115 matches found
CVE-2008-2357
Stack-based buffer overflow in the splitredraw function in split.c in mtr before 0.73, when invoked with the -p aka --split option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the nsnamentop function in...
CVE-2008-2357
Stack-based buffer overflow in the splitredraw function in split.c in mtr before 0.73, when invoked with the -p aka --split option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the nsnamentop function in...
DEBIAN-CVE-2008-2357
Stack-based buffer overflow in the splitredraw function in split.c in mtr before 0.73, when invoked with the -p aka --split option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the nsnamentop function in...
CVE-2008-2357
Stack-based buffer overflow in the splitredraw function in split.c in mtr before 0.73, when invoked with the -p aka --split option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the nsnamentop function in...
CVE-2008-2357
CVE-2008-2357 affects mtr prior to version 0.73, where a stack-based buffer overflow in split_redraw (split.c) can be triggered by a crafted DNS PTR record when using -p. Several OpenVAS/Nessus entries link this to multiple distributions (e.g., SUSE/OpenSUSE, Gentoo GLSA, Slackware SSA) and refer...
CVE-2008-2357
Stack-based buffer overflow in the splitredraw function in split.c in mtr before 0.73, when invoked with the -p aka --split option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the nsnamentop function in...
mtr (multiprotocol traceroute) buffer overflow
Buffer overflow on DNS server response parsing...
Debian Security Advisory DSA 124-1 (mtr)
The remote host is missing an update to mtr announced via advisory DSA 124-1. OpenVAS Vulnerability Test $Id: deb1241.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 124-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 124-1 (mtr)
The remote host is missing an update to mtr announced via advisory DSA 124-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2004-1224
Off-by-one error in the mtrcurseskeyaction function for mtr 0.55 through 0.65 allows local users to hijack raw sockets, as demonstrated using the "s" keybinding, which leaves a buffer without a NULL terminator...
DEBIAN-CVE-2004-1224
Off-by-one error in the mtrcurseskeyaction function for mtr 0.55 through 0.65 allows local users to hijack raw sockets, as demonstrated using the "s" keybinding, which leaves a buffer without a NULL terminator...
CVE-2004-1224
Off-by-one error in the mtrcurseskeyaction function for mtr 0.55 through 0.65 allows local users to hijack raw sockets, as demonstrated using the "s" keybinding, which leaves a buffer without a NULL terminator...
CVE-2004-1224
The CVE-2004-1224 entry concerns an off-by-one in the mtr_curses_keyaction function affecting MTR versions 0.55–0.65. This flaw can allow local attackers to hijack raw sockets via the 's' keybinding, leaving a buffer without a NULL terminator. Affected products are multiple CVE trackers (NVD, OSV...
CVE-2004-1224
Off-by-one error in the mtrcurseskeyaction function for mtr 0.55 through 0.65 allows local users to hijack raw sockets, as demonstrated using the "s" keybinding, which leaves a buffer without a NULL terminator...
mtr buffer overflow
Off-by-one overflows during keycode handlings...
Local off-by-one in mtr versions 0.55 to 0.65
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Local off-by-one in mtr versions 0.55 to 0.65 - ---------------------------------------------- Przemysіaw Frasunek [email protected] / 11th December 2004 1. Background mtr combines the functionality of the 'traceroute' and 'ping' programs in a...
Debian DSA-124-1 : mtr - buffer overflow
The authors of mtr released a new upstream version, noting a non-exploitable buffer overflow in their ChangeLog. Przemyslaw Frasunek, however, found an easy way to exploit this bug, which allows an attacker to gain access to the raw socket, which makes IP spoofing and other malicious network...
CVE-2002-0497
CVE-2002-0497 describes a buffer overflow in mtr versions 0.46 and earlier when installed setuid root, allowing local users to access a raw socket via a long MTR_OPTIONS environment variable. The vulnerability is documented across multiple sources (Red Hat, Debian, NVD, CVE listings) and affects ...
CVE-2002-0497
Buffer overflow in mtr 0.46 and earlier, when installed setuid root, allows local users to access a raw socket via a long MTROPTIONS environment variable...
CVE-2002-0497
Buffer overflow in mtr 0.46 and earlier, when installed setuid root, allows local users to access a raw socket via a long MTROPTIONS environment variable...