CAN-2004-0982

CVE-2004-0982 is linked to mpg123 and is described in multiple feeds as a heap-based buffer overflow in httpdget.c that allows remote code execution via a long URL, affecting mpg123 before the 0.59s-rll patch. The issue is cited in later entries (e.g., CVE-2006-3355 as an incomplete patch continu...

CAN-2004-0980

CVE-2004-0980 is a format-string vulnerability in ez-ipupdate. The connected documents identify ez-ipupdate as affected, specifically versions 3.0.10 through 3.0.11b8, with exploitation possible when running in daemon mode with certain service types in use, allowing remote execution of arbitrary ...

CAN-2004-0955

CVE-2004-0955 is a reserved CAN entry that corresponds to multiple advisories for the libpng library. The connected documents provide concrete technical details: libpng contains several integer overflows and related vulnerabilities that could allow remote code execution when processing specially ...

CAN-2004-0918

CVE-2004-0918 is a vulnerability in Squid’s SNMP parser. The asn_parse_header function in the SNMP module can be forced to allocate memory incorrectly by SNMP packets with negative or malformed ASN.1 length fields, allowing a remote attacker to cause a denial of service (server restart) and disco...

CAN-2003-0193

CVE-2003-0193 affects catdoc/xlsview; msxlsview.sh in xlsview (catdoc 0.91 and earlier) allows local users to overwrite arbitrary files via a symlink attack on predictable temporary file names (word$$.html). Debian fixed in 0.91.5-1.woody3/0.91.5-2; other advisories (DSA-575-1) reference the same...

CAN-2004-1006

CVE-2004-1006 is a format-string vulnerability in ISC DHCP’s dhcpd log/error handling (errwarn.c) that may allow remote code execution via crafted DNS messages on vulnerable DHCP servers/relays/clients. Public OpenVAS entries label isc-dhcpd format-string vulnerabilities with CVSS 10.0 (AV:N/AC:L...

CAN-2004-0645

CVE-2004-0645 affects abiword via a vulnerability in the wv library (buffer overflow) that could allow arbitrary code execution. The connected advisories (Debian DSA-579-1, Debian DSA-579-1 variants, and Gentoo/OpenVAS entries) confirm the issue and indicate the vulnerable component as abiword wi...

CAN-2004-0964

CVE-2004-0964 concerns a stack-based buffer overflow in the Zinf Audio Player (formerly freeamp) version 2.2.1. The vulnerability arises from insufficient bounds checking when processing a specially crafted PLS playlist file. A remote attacker could exploit this by convincing a user to open a mal...

CAN-2004-0989

CVE-2004-0989 affects libxml (libxml2) with multiple buffer overflow bugs in FTP URL parsing and DNS-related handling. Public sources in connected documents confirm Vulnerable versions include pre-2.6.14, with cited issues in libxml 2.6.12/2.6.13 and related code paths (FTP URL, FTP proxy URL, DN...

CAN-2004-0623

CVE-2004-0623 is a format-string vulnerability in GNU GNATS 4.00 that can allow remote code execution via specially crafted log data (syslog). Public advisories (Debian DSA-590-1, FreeBSD/Nessus entries, NVD) confirm impact and require updating GNATS to a patched release; exploitation details and...

CAN-2004-0970

CVE-2004-0970 concerns the gzip package: the (1) gzexe, (2) zdiff, and (3) znew scripts in the gzip package allow local users to overwrite files via a symlink attack on temporary files. This is a local privilege/overwrite issue, not remote code execution. The vulnerability is tied to the handling...

CAN-2004-0981

CVE-2004-0981 is linked to ImageMagick and is discussed in multiple advisories (Debian DSA 593-1, Gentoo GLSA 200411-11, Ubuntu USN-7-1/USN-10-1, FreeBSD Ports) with CVSS base 10.0 (AV:N/AC:L/Au:N/C:C/I:C/A:C). The OpenVAS entries and Gentoo/Ubuntu/Debian advisories describe a vulnerability in Im...

CAN-2004-1052

CVE-2004-1052 affects the BNC IRC bouncing proxy. The issue is a remote buffer‑overflow in the getnickuserhost() function triggered by IRC server responses, allowing arbitrary code execution on the client host that processes the overflowing response. Public sources highlight this as a remote vuln...

CAN-2002-0986

CVE-2002-0986 concerns the PHP mail() function in PHP 4.x up to 4.2.2, which does not filter ASCII control characters from its arguments. This could allow remote attackers to modify mail message content, including headers, and potentially use PHP as a “spam proxy.” The connected documents confirm...

CAN-2003-0902

CVE-2003-0902 affects minimalist mailing list manager (versions 2.4, 2.2 and possibly others) with a remote code execution vulnerability due to unsanitised input. Debian DSAs confirm fixes: upgrade to minimalist 2.4-1 (sid) or 2.2-4 (woody). Other references (NVD/Nessus/OpenVAS) corroborate unkno...

CAN-2004-1014

CVE-2004-1014 affects nfs-utils (statd) where statd did not ignore the SIGPIPE signal, allowing remote attackers to cause a denial-of-service by terminating a TCP connection prematurely. Documented in NFS-related advisories (Debian DSA 606-1, Red Hat RHSA-2005:014, Ubuntu USN-36-1) and noted by N...

CAN-2004-0990

CVE-2004-0990 is referenced across connected advisories/plugins (e.g., Ubuntu USN-11-1/USN-21-1 and SLES9 updates) as a GD graphics library issue. The documents confirm the CVE association and that updates to the gd package are the proposed remediation, but do not provide detailed root-cause, aff...

CAN-2004-0975

CVE-2004-0975 concerns the der_chop script in the OpenSSL package used by Trustix Secure Linux 1.5–2.1 and other OSes. The vulnerability arises from a symlink-based attack on temporary files, allowing local users to overwrite files. Connected documents confirm der_chop as the affected component a...

CAN-2004-0999

ZGV is affected by CVE-2004-0999. Affected software: zgv (SVGAlib graphics viewer). Vulnerability: remote attacker can cause a denial of service (application crash/segmentation fault) by feeding crafted multiple-image (animated) GIFs. Root cause: described as integer overflows and unsanitised inp...

CAN-2004-1076

CVE-2004-1076 affects the Atari800 emulator. The provided sources describe multiple buffer overflows in the RtConfigLoad function in rt-config.c, affecting versions before 1.3.4, allowing local users to execute arbitrary code via large values in the configuration file. Exploitation details are no...