CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8491 matches found

Tenable Nessus•added 2004/08/30 12:0 a.m.•24 views

GLSA-200405-21 : Midnight Commander: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200405-21 Midnight Commander: Multiple vulnerabilities Numerous security issues have been discovered in Midnight Commander, including several buffer overflow vulnerabilities, multiple vulnerabilities in the handling of temporary...

10CVSS6.3AI score0.01177EPSS

Exploits0References4

Tenable Nessus•added 2004/08/30 12:0 a.m.•16 views

GLSA-200406-02 : tripwire: Format string vulnerability

The remote host is affected by the vulnerability described in GLSA-200406-02 tripwire: Format string vulnerability The code that generates email reports contains a format string vulnerability in pipedmailmessage.cpp. Impact : With a carefully crafted filename on a local filesystem an attacker cou...

7.2CVSS6AI score0.00085EPSS

Exploits0References3

Tenable Nessus•added 2004/08/30 12:0 a.m.•28 views

GLSA-200404-14 : Multiple format string vulnerabilities in cadaver

The remote host is affected by the vulnerability described in GLSA-200404-14 Multiple format string vulnerabilities in cadaver Cadaver code includes the neon library, which in versions 0.24.4 and previous is vulnerable to multiple format string attacks. The latest version of cadaver uses version...

6.8CVSS6.1AI score0.08143EPSS

Exploits0References3

Tenable Nessus•added 2004/08/30 12:0 a.m.•11 views

GLSA-200404-12 : Scorched 3D server chat box format string vulnerability

The remote host is affected by the vulnerability described in GLSA-200404-12 Scorched 3D server chat box format string vulnerability Scorched 3D build 36.2 and before does not properly check the text entered in the Chat box T key. Using format string characters, you can generate a heap overflow...

6.2AI score

Exploits0References1

Tenable Nessus•added 2004/08/27 12:0 a.m.•28 views

AIX 5.1 : IY46255

The remote host is missing AIX Critical Security Patch number IY46255 SECURITY: Format string vulnerability in /usr/bin/enq and. You should install this patch for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...

7.2CVSS5.5AI score0.00053EPSS

Exploits0References1

Tenable Nessus•added 2004/08/27 12:0 a.m.•23 views

AIX 5.2 : IY45329

The remote host is missing AIX Critical Security Patch number IY45329 SECURITY: Format string vulnerability in /usr/bin/enq and. You should install this patch for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...

7.2CVSS5.5AI score0.00053EPSS

Exploits0References1

Cvelist•added 2004/08/25 4:0 a.m.•29 views

CVE-2004-0800

Format string vulnerability in CDE Mailer dtmail on Solaris 8 and 9 allows local users to gain privileges via format strings in the argv0 value...

6.5AI score0.00078EPSS

Exploits0References7

CVE•added 2004/08/25 4:0 a.m.•51 views

CVE-2004-0800

CVE-2004-0800 affects the Solaris CDE Mailer component dtmail (on Solaris 8/9). The vulnerability is a format string issue in argv[0], allowing a local user to execute arbitrary code with the privileges of the vulnerable process (typically the mail group). The CERT/NVD entries describe local code...

4.6CVSS6.6AI score0.00078EPSS

Exploits0References7Affected Software2

securityvulns•added 2004/08/25 12:0 a.m.•25 views

[Full-Disclosure] iDEFENSE Security Advisory 08.24.04: CDE Mailer argv[0] Format String Vulnerability

CDE Mailer argv0 Format String Vulnerability iDEFENSE Security Advisory 08.24.04 www.idefense.com/application/poi/display?id=132&type=vulnerabilities August 24, 2004 I. BACKGROUND CDE Mailer dtmail is the mail user agent MUA for CDE, which is installed on Solaris 8 and 9 by default. It provides a...

7.5AI score

Exploits0

CERT•added 2004/08/25 12:0 a.m.•70 views

Sun Solaris dtmail contains a format string vulnerability

Overview A vulnerability in the way dtmail handles command-line arguments could allow an attacker to execute arbitrary code. Description The dtmail program is a mail user agent MUA for the Common Desktop Environment CDE. It provides a graphical user interface for reading, sending, and managing...

4.6CVSS6.7AI score0.00078EPSS

Exploits0References5

securityvulns•added 2004/08/25 12:0 a.m.•23 views

Solaris dtmail format string bug

format string bug in argv0 allows privilege escalation to gid group...

3.2AI score

Exploits0References1Affected Software1

Tenable Nessus•added 2004/08/23 12:0 a.m.•23 views

FreeBSD : courier-imap -- format string vulnerability in debug mode (26)

The following package needs to be updated: courier-imap %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg616cf823f48b11d89837000c41e2cdad.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...

6.4AI score0.15919EPSS

Exploits0References15

CVE•added 2004/08/20 4:0 a.m.•53 views

CVE-2003-1051

CVE-2003-1051 affects IBM DB2 Universal Database 8.1. It describes multiple format-string vulnerabilities that could allow local users to execute arbitrary code via certain command-line arguments to db2start, db2stop, or db2govd. Root cause: format string handling issues in the involved binaries....

7.2CVSS7.7AI score0.00046EPSS

Exploits1References4Affected Software1

Tenable Nessus•added 2004/08/20 12:0 a.m.•11 views

XChat Malformed Nickname Remote Format String

Binary data 1873.prm...

7.5CVSS7.3AI score0.02752EPSS

Exploits1References1

Tenable Nessus•added 2004/08/20 12:0 a.m.•22 views

BitchX IRC Client "/INVITE" Command Format String DoS

Binary data 1855.prm...

5CVSS7.3AI score0.10834EPSS

Exploits0References1