Lucene search
K

3112 matches found

NVD
NVD
added 2001/09/23 4:0 a.m.20 views

CVE-2001-1034

Format string vulnerability in Hylafax on FreeBSD allows local users to execute arbitrary code via format specifiers in the -h hostname argument for 1 faxrm or 2 faxalter...

7.2CVSS7.1AI score0.0047EPSS
Exploits0References3
OSV
OSV
added 2001/09/23 4:0 a.m.2 views

DEBIAN-CVE-2001-1034

Format string vulnerability in Hylafax on FreeBSD allows local users to execute arbitrary code via format specifiers in the -h hostname argument for 1 faxrm or 2 faxalter...

7.2CVSS7.3AI score0.0047EPSS
Exploits0References1
NVD
NVD
added 2001/09/20 4:0 a.m.20 views

CVE-2001-0690

Format string vulnerability in exim 3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva in batched SMTP mode allows a remote attacker to execute arbitrary code via format strings in SMTP mail headers...

7.5CVSS7.5AI score0.11891EPSS
Exploits2References6
Cvelist
Cvelist
added 2001/09/18 4:0 a.m.24 views

CVE-2001-0387

Format string vulnerability in hfaxd in HylaFAX before 4.1.b22 allows local users to gain privileges via the -q command line argument...

6.6AI score0.00374EPSS
Exploits0References8
CVE
CVE
added 2001/09/18 4:0 a.m.40 views

CVE-2001-0489

The CVE-2001-0489 entry concerns gftp before version 2.0.8, where a printf/format string vulnerability in the logging of network data allows a remote FTP server to cause arbitrary commands to be executed. Affected component is the gftp client; root cause is unsafe handling of data received from t...

7.5CVSS7.3AI score0.01995EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2001/09/18 4:0 a.m.46 views

CVE-2001-0387

CVE-2001-0387 is a format-string vulnerability in HylaFAX’s hfaxd that allows local users to gain privileges via the -q command-line argument in versions prior to 4.1.b2_2. The issue is documented across multiple sources (NVD, CVE list, Debian/DSA and Mandrake advisory). Exploitation would enable...

7.2CVSS6.6AI score0.00374EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2001/09/18 4:0 a.m.28 views

CVE-2001-0473

Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands...

7.3AI score0.0206EPSS
Exploits0References7
Cvelist
Cvelist
added 2001/09/18 4:0 a.m.24 views

CVE-2001-0155

Format string vulnerability in VShell SSH gateway 1.0.1 and earlier allows remote attackers to execute arbitrary commands via a user name that contains format string specifiers...

7.6AI score0.02715EPSS
Exploits0References2
CVE
CVE
added 2001/09/12 4:0 a.m.58 views

CVE-1999-1417

The CVE-1999-1417 entry documents a format string vulnerability in AnswerBook2 (AB2) web server dwhttpd 3.1a4. The issue arises in the web server’s handling of HTTP requests containing encoded percent characters, which are logged improperly. This can lead to a denial of service and, in some cases...

7.5CVSS7.9AI score0.0189EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2001/08/14 4:0 a.m.20 views

CVE-2001-0522

Format string vulnerability in Gnu Privacy Guard aka GnuPG or gpg 1.05 and earlier can allow an attacker to gain privileges via format strings in the original filename that is stored in an encrypted file...

7.5CVSS6.4AI score0.13728EPSS
Exploits0References14
NVD
NVD
added 2001/08/02 4:0 a.m.15 views

CVE-2001-0609

Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function...

10CVSS9.5AI score0.18235EPSS
Exploits1References3
Cvelist
Cvelist
added 2001/07/27 4:0 a.m.20 views

CVE-2001-0609

Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function...

9.6AI score0.18235EPSS
Exploits1References3
CVE
CVE
added 2001/07/27 4:0 a.m.54 views

CVE-2001-0609

CVE-2001-0609 affects Infodrom cfingerd 1.4.3 and earlier. A format string vulnerability in the ident reply that is passed to the syslog function enables a remote attacker to gain additional privileges. Several connected sources corroborate that cfingerd’s logging/ident handling allows privilege ...

10CVSS9.6AI score0.18235EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2001/07/26 4:0 a.m.28 views

CVE-2001-1022

Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command...

7.5CVSS7.5AI score0.11438EPSS
Exploits1References8
securityvulns
securityvulns
added 2001/07/26 12:0 a.m.56 views

top format string bug exploit code (exploitable)

hi. It still seems to be affected under 3.5beta9 including this version someone said it's not the problem of exploitable vulnerability about 8 month ago , but it's possible to exploit though situation is difficult. following code and some procedure comments demonstrate it. possible to get kmem...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2001/07/23 12:0 a.m.19 views

FreeBSD - usrbintop Format String

FreeBSD - usrbintop Format String / freebsd x86 top exploit affected under top-3.5beta9 including this version 1. get the address of .dtors from /usr/bin/top using objdump , 'objdump -s -j .dtors /usr/bin/top' 2. divide it into four parts, and set it up into an environment variable like "XSEO=" 3...

0.1AI score
Exploits0
NVD
NVD
added 2001/07/16 4:0 a.m.25 views

CVE-2001-1308

Format string vulnerabilities in iPlanet Directory Server 4.1.4 and earlier LDAP allow remote attackers to cause a denial of service crash and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite...

7.5CVSS7.6AI score0.04584EPSS
Exploits0References8
NVD
NVD
added 2001/07/12 4:0 a.m.15 views

CVE-2001-1176

Format string vulnerability in Check Point VPN-1/FireWall-1 4.1 allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection...

7.5CVSS7.2AI score0.02756EPSS
Exploits0References5
FreeBSD Advisory
FreeBSD Advisory
added 2001/07/10 12:0 a.m.5 views

FreeBSD-SA-01:44.gnupg

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:44 Security Advisory FreeBSD, Inc. Topic: gnupg contains format string vulnerability Category: ports Module: gnupg Announced: 2001-07-10 Credits: fish stiqz Affects: Port...

6.1AI score
Exploits0
securityvulns
securityvulns
added 2001/07/03 12:0 a.m.43 views

Удаленный root через rpc.statd

Ошибка форматной строки приводит к возможности выплонения кода с привилегиями root...

0.8AI score
Exploits0References5Affected Software6
Rows per page
Query Builder