CVE-2005-1523

CVE-2005-1523 : GNU Mailutils imap4d has a format-string vulnerability in IMAP command tags that allows remote code execution. Affected: imap4d before 0.6.90 (and 0.5/0.6). Impact: arbitrary code execution with IMAP service privileges. Mitigation: upgrade to a version where the issue is fixed (pe...

CVE-2005-1523

Format string vulnerability in imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via format string specifiers in the command tag for IMAP commands...

iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 imap4d Format String Vulnerability

GNU Mailutils 0.6 imap4d Format String Vulnerability iDEFENSE Security Advisory 05.25.05 http://www.idefense.com/application/poi/display?type=vulnerabilities May 25, 2005 I. BACKGROUND The GNU mailutils package is a collection of mail-related utilities, including local and remote mailbox access...

SCO OpenServer Unix utilities format string bugs

Format string vulnerabilities in different utilities including sgid lp /usr/lib/nucrt/bin/nwprint...

CVE-2005-1686

Format string vulnerability in gedit 2.10.2 may allow attackers to cause a denial of service application crash via a bin file with format string specifiers in the filename. NOTE: while this issue is triggered on the command line by the gedit user, it has been reported that web browsers and email...

CVE-2005-1686

CVE-2005-1686 affects gedit/gedit-based GNOME environments. The vulnerability is a format string flaw in the handling of filenames (format specifiers in filenames) that could lead to a crash and, per multiple advisories, may allow arbitrary code execution. Public discussions in various advisories...

[SA15473] Iron Bars SHell Format String Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

ibsh Iron Bars SHell Format String Vulnerability format string bug

Format string bug allows restricted shell escaping...

Berlios GPSD 1.91-1 2.7-2 - Format String

Berlios GPSD 1.91-1 2.7-2 - Format String require 'msf/core' class Metasploit3 'Berlios GPSD Format String Vulnerability', 'Description' = %q This module exploits a format string vulnerability in the Berlios GPSD server. This vulnerability was discovered by Kevin Finisterre. , 'Author' = 'Yann...

Berlios GPSD 1.91-1 - 2.7-2 Format String Vulnerability

No description provided by source. require 'msf/core' class Metasploit3 Msf::Exploit::Remote include Msf::Exploit::Remote::Tcp def initializeinfo = superupdateinfoinfo, 'Name' = 'Berlios GPSD Format String Vulnerability', 'Description' = %q This module exploits a format string vulnerability in th...

Berlios GPSD 1.91-1 < 2.7-2 - Format String

require 'msf/core' class Metasploit3 'Berlios GPSD Format String Vulnerability', 'Description' = %q This module exploits a format string vulnerability in the Berlios GPSD server. This vulnerability was discovered by Kevin Finisterre. , 'Author' = 'Yann Senotier ' , 'License' = MSFLICENSE, 'Versio...

security flaw

Multiple format string vulnerabilities in the 1 DHCP and 2 ANSI A dissectors in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code...

CVE-2005-1702

Format string vulnerability in Warrior Kings: Battles 1.23 and earlier and Warrior Kings 1.3 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a nickname...

CVE-2005-1738

The provided CVE-2005-1738 data describes a format-string vulnerability in the logPrintBadfile function of delbadfiles.c in Iron Bars SHell (ibsh) prior to version 0.3d. The flaw, triggered by certain inputs not properly handled in a syslog call, allows access to files outside the home directory ...

CVE-2005-1692

CVE-2005-1692 affects gxine 0.4.4 and earlier (down to 0.3) where a ram file with a hostname containing format string specifiers can lead to remote code execution. The issue was publicly documented across multiple advisories (Slackware SSA 2005-203-04, Gentoo GLSA 200505-19, etc.). The root cause...

CVE-2005-1692

Removed by vendor...

CVE-2005-1692

Format string vulnerability in gxine 0.4.1 through 0.4.4, and other versions down to 0.3, allows remote attackers to execute arbitrary code via a ram file with a URL whose hostname contains format string specifiers...

CVE-2005-1702

CVE-2005-1702 affects Warrior Kings: Battles 1.23 and earlier and Warrior Kings 1.3 and earlier. It is a format string vulnerability in the nickname field that could allow remote attackers to execute arbitrary code. Root cause: improper handling of format string specifiers in a nickname. Impact: ...

CVE-2005-1738

Format string vulnerability in the logPrintBadfile function in delbadfiles.c Iron Bars SHell ibsh before 0.3d allows users to "access files outside the home directory" and possibly execute arbitrary code via certain inputs that are not properly handled in a syslog call...

CVE-2005-1702

Format string vulnerability in Warrior Kings: Battles 1.23 and earlier and Warrior Kings 1.3 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a nickname...