CVE-2004-1900

Format string vulnerability in the logging function in IGI 2 Covert Strike server 1.3 and earlier allows remote attackers to execute arbitrary code via format string specifiers in RCON commands...

CVE-2004-1917

Format string vulnerability in testfuncfunc in LCDProc 0.4.1 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the str variable...

Oops! proxy format string vulnerability

Format string bug during database logging...

[NEWS] Ethereal Protocol Dissectors Buffer Overflow Vulnerabilities

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

CVE-2005-1463

CVE-2005-1463 refers to multiple format-string vulnerabilities in Ethereal before 0.10.11, affecting the DHCP and ANSI A dissectors. The root cause is format-string handling that allows remote attackers to execute arbitrary code. The advisory notes that upgrading Ethereal to version 0.10.11 elimi...

CVE-2005-1463

Multiple format string vulnerabilities in the 1 DHCP and 2 ANSI A dissectors in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code...

CVE-2005-1463

Multiple format string vulnerabilities in the 1 DHCP and 2 ANSI A dissectors in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code...

CVE-2005-1463

Multiple format string vulnerabilities in the 1 DHCP and 2 ANSI A dissectors in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code...

dSMTP Mail Server 3.1b Linux Remote Root Format String Exploit

No description provided by source. / dSMTP - SMTP Mail Server 3.1b Linux Remote Root Format String Exploit cybertronicatgmxdotnet 05/05/2005 This exploits the "xtellmail" command! bindc0de breaks somehow, cb works fine! remote buffer space is about 256 bytes bad chars: 0x00, 0x20, 0x0a and prolly...

Oops!: Remote code execution

Background Oops! is an advanced, multithreaded caching web proxy. Description A format string flaw has been detected in the myxlog function of the Oops! proxy, which is called by the passwdmysql and passwdpgsql module's auth functions. Impact A remote attacker could send a specially crafted HTTP...

NetWin DMail Server Multiple Remote Vulnerabilities

The installation of NetWin DMail on the remote host suffers from an authentication bypass vulnerability in its mailing list server component, DList, and a format string vulnerability in the SMTP server component, DSmtp. An attacker can exploit the first to reveal potentially sensitive log...

dSMTP Mail Server 3.1b (Linux) - Format String

dSMTP Mail Server 3.1b Linux - Format String / dSMTP - SMTP Mail Server 3.1b Linux Remote Root Format String Exploit cybertronicatgmxdotnet 05/05/2005 This exploits the "xtellmail" command! bindc0de breaks somehow, cb works fine! remote buffer space is about 256 bytes bad chars: 0x00, 0x20, 0x0a...

dSMTP Mail Server 3.1b Linux Remote Root Format String Exploit

Exploit for linux platform in category remote exploits ============================================================== dSMTP Mail Server 3.1b Linux Remote Root Format String Exploit ============================================================== / dSMTP - SMTP Mail Server 3.1b Linux Remote Root...

PT-2005-2459 · Ethereal +1 · Ethereal +1

Name of the Vulnerable Software and Affected Versions: Ethereal versions prior to 0.10.11 Description: The issue concerns multiple format string vulnerabilities in the DHCP and ANSI A dissectors. These vulnerabilities may allow remote attackers to execute arbitrary code. Recommendations: For...

dSMTP Mail Server 3.1b (Linux) - Format String

/ dSMTP - SMTP Mail Server 3.1b Linux Remote Root Format String Exploit cybertronicatgmxdotnet 05/05/2005 This exploits the "xtellmail" command! bindc0de breaks somehow, cb works fine! remote buffer space is about 256 bytes bad chars: 0x00, 0x20, 0x0a and prolly more NOTE: before you start, chang...

[SA15242] NetWin DMail Server Two Vulnerabilities

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: NetWin DMail Server Two Vulnerabilities SECUNIA ADVISO...

NetWin DMail mail server multiple vulnerabilities

Unauthenticated maling lists access, SMTP format string vulnerability...

CVE-2005-1401

The CVE-2005-1401 entry describes a format-string vulnerability in the Mtp-Target client (versions 1.2.2 and earlier). The underlying issue is a format string flaw that can allow remote attackers to execute arbitrary code via game messages or other text sent to the client. Documented impact is re...

CVE-2005-1441

Format string vulnerability in Lotus Domino 6.0.x before 6.0.5 and 6.5.x before 6.5.4 allows remote attackers to cause a denial of service via the Notes protocol NRPC...

CVE-2005-1394

Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain privileges via format string specifiers in the ARCHOME environment variable to 1 wservice or 2 lockmgr...