CVE-2007-6273

Multiple format string vulnerabilities in the configuration file in SonicWALL GLobal VPN Client 3.1.556 and 4.0.0.810 allow user-assisted remote attackers to execute arbitrary code via format string specifiers in the 1 Hostname tag or the 2 name attribute in the Connection tag. NOTE: there might...

Ubuntu 6.06 LTS / 6.10 / 7.04 : qt-x11-free vulnerability (USN-495-1)

Several format string vulnerabilities have been discovered in Qt warning messages. By causing an application to process specially crafted input data which triggered Qt warnings, this could be exploited to execute arbitrary code with the privilege of the user running the application. Note that...

openSUSE 10 Security Update : php5 (php5-2687)

CVE-2007-0906: Multiple buffer overflows in PHP before 5.2.1 allow attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors in the 1 session, 2 zip, 3 imap, and 4 sqlite extensions; 5 stream filters; and the 6 strreplace, 7 mail, 8 ibasedeleteuser, 9...

CVE-2007-3675

Multiple format string vulnerabilities in the kavwebscan.CKAVWebScan ActiveX control kavwebscan.dll in Kaspersky Online Scanner before 5.0.98 allow remote attackers to execute arbitrary code via format string specifiers in "various string formatting functions," which trigger heap-based buffer...

Format string

Multiple format string vulnerabilities in websrv.cpp in Dawn of Time 1.69s beta4 and earlier allow remote attackers to execute arbitrary code via format string specifiers in the 1 username or 2 password fields when accessing certain "restricted zones", which are not properly handled by the a...

Format string

Multiple format string vulnerabilities in Battlefront Dropteam 1.3.3 and earlier allow remote attackers to execute arbitrary code via format string specifiers in the 1 username, 2 password, and 3 nickname fields in a "0x01" packet...

CVE-2007-5265

CVE-2007-5265 describes multiple format string vulnerabilities in websrv.cpp of Dawn of Time 1.69s beta4 and earlier. The flaws allow remote attackers to execute arbitrary code via format string specifiers in the (1) username or (2) password fields when accessing certain “restricted zones”, due t...

CVE-2007-5262

CVE-2007-5262 affects Battlefront Dropteam 1.3.3 and earlier. The vulnerability is multiple format string weaknesses in the server handling of a \

Format string

Multiple format string vulnerabilities in the Monolith Lithtech engine, as used by First Encounter Assault Recon F.E.A.R. 1.08 and earlier, when Punkbuster PB is enabled, allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format string specifiers in 1 a...

CVE-2007-5247

Multiple format string vulnerabilities in the Monolith Lithtech engine, as used by First Encounter Assault Recon F.E.A.R. 1.08 and earlier, when Punkbuster PB is enabled, allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format string specifiers in 1 a...

CVE-2007-5248

Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1 and earlier, Quake 4 1.4.2 and earlier, and Prey 1.3 and earlier, when Punkbuster PB is enabled, allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format...

CVE-2007-5248

Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1 and earlier, Quake 4 1.4.2 and earlier, and Prey 1.3 and earlier, when Punkbuster PB is enabled, allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format...

CVE-2007-5248

CVE-2007-5248 affects the ID Software Doom 3 engine (Doom 3 1.3.1 and earlier; Quake 4 1.4.2 and earlier; Prey 1.3 and earlier) when Punkbuster (PB) is enabled. The vulnerability arises from format string handling in two PB packets (PB_Y to YPG server; PB_U to UCON), enabling remote attackers to ...

Dawn of Time 1.69 MUD Server - Multiple Format String Vulnerabilities

Dawn of Time 1.69 MUD Server - Multiple Format String Vulnerabilities source: https://www.securityfocus.com/bid/25944/info Dawn of Time MUD server is prone to multiple format-string vulnerabilities. Exploiting these issues will allow attackers to execute arbitrary code with the permissions of a...

Format string

Multiple format string vulnerabilities in Babo Violent 2 2.08.00 and earlier allow remote attackers to execute arbitrary code via format string specifiers in 1 a message or 2 certain data associated with an admin login...

CVE-2007-4378

Multiple format string vulnerabilities in Babo Violent 2 2.08.00 and earlier allow remote attackers to execute arbitrary code via format string specifiers in 1 a message or 2 certain data associated with an admin login...

CVE-2007-4378

Multiple format string vulnerabilities in Babo Violent 2 2.08.00 and earlier allow remote attackers to execute arbitrary code via format string specifiers in 1 a message or 2 certain data associated with an admin login...

CVE-2007-4378

CVE-2007-4378 describes multiple format string vulnerabilities in Babo Violent 2 (version 2.08.00 and earlier). The issue allows remote attackers to execute arbitrary code through format string specifiers in (1) a message or (2) data associated with an admin login. The connected documents confirm...

CVE-2007-3388

Multiple format string vulnerabilities in 1 qtextedit.cpp, 2 qdatatable.cpp, 3 qsqldatabase.cpp, 4 qsqlindex.cpp, 5 qsqlrecord.cpp, 6 qglobal.cpp, and 7 qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 before 3.3.8 20070727 allow remote attackers to execute arbitrary code via format string specifier...

Format string

Multiple format string vulnerabilities in 1 qtextedit.cpp, 2 qdatatable.cpp, 3 qsqldatabase.cpp, 4 qsqlindex.cpp, 5 qsqlrecord.cpp, 6 qglobal.cpp, and 7 qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 before 3.3.8 20070727 allow remote attackers to execute arbitrary code via format string specifier...