8488 matches found
[Full-Disclosure] formatstring bug in Compaq HTTP Servers
Hi there There is a formatstring bug in Compaq HTTP Servers. in !.DebugSearchPaths?Url= requests The HTTP server runs with LocalSystem account. Versions: All versions i have tested had this formatstring bug. To be shure that it wasn't allready fixed, i downloaded this new version.. Insight...
HP Compaq Insight Management Agent 5.0 - Format String
source: https://www.securityfocus.com/bid/8336/info The Compaq Management Agent HTTP server is vulnerable to a format string issue. A remote attacker may be able to exploit this vulnerability in order to execute arbitrary code with Local System privileges. $ printf "GET /?Url=perl -e 'print...
CVE-2003-0616
Format string vulnerability in ePO service for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code via a POST request with format strings in the computerlist parameter, which are used when logging a failed name resolution...
CVE-2003-0616
CVE-2003-0616 is a format-string vulnerability in the McAfee ePolicy Orchestrator (ePO) server, affecting versions 2.0, 2.5, and 2.5.1. The issue resides in the ComputerList parameter where a POST request containing format specifiers is logged when a name resolution fails, potentially enabling re...
Multiple McAfee ePolicy Orchestrator bugs
Buffer overflows, format string bugs, MSDE is installed in insecure configuration...
Mini SQL 1.0/1.3 - Remote Format String
// source: https://www.securityfocus.com/bid/8295/info Mini SQL mSQL has been reported prone to a remotely exploitable format string vulnerability, when handling user-supplied data. Reportedly a remote attacker may send malicious format specifiers to trigger the issue. This vulnerability could...
Mini SQL 1.01.3 - Remote Format String
Mini SQL 1.01.3 - Remote Format String // source: https://www.securityfocus.com/bid/8295/info Mini SQL mSQL has been reported prone to a remotely exploitable format string vulnerability, when handling user-supplied data. Reportedly a remote attacker may send malicious format specifiers to trigger...
miniSQL (mSQL) 1.3 - GID Remote Code Execution
miniSQL mSQL 1.3 - GID Remote Code Execution / /.------ /.------..---- / / \ /\ . // / . /\ / | / .\ . \ / / / \ | / | | slc | - -------||--.---.//-| //-.|----.|| / \ / / mSQL / required by fatal / include include / required by fatal / include include include include include include include...
miniSQL (mSQL) 1.3 - GID Remote Code Execution
/ /.------ /.------..---- / / \ /\ . // / . /\ / | / .\ . \ / / / \ | / | | slc | - -------||--.---.//-| //-.|----.|| / \ / / mSQL / required by fatal / include include / required by fatal / include include include include include include include include include include include / required by...
miniSQL (mSQL) 1.3 Remote GID Root Exploit
No description provided by source. / /.------ /.------..---- / / \ /\ . // / . /\ / | / .\ . \ / / / \ | / | | slc | - -------||--.---.//-| //-.|----.|| / \ / / mSQL remote gid root exploit by lucipher & The Itch netric...
miniSQL (mSQL) 1.3 Remote GID Root Exploit
Exploit for linux platform in category remote exploits ========================================== miniSQL mSQL 1.3 Remote GID Root Exploit ========================================== / /.------ /.------..---- / / \ /\ . // / . /\ / | / .\ . \ / / / \ | / | | slc | - -------||--.---.//-|...
HTTP Method Remote Format String
The remote web server seems to be vulnerable to a format string attack on the method name. An attacker might use this flaw to make it crash or even execute arbitrary code on this host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11801; scriptversion"$Revision: 1.1...
Multiple bru bugs
Buffer overflows, format string bugs...
Tolis Group BRU 17.0 - Local Privilege Escalation (2)
// source: https://www.securityfocus.com/bid/8215/info It has been reported that BRU may not properly parse commandline arguments, potentially leading to at least two vectors of exploitation. It may be possible for local attackers to conduct format string-based attacks as well as buffer...
Tolis Group BRU 17.0 - Local Privilege Escalation (1)
// source: https://www.securityfocus.com/bid/8215/info It has been reported that BRU may not properly parse commandline arguments, potentially leading to at least two vectors of exploitation. It may be possible for local attackers to conduct format string-based attacks as well as buffer...
Tolis Group BRU 17.0 - Local Privilege Escalation (1)
Tolis Group BRU 17.0 - Local Privilege Escalation 1 // source: https://www.securityfocus.com/bid/8215/info It has been reported that BRU may not properly parse commandline arguments, potentially leading to at least two vectors of exploitation. It may be possible for local attackers to conduct...
Tolis Group BRU 17.0 - Local Privilege Escalation (2)
Tolis Group BRU 17.0 - Local Privilege Escalation 2 // source: https://www.securityfocus.com/bid/8215/info It has been reported that BRU may not properly parse commandline arguments, potentially leading to at least two vectors of exploitation. It may be possible for local attackers to conduct...
CVE-2003-0555
ImageMagick 5.4.3.x and earlier allows attackers to cause a denial of service crash and possibly execute arbitrary code via a "%x" filename, possibly triggering a format string vulnerability...
ImageMagic format string bug
Format string bug in filename...
zkfingerd format string bug
Format string on syslog call...