22 matches found
EUVD-2002-1371
Malware in sbrugna...
EUVD-2003-0447
Malware in sbrugna...
EUVD-2002-1348
Malware in sbrugna...
Traceroute-nanog 6 Local Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6166/info A vulnerability has been discovered in Traceroute-nanog. It has been reported that Traceroute-nanog contains a buffer overflow condition. The overflow occurs in the 'getorigin' function in the 'traceroute.c' fil...
Debian Security Advisory DSA 254-1 (traceroute-nanog)
The remote host is missing an update to traceroute-nanog announced via advisory DSA 254-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Debian: Security Advisory (DSA-348)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 254-1 (traceroute-nanog)
The remote host is missing an update to traceroute-nanog announced via advisory DSA 254-1. OpenVAS Vulnerability Test $Id: deb2541.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 254-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian DSA-254-1 : traceroute-nanog - buffer overflow
A vulnerability has been discovered in NANOG traceroute, an enhanced version of the Van Jacobson/BSD traceroute program. A buffer overflow occurs in the 'getorigin' function. Due to insufficient bounds checking performed by the whois parser, it may be possible to corrupt memory on the system stac...
Debian DSA-348-1 : traceroute-nanog - integer overflow, buffer overflow
traceroute-nanog, an enhanced version of the common traceroute program, contains an integer overflow bug which could be exploited to execute arbitrary code. traceroute-nanog is setuid root, but drops root privileges immediately after obtaining raw ICMP and raw IP sockets. Thus, exploitation of th...
CVE-2002-1364
Buffer overflow in the getorigin function in traceroute-nanog allows attackers to execute arbitrary code via long WHOIS responses...
CVE-2002-1364
CVE-2002-1364 describes a buffer overflow in traceroute-nanog’s get_origin() function triggered by long WHOIS responses. This leads to arbitrary code execution and potential privilege escalation on affected systems. Public advisories (Debian DSA-254-1) note the issue was fixed in traceroute-nanog...
CVE-2003-0453
traceroute-nanog 6.1.1 allows local users to overwrite unauthorized memory and possibly execute arbitrary code via certain "nprobes" and "maxttl" arguments that cause an integer overflow that is used when allocating memory, which leads to a buffer overflow...
[SECURITY] [DSA-348-1] New traceroute-nanog packages fix integer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 348-1 [email protected] http://www.debian.org/security/ Matt Zimmerman July 11th, 2003 http://www.debian.org/security/faq -...
DSA-348 traceroute-nanog - integer overflow, buffer overflow
Bulletin has no description...
CVE-2003-0453
traceroute-nanog 6.1.1 allows local users to overwrite unauthorized memory and possibly execute arbitrary code via certain "nprobes" and "maxttl" arguments that cause an integer overflow that is used when allocating memory, which leads to a buffer overflow...
CVE-2003-0453
CVE-2003-0453 relates to traceroute-nanog. A memory allocation overflow bug (integer overflow) in certain nprobes/max_ttl inputs can cause a buffer overflow, potentially enabling arbitrary code execution by a local user. Public disclosures reference the Debian DSA-348 advisory which fixes the iss...
CVE-2002-1051
The CVE-2002-1051 entry concerns NANOG traceroute (traceroute-nanog). A format string vulnerability exists in TrACESroute 6.0 GOLD that allows local users to execute arbitrary code via the -T (terminator) argument. The issue is tied to NANOG traceroute’s handling of input leading to potential cod...
[SECURITY] [DSA 254-1] New NANOG traceroute packages fix buffer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 254-1 [email protected] http://www.debian.org/security/ Martin Schulze February 27th, 2003 http://www.debian.org/security/faq -...
[SECURITY] [DSA 254-1] New NANOG traceroute packages fix buffer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 254-1 [email protected] http://www.debian.org/security/ Martin Schulze February 27th, 2003 http://www.debian.org/security/faq -...
CVE-2002-1387
CVE-2002-1387 affects traceroute-nanog: the spray mode may allow local users to overwrite arbitrary memory locations via an array index overflow when using the nprobes argument. The CVSS/NVD entry indicates local access, low attack complexity, and partial impact to confidentiality, integrity, and...