Mandrake Linux Security Advisory : xemacs (MDKSA-2001:019)

Previous versions of XEmacs had a problem with the gnuserv application. Versions prior to 21.1.14 could allow arbitrary code to be executed by overrunning the magic cookie buffer, as well as accepting the prefix of valid magic cookies i.e. '12' is accepted if the cookie is '12345678'. %NASLMINLEV...

Debian Security Advisory DSA 042-1 (gnuserv, xemacs21)

The remote host is missing an update to gnuserv, xemacs21 announced via advisory DSA 042-1. OpenVAS Vulnerability Test $Id: deb0421.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 042-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 042-1 (gnuserv, xemacs21)

The remote host is missing an update to gnuserv, xemacs21 announced via advisory DSA 042-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Debian DSA-042-1 : gnuserv

Klaus Frank has found a vulnerability in the way gnuserv handled remote connections. Gnuserv is a remote control facility for Emacsen which is available as standalone program as well as included in XEmacs21. Gnuserv has a buffer for which insufficient boundary checks were made. Unfortunately this...

CVE-2001-0191

gnuserv before 3.12, as shipped with XEmacs, does not properly check the specified length of an X Windows MIT-MAGIC-COOKIE cookie, which allows remote attackers to execute arbitrary commands via a buffer overflow, or brute force authentication by using a short cookie length...

CVE-2001-0191

Summary: CVE-2001-0191 affects gnuserv prior to 3.12 (shipped with XEmacs). The issue arises from improper checking of the length of the X Windows MIT-MAGIC-COOKIE, enabling remote attackers to execute arbitrary commands via a buffer overflow or to brute-force authentication with a short cookie l...

PT-2001-1420 · Gnu · Gnuserv

Name of the Vulnerable Software and Affected Versions: gnuserv versions prior to 3.12 Description: The issue allows remote attackers to execute arbitrary commands via a buffer overflow, or brute force authentication by using a short cookie length, due to improper checking of the specified length ...

[SECURITY] [DSA 042-1] New XEmacs and gnuserv packages available

---------------------------------------------------------------------------- Debian Security Advisory DSA-042-1 [email protected] http://www.debian.org/security/ Martin Schulze March 8, 2001 - ---------------------------------------------------------------------------- Packages : gnuserv,...

Remote vulnerability in gnuserv/XEmacs

SUMMARY All currently available versions of gnuserv for unix prior to 3.12 are vulnerable to remote exploit due to a buffer overflow and weak security. Gnuserv is a remote control facility for Emacsen. Gnuserv ships with XEmacs but is also available stand-alone from various sources for use with G...