Multiple Vulnerabilities in ssmtp

Background SSMTP is a very simple mail transfer agent MTA that relays mail from the local machine to another SMTP host. It is not designed to function as a full mail server; its sole purpose is to relay mail. Description There are two format string vulnerabilities inside the logevent and die...

Veritas NetBackup 3.5/4.5/5.0 - Multiple Local Memory Corruption Vulnerabilities (2)

source: https://www.securityfocus.com/bid/10226/info Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues may be exploited to execute arbitrary code with root privileges. It should be not...

Veritas NetBackup 3.54.55.0 - Multiple Local Memory Corruption Vulnerabilities (3)

Veritas NetBackup 3.54.55.0 - Multiple Local Memory Corruption Vulnerabilities 3 source: https://www.securityfocus.com/bid/10226/info Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues...

Veritas NetBackup 3.54.55.0 - Multiple Local Memory Corruption Vulnerabilities (2)

Veritas NetBackup 3.54.55.0 - Multiple Local Memory Corruption Vulnerabilities 2 source: https://www.securityfocus.com/bid/10226/info Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues...

Veritas NetBackup 3.5/4.5/5.0 - Multiple Local Memory Corruption Vulnerabilities (3)

source: https://www.securityfocus.com/bid/10226/info Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues may be exploited to execute arbitrary code with root privileges. It should be not...

Format String in Cherokee

------------------------------------------------- No System Group - Advisory 3 - 17/04/04 ------------------------------------------------- Program: Cherokee Web Server Homepage: http://www.0x50.org Vulnerable Versions: Cherokee 0.4.16 and prior Risk: Low / Medium Impact: Local Format String...

CVE-2004-1946

Format string vulnerability in the PRINTERROR function in common.c for Cherokee Web Server 0.4.16 and earlier allows local users to execute arbitrary code via format string specifiers in the -C command line argument. NOTE: it is not clear whether this issue could be exploited remotely, or if...

Multiple format string vulnerabilities in cadaver

Background According to http://www.webdav.org/cadaver, cadaver is a command-line WebDAV client for Unix. It supports file upload, download, on-screen display, namespace operations move/copy, collection creation and deletion, and locking operations. Description Cadaver code includes the neon...

CVE-2004-0156

Format string vulnerabilities in the 1 die or 2 logevent functions for ssmtp before 2.50.6 allow remote mail relays to cause a denial of service and possibly execute arbitrary code...

CVE-2004-0156

ssmtp is affected by format string vulnerabilities in the die() and log_event() functions, enabling a remote mail relay to trigger denial of service or potentially execute code. The issue affects ssmtp prior to version 2.50.6. Public references (Debian DSA-485, Gentoo GLSA-200404-18, OSV and NVD ...

CVE-2004-0156

Format string vulnerabilities in the 1 die or 2 logevent functions for ssmtp before 2.50.6 allow remote mail relays to cause a denial of service and possibly execute arbitrary code...

[SECURITY] [DSA 487-1] New neon packages fix format string vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 487-1 [email protected] http://www.debian.org/security/ Matt Zimmerman April 16th, 2004 http://www.debian.org/security/faq -...

void.at - neon format string bugs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 VSA0401 - neon - void.at security notice Overview ======== We have discovered a format string vulnerability in neon http://www.webdav.org/neon. neon is a webdav client library, used by Subversion and others. CVE has assigned the name CAN-2004-0179 to...

CVE-2004-0179

Multiple format string vulnerabilities in 1 neon 0.24.4 and earlier, and other products that use neon including 2 Cadaver, 3 Subversion, and 4 OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code...

CVE-2004-0179

CVE-2004-0179 involves multiple format-string vulnerabilities in neon 0.24.4 and earlier, and in other products that use neon (Cadaver, Subversion, OpenOffice). The underlying issue is format-string bugs in neon’s error reporting code, which could allow a remote attacker—via a malicious WebDAV se...

DSA-487 neon - format string

Bulletin has no description...

CVE-2004-0153

Multiple format string vulnerabilities in emil 2.1.0 and earlier may allow remote attackers to execute arbitrary code by triggering certain error messages...

CVE-2003-0257

Format string vulnerability in the printer capability for IBM AIX .3, 5.1, and 5.2 allows local users to gain printq or root privileges...

CVE-2003-1037

Format string vulnerability in the WGate component for SAP Internet Transaction Server ITS allows remote attackers to execute arbitrary code via a high "trace level."...

[SECURITY] [DSA 485-1] New ssmtp packages fix format string vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 485-1 [email protected] http://www.debian.org/security/ Matt Zimmerman April 14th, 2004 http://www.debian.org/security/faq -...