Design/Logic Flaw

There is an invalid memory access in the function fprintf located in Error.cc in Xpdf 4.0.2. It can be triggered by sending a crafted PDF file to the pdftohtml binary, which allows a remote attacker to cause a Denial of Service Segmentation fault or possibly have unspecified other impact...

Ehud Gavron TrACESroute 6.1.1 Terminator Function Format String

No description provided by source. source: http://www.securityfocus.com/bid/4956/info A format string vulnerability exists in TrACESroute. The problem exists in the terminator -T function of the program. Due to improper use of the fprintf function, an attacker may be able to supply a malicious...

Linksys WRT120N 'fprintf()'函数远程栈缓冲区溢出漏洞

BUGTRAQ ID: 65860 WRT120N是无线家庭路由器产品。 Linksys WRT120N（固件版本1.0.07）在函数 "fprintf"的实现上存在边界错误，可导致栈缓冲区溢出，任意代码执行。 0 Linksys WRT120N 1.0.07 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.linksys.com...