Shops http://www.automatedshops.com Platforms: Linux/FreeBSD/Win32 Impact: Remote code...
Eye of Gnome contains format string vulnerability in the file name handling of command line arguments
Overview Eye of Gnome contains a format string vulnerability that may allow remote attackers to execute arbitrary code with the privileges of the user running the application, typically an unprivileged system user. Description Eye of Gnome EOG is an image viewing application that is part of the...
[SECURITY] [DSA 277-1] New apcupsd packages fix remote root exploit
-------------------------------------------------------------------------- Debian Security Advisory DSA 277-1 [email protected] http://www.debian.org/security/ Martin Schulze April 3rd, 2003 http://www.debian.org/security/faq -...
[SECURITY] [DSA 277-1] New apcupsd packages fix remote root exploit
-------------------------------------------------------------------------- Debian Security Advisory DSA 277-1 [email protected] http://www.debian.org/security/ Martin Schulze April 3rd, 2003 http://www.debian.org/security/faq -...
DSA-277 apcupsd - buffer overflows, format string
Bulletin has no description...
Format string vulnerability in SSLtelnet
SSLtelnet contains a format string vulnerability that could allow remote code execution and privilege escalation...
CVE-2002-0598
Foundstone FScan 1.12 with banner grabbing enabled is affected by a format string vulnerability in the server banner that can allow remote code execution. The issue is documented with a CVE listing and a CVSS v2 base score of 7.5 (HIGH); impact is partial on confidentiality, integrity, and availa...
CVE-2002-0501
Format string vulnerability in logprint function of Posadis DNS server before version m5pre2 allows local users and possibly remote attackers to execute arbitrary code via format strings that are inserted into logging messages...
CVE-2002-0817
Format string vulnerability in super for Linux allows local users to gain root privileges via a long command line argument...