8497 matches found
CVE-2005-0312
WarFTPD 1.82 RC9, when running as an NT service, allows remote authenticated users to cause a denial of service access violation via a CWD command with a crafted pathname, as demonstrated using a large string of "%s" sequences, possibly indicating a format string vulnerability...
CVE-2005-0276
Multiple format string vulnerabilities in the FTP service in 3Com 3CDaemon 2.0 revision 10 allow remote attackers to cause a denial of service application crash via format string specifiers in 1 the username, 2 cd, 3 delete, 4 rename, 5 rmdir, 6 literal, 7 stat, or 8 CWD commands...
CVE-2005-0280
CVE-2005-0280: A format-string vulnerability in Soldner Secret Wars (version 30830 and earlier) affects the server’s message handling. The flaw allows remote attackers to trigger a denial of service (server crash) and potentially execute arbitrary code via format string specifiers in a message. T...
CVE-2005-0312
WarFTPd (WarFTPD) 1.82 RC9/RC11 contains a denial-of-service vulnerability exploitable by a crafted CWD path consisting of a long string of "%s" sequences, potentially indicating a format-string issue. The flaw affects remote authenticated users (NT service context noted for RC9). Public referenc...
Debian DSA-670-1 : emacs20 - format string
Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs, the well-known editor. Via connecting to a malicious POP server an attacker can execute arbitrary code under the privileges of group mail. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
RHEL 2.1 / 3 : emacs (RHSA-2005:112)
Updated Emacs packages that fix a string format issue are now available. Emacs is a powerful, customizable, self-documenting, modeless text editor. Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs. If a user connects to a malicious POP server, an...
Debian DSA-671-1 : xemacs21 - format string
Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs, the well-known editor. Via connecting to a malicious POP server an attacker can execute arbitrary code under the privileges of group mail. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
CVE-2004-0980
Format string vulnerability in ez-ipupdate.c for ez-ipupdate 3.0.10 through 3.0.11b8, when running in daemon mode with certain service types in use, allows remote servers to execute arbitrary code...
DEBIAN-CVE-2004-0980
Format string vulnerability in ez-ipupdate.c for ez-ipupdate 3.0.10 through 3.0.11b8, when running in daemon mode with certain service types in use, allows remote servers to execute arbitrary code...
Prozilla <= 1.3.7.3 Remote Format String Exploit
Exploit for linux platform in category remote exploits ================================================ Prozilla = 1.3.7.3 Remote Format String Exploit ================================================ / ...\ \ /--..... .::.:/ / \ :.::. .::::./ / / |/ .::::. / / | \ \ / / .\\ / . . . ..::...
Prozilla <= 1.3.7.3 Remote Format String Exploit
No description provided by source. / ...\ \ /--..... .::.:/ / \ :.::. .::::./ / / |/ .::::. / / | \ \ / / .\\ / . . . ..::.... Electronic Souls ....::.. - Prozilla vs. Gentoo Security round 2 !@ Sometime ago there was a private exploit for Prozilla and due to some kiddo who randomly 0wned...
Prozilla 1.3.7.3 - Remote Format String
Prozilla 1.3.7.3 - Remote Format String / ...\ \ /--..... .::.:/ / \ :.::. .::::./ / / |/ .::::. / / | \ \ / / .\\ / . . . ..::.... Electronic Souls ....::.. - Prozilla vs. Gentoo Security round 2 !@ Sometime ago there was a private exploit for Prozilla and due to some kiddo who randomly...
[VulnWatch] iDEFENSE Security Advisory 02.08.05: IBM AIX auditselect Local Format String Vulnerability
IBM AIX auditselect Local Format String Vulnerability iDEFENSE Security Advisory 02.08.05 www.idefense.com/application/poi/display?id=193&type=vulnerabilities February 08, 2005 I. BACKGROUND The auditselect program is a setuid root application, installed by default under multiple versions of IBM...
Prozilla 1.3.7.3 - Remote Format String
/ ...\ \ /--..... .::.:/ / \ :.::. .::::./ / / |/ .::::. / / | \ \ / / .\\ / . . . ..::.... Electronic Souls ....::.. - Prozilla vs. Gentoo Security round 2 !@ Sometime ago there was a private exploit for Prozilla and due to some kiddo who randomly 0wned ppl, all ended up with a Gentoo...
[SECURITY] [DSA 671-1] New xemacs21 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 671-1 [email protected] http://www.debian.org/security/ Martin Schulze February 8th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 670-1] New emacs20 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 670-1 [email protected] http://www.debian.org/security/ Martin Schulze February 8th, 2005 http://www.debian.org/security/faq -...
CVE-2005-0250
IBM AIX auditselect is affected by a format-string vulnerability that can allow a local user to execute arbitrary code with root privileges. The flaw arises from passing user-supplied data to formatted output routines, where printf-like functions do not adequately filter format specifiers. A loca...
CVE-2005-0250
Format string vulnerability in auditselect on IBM AIX 5.1, 5.2, and 5.3 allows local users to execute arbitrary code via format string specifiers in a command line argument...
CVE-2005-0100
The CVE-2005-0100 entry documents a format-string vulnerability in movemail used by Emacs (20.x, 21.3 and possibly other versions) and XEmacs up to 21.4, enabling remote code execution via crafted POP3 packets. Affected components: movemail utility within Emacs/XEmacs; root cause: unsafe handling...
CVE-2005-0100
Format string vulnerability in the movemail utility in 1 Emacs 20.x, 21.3, and possibly other versions, and 2 XEmacs 21.4 and earlier, allows remote malicious POP3 servers to execute arbitrary code via crafted packets...