198 matches found
Format string
Multiple format string vulnerabilities in client/client.c in smbclient in Samba 3.2.0 through 3.2.12 might allow context-dependent attackers to execute arbitrary code via format string specifiers in a filename...
Gentoo Security Advisory GLSA 200404-12 (scorched3d)
The remote host is missing updates announced in advisory GLSA 200404-12. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200404-12 (scorched3d)
The remote host is missing updates announced in advisory GLSA 200404-12. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
FreeBSD Ports: rssh
The remote host is missing an update to the system as announced in the referenced advisory. VID 1f826757-26be-11d9-ad2d-0050fc56d258 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: rssh
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Debian DSA-1512-1 : evolution - format string attack
Ulf Harnhammar discovered that Evolution, the e-mail and groupware suite, had a format string vulnerability in the parsing of encrypted mail messages. If the user opened a specially crafted email message, code execution was possible. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
[SECURITY] [DSA 1512-1] New evolution packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1512-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst March 05, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1512-1] New evolution packages fix arbitrary code execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1512-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst March 05, 2008 http://www.debian.org/security/faq -...
SurgeMail Page命令远程格式串处理漏洞
BUGTRAQ ID: 27990 SurgeMail是下一代的邮件服务器,可运行在Windows NT/2K或UNIX平台上,支持所有的标准IMAP、POP3、SMTP、SSL和ESMTP协议。 SurgeMail中用于处理webmail接口(webmail.exe)的CGI存在安全漏洞,远程攻击者可能利用此漏洞控制服务器。 CGI中用于在请求错误页面时构建错误消息的函数未经验证格式参数便直接将其传送给了lvprintf: "TPL: Failed to Locate Template c:\surgemail\webmail\panel%s%s%s%s%s%s.tpl2=No suc...
Debian Security Advisory DSA 1121-1 (postgrey)
The remote host is missing an update to postgrey announced via advisory DSA 1121-1. Peter Bieringer discovered that postgrey, an greylisting implementation for Postfix, is vulnerable to a format string attack that allows remote attackers to the daemon. OpenVAS Vulnerability Test $Id: deb11211.nas...
Debian: Security Advisory (DSA-930-2)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 930-2 (smstools)
The remote host is missing an update to smstools announced via advisory DSA 930-2. Ulf Harnhammar from the Debian Security Audit project discovered a format string attack in the logging code of smstools, which may be exploited to execute arbitrary code with root privileges. The original advisory...
Debian: Security Advisory (DSA-1121)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Georgia SoftWorks SSH2 Server多个远程代码执行漏洞
BUGTRAQ ID: 27103 GSW SSH2 Server是使用在Windows平台下的SSH2/Telnet服务程序。 GSW SSH2 Server在处理畸形用户数据时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制客户端。 ------------------------------------ A 日志函数格式串和缓冲区溢出 ------------------------------------ GSW...
CVE-2007-5740
The format string protection mechanism in IMAPD for Perdition Mail Retrieval Proxy 1.17 and earlier allows remote attackers to execute arbitrary code via an IMAP tag with a null byte followed by a format string specifier, which is not counted by the mechanism...
CVE-2007-4840
PHP 5.2.4 and earlier allows context-dependent attackers to cause a denial of service application crash via 1 a long string in the outcharset parameter to the iconv function; or a long string in the charset parameter to the 2 iconvmimedecodeheaders, 3 iconvmimedecode, or 4 iconvstrlen function...
CVE-2007-4273
IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary directories and execute arbitrary code via a "crafted localized message file" that enables a format string attack, possibly involving the 1 OSSEMEMDBG or 2 TRCLOGFILE environment variable in db2licd...
Format string
IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary directories and execute arbitrary code via a "crafted localized message file" that enables a format string attack, possibly involving the 1 OSSEMEMDBG or 2 TRCLOGFILE environment variable in db2licd...
CVE-2007-4273
CVE-2007-4273 affects IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3. Local attackers could create arbitrary directories and execute arbitrary code by supplying a crafted localized message file that enables a format-string attack, potentially involving the OSSEMEMDBG or TRC_LOG_FILE envir...
CVE-2007-4273
IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary directories and execute arbitrary code via a "crafted localized message file" that enables a format string attack, possibly involving the 1 OSSEMEMDBG or 2 TRCLOGFILE environment variable in db2licd...