51 matches found
[SECURITY] [DSA 1127-1] New ethereal packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1127-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 28th, 2006 http://www.debian.org/security/faq -...
DSA-1127 ethereal - several
Bulletin has no description...
ca3de - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/12727/info Ca3DE is reported prone to multiple remote vulnerabilities. An attacker can exploit these issues to carry out format string and denial of service attacks. The following specific issues were identified: It is reported that all commands accepted ...
Debian DSA-277-1 : apcupsd - buffer overflows, format string
The controlling and management daemon apcupsd for APC's Unbreakable Power Supplies is vulnerable to several buffer overflows and format string attacks. These bugs can be exploited remotely by an attacker to gain root access to the machine apcupsd is running on. %NASLMINLEVEL 70300 C Tenable Netwo...
GLSA-200404-14 : Multiple format string vulnerabilities in cadaver
The remote host is affected by the vulnerability described in GLSA-200404-14 Multiple format string vulnerabilities in cadaver Cadaver code includes the neon library, which in versions 0.24.4 and previous is vulnerable to multiple format string attacks. The latest version of cadaver uses version...
Asterisk PBX 0.7.x - Multiple Logging Format String Vulnerabilities
Asterisk PBX 0.7.x - Multiple Logging Format String Vulnerabilities source: https://www.securityfocus.com/bid/10569/info It is reported that Asterisk is susceptible to format string vulnerabilities in its logging functions. An attacker may use these vulnerabilities to corrupt memory, and read or...
OpenOffice.org vulnerability when using DAV servers
Background OpenOffice.org is an office productivity suite, including word processing, spreadsheets, presentations, drawings, data charting, formula editing, and file conversion facilities. Description OpenOffice.org includes code from the Neon library in functions related to publication on WebDAV...
Multiple FTP Server setproctitle Function Arbitrary Command Execution
The remote FTP server misuses the function setproctitle and may allow an attacker to gain a root shell on this host by logging in as 'anonymous' and providing a carefully crafted format string as its email address. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11391...
CVE-2001-0570
minicom 1.83.1 and earlier allows a local attacker to gain additional privileges via numerous format string attacks...
CVE-2001-0570
CVE-2001-0570 affects minicom 1.83.1 and earlier. The root cause is format-string handling allowing a local attacker to gain additional privileges (local, low complexity, no authentication). The impact is privilege escalation with complete confidentiality, integrity, and availability concerns as ...
Libc locale - Local Privilege Escalation (2)
/ source: https://www.securityfocus.com/bid/1634/info ectiva 4.x/5.x,Debian 2.x,IBM AIX 3.x/4.x,Mandrake 7,RedHat 5.x/6.x,IRIX 6.x, Solaris 2.x/7/8,Turbolinux 6.x,Wirex Immunix OS 6.2 Locale Subsystem Format String Many UNIX operating systems provide internationalization support according to the...