Debian DSA-749-1 : ettercap - format string error

A vulnerability was discovered in the ettercap package which could allow a remote attacker to execute arbitrary code on the system running ettercap. The old stable distribution woody did not include ettercap. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

[SECURITY] [DSA 749-1] New ettercap packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA 749-1 [email protected] http://www.debian.org/security/ Michael Stone July 10, 2005 http://www.debian.org/security/faq - ------------------------------------------------------------------------...

[SECURITY] [DSA 749-1] New ettercap packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA 749-1 [email protected] http://www.debian.org/security/ Michael Stone July 10, 2005 http://www.debian.org/security/faq - ------------------------------------------------------------------------...

CVE-2004-2160

XMLStarlet Command Line XML Toolkit 0.9.3 is affected by a format string vulnerability in xml_elem.c, as described for CVE-2004-2160. The issue enables denial of service or arbitrary code execution and is exploitable via network access with low attack complexity, according to the NVD entry. Affec...

CVE-2004-2160

Format string vulnerability in xmlelem.c for XMLStarlet Command Line XML Toolkit 0.9.3 may allow attackers to cause a denial of service or execute arbitrary code...

CVE-2004-2160

Format string vulnerability in xmlelem.c for XMLStarlet Command Line XML Toolkit 0.9.3 may allow attackers to cause a denial of service or execute arbitrary code...

Ettercap contains a format string error in the "curses_msg()" function

Overview Ettercap has a format string vulnerability in the ncurses user interface. Description Ettercap is open-source software designed for man-in-the-middle attacks on LANs. Ettercap contains multiple user interfaces, including one written using ncurses, a library for manipulating text screens...

multihtml.c.exploit.txt

Multihtml.c Security Advisory Pot Kettle Industries Topic: Multihtml.c exploit remote vulnerability Category: Remote for Remote Vendor: bansh33 , r00tabega security labs Announced: 2005-06-10 Credits: Pot Kettle Industries Affects: All Platforms Corrected: N/A URL: http://potkettle.net/advisories...

CVE-2005-2083

CVE-2005-2083 affects IA eMailServer Corporate Edition 5.2.2 build 1051. The IMAP4 LIST command accepts format string specifiers, enabling remote attackers to trigger a denial of service (application crash). The entry documents a remote DoS condition with no additional exploitation details provid...

CVE-2005-2083

Format string vulnerability in IMAP4 in IA eMailServer Corporate Edition 5.2.2 build 1051 allows remote attackers to cause a denial of service application crash via a LIST command with format string specifiers as the second argument...

CVE-2002-1788

Format string vulnerability in the nnexitmsg function in nn 6.6.0 through 6.6.3 allows remote NNTP servers to execute arbitrary code via format strings in server responses...

CVE-2002-1789

Format string vulnerability in newsx NNTP client before 1.4.8 allows local users to execute arbitrary code via format string specifiers that are not properly handled in a call to the syslog function...

CVE-2002-1789

CVE-2002-1789 : A format string vulnerability in the newsx NNTP client (pre-1.4.8) allows local users to execute arbitrary code via format specifiers that are mishandled in a call to syslog. Affected component: newsx NNTP client; root cause: improper handling of format specifiers in a syslog invo...

CVE-2002-1788

CVE-2002-1788 affects nn (NN) versions 6.6.0–6.6.3, where the nn_exitmsg function is vulnerable to a format-string issue that can let remote NNTP servers cause arbitrary code execution via crafted server responses. The available documents confirm the vulnerability but do not provide exploit code,...

CVE-2002-1825

Summary (CVE-2002-1825): A format-string vulnerability in PerlRTE_example1.pl used by WASD versions 7.1, 7.2.0–7.2.3, and 8.0.0 allows remote attackers to execute arbitrary commands or crash the server via format strings in the $name variable. The NVD entry lists a CVSS v2 base score of 6.4 (MEDI...

CVE-2002-1825

Format string vulnerability in PerlRTEexample1.pl in WASD 7.1, 7.2.0 through 7.2.3, and 8.0.0 allows remote attackers to execute arbitrary commands or crash the server via format strings in the $name variable...

IA eMailServer IMAP4 LIST Command Format String Remote DoS

The remote host is running True North Software's IA eMailServer, a messaging system for Windows. The remote version of IA eMailServer suffers from a format string vulnerability leading to a denial of service that can be exploited by an authenticated user when sending a specially crafted IMAP LIST...

[Full-disclosure] multihtml exploit vulnerability advisory

Multihtml.c Security Advisory Pot Kettle Industries http://potkettle.net Topic: Multihtml.c exploit remote vulnerability Category: Remote for Remote Vendor: bansh33 [email protected], r00tabega security labs http://www.r00tabega.org Announced: 2005-06-10 Credits: Pot Kettle Industries Affects:...

IA eMailServer IMAP format string vulnerability

IMAP mail server LIST command format strinb vulnerability...

CVE-2002-1675

Consolidated data confirms CVE-2002-1675 is a format string vulnerability in Unreal IRCd 3.1.1’s Cio_PrintF function within cio_main.c. The root cause is improper handling of format strings, enabling remote attackers to trigger a denial of service (crash) and potentially execute arbitrary code. T...