CVE-2001-0318

CVE-2001-0318 corresponds to a format-string vulnerability in ProFTPD 1.2.0rc2 that could allow an attacker to execute arbitrary commands by shutting down the FTP server while a malformed working directory (cwd) is in use. The vulnerability is remote and unauthenticated per the CVSS data, with At...

CVE-2001-0060

Format string vulnerability in stunnel 3.8 and earlier allows attackers to execute arbitrary commands via a malformed ident username...

CVE-2001-0013

CVE-2001-0013 describes a format-string vulnerability in the nslookupComplain() routine of ISC BIND 4. This flaw allows remote attackers to execute code with the BIND process’ privileges (typically root) by sending specially crafted DNS input. The CERT/CC note (CA-2001-02) identifies vulnerable v...

CVE-2001-0197

Format string vulnerability in printclient in icecast 1.3.8beta2 and earlier allows remote attackers to execute arbitrary commands...

CVE-2001-0218

Format string vulnerability in marsnwe 0.99.pl19 allows remote attackers to execute arbitrary commands...

CVE-2001-0111

CVE-2001-0111 : The vulnerability affects the splitvt utility (before 1.6.5). It is a format-string flaw that can allow a local attacker to run arbitrary commands via the -rcfile argument. Debian’s DSA-014-2 describes a buffer overflow/format-string attack with root access risk; remediation is up...

CVE-2001-0193

CVE-2001-0193 describes a format-string vulnerability in the man page viewer, observed in some Linux distributions via the -l parameter, enabling local privilege escalation. Connected documents identify Debian as affected via the man-db package and reference Debian Security Advisory DSA-028-1, wh...

CVE-2001-0193

Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter...

EUVD-2001-0013

Format string vulnerability in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges...

WU-FTPD 2.4.22.5 .02.6.0 - Remote Format String Stack Overwrite (3)

WU-FTPD 2.4.22.5 .02.6.0 - Remote Format String Stack Overwrite 3 source: https://www.securityfocus.com/bid/1387/info Washington University ftp daemon wu-ftpd is a very popular unix ftp server shipped with many distributions of Linux and other UNIX operating systems. Wu-ftpd is vulnerable to a ve...

minicom exploit

This advisory was posted Wed Apr 11 08:06:49 2001 to bugzilla.redhat.com/bugzilla and became inaccessable not long after. I went to add more information, a couple of days after and had been locked out, so I tried emailing the QAContact this information on Tue Apr 24 , but received no reply. Now...

WU-FTPD 2.4.2/2.5 .0/2.6.0 - Remote Format String Stack Overwrite (3)

source: https://www.securityfocus.com/bid/1387/info Washington University ftp daemon wu-ftpd is a very popular unix ftp server shipped with many distributions of Linux and other UNIX operating systems. Wu-ftpd is vulnerable to a very serious remote attack in the SITE EXEC implementation. Because ...

Дырка в minicom (format string)

Ошибки форматной строки egid uucp...

CVE-2001-0193

Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter...

Дырка в gftp (format string)

Ошибка форматной строки...

[RHSA-2001:053-06] gftp format string vulnerability corrected

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: gftp format string vulnerability corrected Advisory ID: RHSA-2001:053-06 Issue date: 2001-04-20 Updated on: 2001-04-23 Product: Red Hat Linux Keywords: gftp format Cross...

FreeBSD-SA-01:34.hylafax

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:34 Security Advisory FreeBSD, Inc. Topic: hylafax contains local compromise Category: ports Module: hylafax Announced: 2001-04-23 Credits: Marcin Dawcewicz Affects: Ports...

NSI Rwhoisd 1.5 - Remote Format String

NSI Rwhoisd 1.5 - Remote Format String // source: https://www.securityfocus.com/bid/3474/info Rwhoisd is a publicly available RWHOIS server daemon for Unix based systems developed and maintained by Network Solutions Inc. Rwhoisd contains a remotely exploitable format string vulnerability. It is...

NSI Rwhoisd 1.5 - Remote Format String

// source: https://www.securityfocus.com/bid/3474/info Rwhoisd is a publicly available RWHOIS server daemon for Unix based systems developed and maintained by Network Solutions Inc. Rwhoisd contains a remotely exploitable format string vulnerability. It is possible to overwrite memory by if a...

cfingerd 1.4 - Format String (2)

// source: https://www.securityfocus.com/bid/2576/info A format string bug in the logging facility of the cfingerd "Configurable Finger Daemon" allows remote users to attain root privileges and execute arbitrary code. cfingerd queries and logs the remote username of users of the service. If an...