8488 matches found
Multiple mailtraq bugs
Directory traversal, passwords decryption, format string bugs, crossite scripting, etc...
Magic Winmail Server PASS Command Remote Format String
The remote Winmail POP server, according to its banner, is vulnerable to a format string attack when processing the USER command. An unauthenticated attacker may use this flaw to execute arbitrary code on this host. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid11742...
CVE-2003-0289
Format string vulnerability in scsiopen.c of the cdrecord program in cdrtools 2.0 allows local users to gain privileges via format string specifiers in the dev parameter...
Mailtraq 2.1.0.1302 - Remote Format String SMTP Resource Consumption
source: https://www.securityfocus.com/bid/7926/info It has been reported that Mailtraq does not reliably handle format strings in some SMTP protocol fields. This may cause a system to become unstable and crash, allowing a remote attacker to deny service to the system. @@%s%p%n %s%p%n...
ike-scan format string bug
Format string bug during command line processing...
SRT2003-06-12-0853 - ike-scan local root format string issue
Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...
SRT2003-06-12-1212 - FakeBO syslog() format string issue.
Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...
FakeBO format satring bug
Format string bug during syslog call with remote host name...
Winmail Mail Server 2.3 Remote Format String Exploit
Exploit for unknown platform in category remote exploits ==================================================== Winmail Mail Server 2.3 Remote Format String Exploit ==================================================== / Magic Winmail Server 2.3Build 0402 Remote Format string exploit. Coded by Threa...
Winmail Mail Server 2.3 Build 0402 - Remote Format String
/ Magic Winmail Server 2.3Build 0402 Remote Format string exploit. Coded by ThreaT. This one take advantage of a format bug in the SMTP protocol smtp port + The command to execute cannot exceed 90 characters + compile : cl.exe mwmxploit.c /w / include include pragma comment lib,"wsock32.lib" void...
man format string bug
Format string bug during processing internationalization data from catalog file...
man[v1.5l]: (catalog) format strings exploit / POC.
was looking at the source code to man, and came upon this. newer g libc's will stop this from happening. but, still worth noting/effective bypass with older glibc's explained in exploit header Vade79 - fakehalo.deadpig.org - fakehalo. -- xmanfmt.c: start -- / linuxmanv1.5l: format string exploit...
Man 1.5.1 - Catalog File Format String
// source: https://www.securityfocus.com/bid/7812/info A vulnerability has been reported in the man utility. The problem is said to occur due to a format string bug when handling a catalog file. As a result, an attacker may be capable of writing arbitrary values to sensitive locations within...
Man 1.5.1 - Catalog File Format String
Man 1.5.1 - Catalog File Format String // source: https://www.securityfocus.com/bid/7812/info A vulnerability has been reported in the man utility. The problem is said to occur due to a format string bug when handling a catalog file. As a result, an attacker may be capable of writing arbitrary...
CVE-2003-1206
Format string vulnerability in Crob FTP Server 2.60.1 allows remote attackers to cause a denial of service crash via "%s" or "%n" sequences in 1 the username during login, or other FTP commands such as 2 dir...
Mod_gzip Debug Mode Vulnerabilities
Multiple Vulnerabilities in modgzip Debugging Routines I. Synopsis Affected Systems: modgzip 1.3.26.1a and prior Risk: Development: High Production: Minimal Developer URL: http://www.sourceforge.net/projects/mod-gzip Status: Vendor is not supporting project at this time. II. Product Description...
Crob FTP server Fotmat string bug
Format string bug in processing USER command...
Format String Vulnerability in Crob Ftp Server
Package: Crob Ftp Server Auth: Crob Software Studio www.crob.net/studio/ftpserver/ Version: 2.50.4 Build 228 Vulnerability: Format String Risk: High Vulnerability Description: A format string flaw in the authentication process allows remote attackers without valid user/pass to execute arbitrary...
Crob FTP Server 2.50.4 - Remote Username Format String
Crob FTP Server 2.50.4 - Remote Username Format String source: https://www.securityfocus.com/bid/7776/info A vulnerability has been reported for Crob FTP Server. The problem occurs due to invalid format specifiers used when displaying a user-supplied username. As a result, it may be possible for ...
Crob FTP Server 2.50.4 - Remote 'Username' Format String
source: https://www.securityfocus.com/bid/7776/info A vulnerability has been reported for Crob FTP Server. The problem occurs due to invalid format specifiers used when displaying a user-supplied username. As a result, it may be possible for an attacker to embed format specifiers within a malicio...