Crob FTP Server user Field Remote Format String

The version of Crob FTP server running on the remote host has a format string vulnerability when processing the USER command. A remote attacker could exploit this to crash the service, or possibly execute arbitrary code. C Tenable Network Security, Inc. include"compat.inc"; References: Date: 2 Ju...

mod_gzip Debug Mode mod_gzip_printf Remote Format String

The remote host is running modgzip with debug symbols compiled in. The debug code includes vulnerabilities that can be exploited by an attacker to gain a shell on this host. C Tenable Network Security, Inc. Ref: From: "Matthew Murphy" To: "BugTraq" , Subject: Modgzip Debug Mode Vulnerabilities...

CVE-2003-0235

Format string vulnerability in POP3 client for Mirabilis ICQ Pro 2003a allows remote malicious servers to execute arbitrary code via format strings in the response to a UIDL command...

Magic Winmail Server 2.3 USER POP3 - Command Format String

Magic Winmail Server 2.3 USER POP3 - Command Format String // source: https://www.securityfocus.com/bid/7667/info A format string vulnerability has been reported for Magic Winmail Server when processing the USER POP3 command. An attacker may exploit this vulnerability by connecting to the...

Magic Winmail Server format string bug

Format string bug during POP3 logging...

Magic Winmail Server 2.3 USER POP3 - Command Format String

// source: https://www.securityfocus.com/bid/7667/info A format string vulnerability has been reported for Magic Winmail Server when processing the USER POP3 command. An attacker may exploit this vulnerability by connecting to the vulnerable mail server and issuing the USER command with malicious...

Magic Winmail Server v.2.*: format string

-----BEGIN PGP SIGNED MESSAGE----- Damage Hacking Group security advisory www.dhgroup.org Product: Magic Winmail Server Auth: AMAX Information Technologies Inc. www.magicwinmail.net Vulnerable versions: v.2. founded in 2.3 Vulnerability: format string...

CVE-2003-0289

Format string vulnerability in scsiopen.c of the cdrecord program in cdrtools 2.0 allows local users to gain privileges via format string specifiers in the dev parameter...

CVE-2003-0289

CVE-2003-0289 affects the cdrecord component of the cdRtools package (cdrecord, version 2.0). The vulnerability is a format-string issue in scsiopen.c (dev parameter) that enables local users to gain privileges. Public references note that this is a local-privilege-escalation vulnerability in cdr...

cdrecord format string bug

Format string bug on error message printing...

cdrtools2.0 Format String Vulnerability

---------------------------------------------------------------------------- PACKAGE : cdrtools VERSION : 2.0 SUMMARY : Format String SEVERITY : local root exploit if suid on several distros DATE: : 2003-05-05 ---------------------------------------------------------------------------- Hi, i woul...

CDRTools CDRecord 1.11/2.0 - Devname Format String

// source: https://www.securityfocus.com/bid/7565/info CDRecord has been reported prone to a format string vulnerability. The issue presents itself due to a programming error that occurs when calling a printf-like function. It has been reported that by harnessing an unsupported feature of the...

CDRTools CDRecord 1.112.0 - Devname Format String

CDRTools CDRecord 1.112.0 - Devname Format String // source: https://www.securityfocus.com/bid/7565/info CDRecord has been reported prone to a format string vulnerability. The issue presents itself due to a programming error that occurs when calling a printf-like function. It has been reported th...

CVE-2003-0235

Format string vulnerability in POP3 client for Mirabilis ICQ Pro 2003a allows remote malicious servers to execute arbitrary code via format strings in the response to a UIDL command...

CVE-2003-0235

CVE-2003-0235 is a format string vulnerability in Mirabilis ICQ Pro 2003a's integrated POP3 client (POP3.dll). The bug resides in the UIDL server response string, where format specifiers can be exploited by a remote attacker posing as the POP3 server, potentially enabling arbitrary code execution...

Mod_Gzip 1.3.x - Debug Mode

ModGzip 1.3.x - Debug Mode // source: https://www.securityfocus.com/bid/7769/info Modgzip is reported prone to a stack overflow, format string vulnerability and a file corruption issue due to a predictable naming scheme for log files. Exploitation of these issues could result in execution of...

Mod_Gzip 1.3.x - Debug Mode

// source: https://www.securityfocus.com/bid/7769/info Modgzip is reported prone to a stack overflow, format string vulnerability and a file corruption issue due to a predictable naming scheme for log files. Exploitation of these issues could result in execution of malicious instructions or...

Multiple bugs in ICQ 2003

Format string bug in integer overflows in POP3 client, multiple DoS conditions...

smallftpd multiple bugs

Directory traversal, format string bug...

mod_ntlm for Apache Multiple Remote Vulnerabilities

The remote host seems to be running modntlm, a NTLM authentication module for Apache. This version of modntlm has a buffer overflow and a format string vulnerability. A remote attacker could exploit these issues to execute arbitrary code. C Tenable Network Security, Inc. include"compat.inc"; if...