CVE-2005-2409

Format string vulnerability in util.c in nbsmtp 0.99 and earlier, while running in debug mode, allows remote attackers to execute arbitrary code via format string specifiers that are not properly handled in a syslog call...

CVE-2005-2409

The vulnerability is in nbSMTP 0.99 and earlier (util.c) where, when in debug mode, format string specifiers are mishandled in a syslog call, allowing remote code execution. Affected product: nbSMTP (nbSMTP). Root cause: improper handling of format strings in a syslog path. Impact: arbitrary code...

GNU Mailutils imap4d 0.6 - Remote Format String

GNU Mailutils imap4d 0.6 - Remote Format String / mu-imap4dfsexp.c GNU Mailutils imap4d v0.6 remote format string exploit by CoKi Original Reference: http://www.idefense.com/application/poi/display?id=246&type=vulnerabilities coki@nosystem:/home/coki/audit$ ./mu-imap4dfsexp GNU Mailutils imap4d...

ProFTPD: Format string vulnerabilities

Background ProFTPD is a configurable GPL-licensed FTP server software. Description "infamous42md" reported that ProFTPD is vulnerable to format string vulnerabilities when displaying a shutdown message containing the name of the current directory, and when displaying response messages to the clie...

FreeBSD : isc-dhcpd -- format string vulnerabilities (ccd325d2-fa08-11d9-bc08-0001020eed82)

The ISC DHCP programs are vulnerable to several format string vulnerabilities which may allow a remote attacker to execute arbitrary code with the permissions of the DHCP programs, typically root for the DHCP server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

FreeBSD : ethereal -- multiple protocol dissectors vulnerabilities (5d51d245-00ca-11da-bc08-0001020eed82)

An Ethreal Security Advisories reports : Our testing program has turned up several more security issues : - The LDAP dissector could free static memory and crash. - The AgentX dissector could crash. - The 802.3 dissector could go into an infinite loop. - The PER dissector could abort. - The DHCP...

GNU Mailutils imap4d <= 0.6 Remote Format String Exploit

Exploit for linux platform in category remote exploits ======================================================== GNU Mailutils imap4d Original Reference: http://www.idefense.com/application/poi/display?id=246&type=vulnerabilities email protected:/home/coki/audit$ ./mu-imap4dfsexp GNU Mailutils...

GNU Mailutils imap4d &lt;= 0.6 Remote Format String Exploit

No description provided by source. / mu-imap4dfsexp.c GNU Mailutils imap4d v0.6 remote format string exploit by CoKi [email protected] Original Reference: http://www.idefense.com/application/poi/display?id=246&type=vulnerabilities coki@nosystem:/home/coki/audit$ ./mu-imap4dfsexp GNU Mailutils...

FreeBSD : nbsmtp -- format string vulnerability (debbb39c-fdb3-11d9-a30d-00b0d09acbfc)

When nbsmtp is executed in debug mode, server messages will be printed to stdout and logged via syslog. Syslog is used insecurely and user-supplied format characters are directly fed to the syslog function, which results in a format string vulnerability. Under some circumstances, an SMTP server m...

GNU Mailutils imap4d 0.6 - Remote Format String

/ mu-imap4dfsexp.c GNU Mailutils imap4d v0.6 remote format string exploit by CoKi Original Reference: http://www.idefense.com/application/poi/display?id=246&type=vulnerabilities coki@nosystem:/home/coki/audit$ ./mu-imap4dfsexp GNU Mailutils imap4d v0.6 remote format string exploit by CoKi use:...

GLSA-200507-27 : Ethereal: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200507-27 Ethereal: Multiple vulnerabilities There are numerous vulnerabilities in versions of Ethereal prior to 0.10.12, including: The SMB dissector could overflow a buffer or exhaust memory CAN-2005-2365. iDEFENSE discovered th...

Fedora Core 4 : NetworkManager-0.4-20.FC4.1 (2005-680)

Network Manager passes logging messages straight to syslog as the format string. This causes it to crash when connecting to access points that contain format string characters. This was reported initially by Ian Jackson : http://mail.gnome.org/archives/networkmanager-list/2005-July/msg00196. html...

CVE-2005-2390

Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 allow attackers to cause a denial of service or obtain sensitive information via 1 certain inputs to the shutdown message from ftpshut, or 2 the SQLShowInfo modsql directive...

CVE-2005-2390

Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 allow attackers to cause a denial of service or obtain sensitive information via 1 certain inputs to the shutdown message from ftpshut, or 2 the SQLShowInfo modsql directive...

CVE-2005-2390

Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 allow attackers to cause a denial of service or obtain sensitive information via 1 certain inputs to the shutdown message from ftpshut, or 2 the SQLShowInfo modsql directive...

CVE-2005-2390

CVE-2005-2390 affects ProFTPD prior to 1.3.0rc2, where two format string vulnerabilities exist: one in the shutdown message generated by ftpshut and another in the mod_sql directive SQLShowInfo. The vulnerabilities can lead to information disclosure and a denial of service, with potential for arb...

ProFTPD < 1.3.0rc2 Multiple Remote Format Strings

The remote host is using ProFTPD, a free FTP server for Unix and Linux. According to its banner, the version of ProFTPD installed on the remote host suffers from multiple format string vulnerabilities, one involving the 'ftpshut' utility and the other in modsql's 'SQLShowInfo' directive...

CVE-2005-2375

Format string vulnerability in Race Driver 1.20 and earlier allows remote attackers to cause a denial of service application crash via format string specifiers in a 1 nickname or 2 chat message...

CVE-2005-2375

CVE-2005-2375 affects Race Driver (1.20 and earlier). The vulnerability is a format string issue in the nickname or chat input that can be exploited remotely to cause an application crash (DoS). The connected sources collectively confirm the affected software, the vulnerable components (format st...

CVE-2005-2375

Format string vulnerability in Race Driver 1.20 and earlier allows remote attackers to cause a denial of service application crash via format string specifiers in a 1 nickname or 2 chat message...