146 matches found
BolinTech Dream FTP Server 1.02 Format String
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'BolinTech...
pango: pango_glyph_string_set_size integer overflow
Integer overflow in the pangoglyphstringsetsize function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow, as...
Mandriva Linux Security Advisory : wireshark (MDVSA-2009:088)
Multiple vulnerabilities has been identified and corrected in wireshark : o The PROFINET dissector was vulnerable to a format string overflow CVE-2009-1210. o The Check Point High-Availability Protocol CPHAP dissecto could crash CVE-2009-1268. o Wireshark could crash while loading a Tektronix .rf...
Mandrake Security Advisory MDVSA-2009:088 (wireshark)
The remote host is missing an update to wireshark announced via advisory MDVSA-2009:088. OpenVAS Vulnerability Test $Id: mdksa2009088.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:088 wireshark Authors: Thomas Reinke Copyright: Copyright c 2009...
[ MDVSA-2009:088 ] wireshark
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:088 http://www.mandriva.com/security/ Package : wireshark Date : April 9, 2009 Affected: 2008.1, 2009.0, Corporate 4.0 Problem Description: Multiple vulnerabilities has been identified and corrected in...
wireshark -- multiple vulnerabilities
Wireshark team reports: Wireshark 1.0.7 fixes the following vulnerabilities: The PROFINET dissector was vulnerable to a format string overflow. Bug 3382 Versions affected: 0.99.6 to 1.0.6, CVE-2009-1210. The Check Point High-Availability Protocol CPHAP dissector could crash. Bug 3269 Versions...
Ubuntu Update for samba vulnerabilities USN-419-1
Ubuntu Update for Linux kernel vulnerabilities USN-419-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4191.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for samba vulnerabilities USN-419-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-419-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 5.10 / 6.06 LTS / 6.10 : samba vulnerabilities (USN-419-1)
A flaw was discovered in Samba's file opening code, which in certain situations could lead to an endless loop, resulting in a denial of service. CVE-2007-0452 A format string overflow was discovered in Samba's ACL handling on AFS shares. Remote users with access to an AFS share could create craft...
CVE-2002-2253
Multiple buffer overflows in Cyrus Sieve / libSieve 2.1.2 and earlier allow remote attackers to execute arbitrary code via 1 a long header name, 2 a long IMAP flag, or 3 a script that generates a large number of errors that overflow the resulting error string...
BolinTech Dream FTP Server 1.02 Format String
This module exploits a format string overflow in the BolinTech Dream FTP Server version 1.02. Based on the exploit by SkyLined. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'BolinTech Dream F...
USN-419-1: Samba vulnerabilities
A flaw was discovered in Samba's file opening code, which in certain situations could lead to an endless loop, resulting in a denial of service. CVE-2007-0452 A format string overflow was discovered in Samba's ACL handling on AFS shares. Remote users with access to an AFS share could create craft...
Symantec Security Advisory, SYM06-005
Symantec Security Advisory SYM06-005 17 March 2006 Veritas Backup Exec for Windows Servers: Media Server BENGINE Service Job log Format String Overflow Revision History None Severity Low network/system authorization and specific configuration required Remote Access Yes Local Access No...
[Full-disclosure] [ACSSEC-2005-11-25-0x5] FTGate 4.4 [Build 4.4.000 Oct 26 2005] Fo rmat String Overflow
-=+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++=- ACS Security Assessment Advisory - Format String Overflow ID: ACSSEC-2005-11-25 - 0x5 Class: Format String Overflow Package: FTGate 4.4 Build 4.4.000 Oct 26 2005 POP3 Service Build: Windows NT/2k/XP/2k3 Notified: Dec 01, 2005 Release...
[Full-disclosure] [ACSSEC-2005-11-25-0x6] FTGate 4.4 [Build 4.4.000 Oct 26 2005] Fo rmat String Overflow
-=+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++=- ACS Security Assessment Advisory - Format String Overflow ID: ACSSEC-2005-11-25 - 0x6 Class: Format String Overflow Package: FTGate 4.4 Build 4.4.000 Oct 26 2005 IMAPd Service Build: Windows NT/2k/XP/2k3 Notified: Dec 01, 2005...
DEBIAN-CVE-2005-3962
Integer overflow in the format string functionality Perlsvvcatpvfn in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as...
FreeBSD : ethereal -- multiple protocol dissectors vulnerabilities (5d51d245-00ca-11da-bc08-0001020eed82)
An Ethreal Security Advisories reports : Our testing program has turned up several more security issues : - The LDAP dissector could free static memory and crash. - The AgentX dissector could crash. - The 802.3 dissector could go into an infinite loop. - The PER dissector could abort. - The DHCP...
ethereal -- multiple protocol dissectors vulnerabilities
An Ethreal Security Advisories reports: Our testing program has turned up several more security issues: The LDAP dissector could free static memory and crash. The AgentX dissector could crash. The 802.3 dissector could go into an infinite loop. The PER dissector could abort. The DHCP dissector...
MailEnable < 1.8.1 mailto Remote Format String Overflow
Binary data 2717.prm...
Debian DSA-259-1 : qpopper - mail user privilege escalation
Florian Heinz posted to the Bugtraq mailing list an exploit for qpopper based on a bug in the included vsnprintf implementation. The sample exploit requires a valid user account and password, and overflows a string in the popmsg function to give the user 'mail' group privileges and a shell on the...