477 matches found
CVE-2006-3454
Multiple format string vulnerabilities in Symantec AntiVirus Corporate Edition 8.1 up to 10.0, and Client Security 1.x up to 3.0, allow local users to execute arbitrary code via format strings in 1 Tamper Protection and 2 Virus Alert Notification messages...
CVE-2006-4127
Multiple format string vulnerabilities in DConnect Daemon 0.7.0 and earlier allow remote administrators to execute arbitrary code via format string specifiers that are not properly handled when calling the 1 privmsg or 2 pubmsg functions from a cmd.user.c, b penalties.c, or c cmd.dc.c...
CVE-2006-4127
The CVE-2006-4127 entry covers format string vulnerabilities in DConnect Daemon (versions up to 0.7.0). The issue arises when calling privmsg() or pubmsg from the files cmd.user.c, penalties.c, or cmd.dc.c, allowing remote administrators to execute arbitrary code due to improper handling of forma...
DConnect Daemon chat server multiple security vulnerabilities
DoS conditions, format string vulnerabilities...
CVE-2006-3628
Multiple format string vulnerabilities in Wireshark aka Ethereal 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the 1 ANSI MAP, 2 Checkpoint FW-1, 3 MQ, 4 XML, and 5 NTP dissectors...
CVE-2006-3628
Multiple format string vulnerabilities in Wireshark aka Ethereal 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the 1 ANSI MAP, 2 Checkpoint FW-1, 3 MQ, 4 XML, and 5 NTP dissectors...
security flaw
Multiple unspecified format string vulnerabilities in Dia have unspecified impact and attack vectors, a different set of issues than CVE-2006-2480...
Format string
Multiple unspecified format string vulnerabilities in Dia have unspecified impact and attack vectors, a different set of issues than CVE-2006-2480...
DEBIAN-CVE-2006-2453
Multiple unspecified format string vulnerabilities in Dia have unspecified impact and attack vectors, a different set of issues than CVE-2006-2480...
CVE-2006-2453
Multiple unspecified format string vulnerabilities in Dia have unspecified impact and attack vectors, a different set of issues than CVE-2006-2480...
CVE-2006-2453
CVE-2006-2453 / CVE-2006-2480 (Dia): The vulnerability is in Dia’s format string handling. Multiple connected advisories (OpenSUSE, Red Hat/CentOS, Gentoo GLSA) state that crafted Dia files could allow arbitrary code execution under the user running Dia. Affected: Dia (the diagram drawing app) wi...
CVE-2006-2453
Multiple unspecified format string vulnerabilities in Dia have unspecified impact and attack vectors, a different set of issues than CVE-2006-2480...
CVE-2006-2537
Multiple format string vulnerabilities in a OpenBOR 2.0046 and earlier, b Beats of Rage BOR 1.0029 and earlier, and c Horizontal Shooter BOR HOR 2.0000 and earlier allow remote attackers to execute code via format string specifiers in configurations used in various mod files, as demonstrated by t...
CVE-2006-2537
Multiple format string vulnerabilities in a OpenBOR 2.0046 and earlier, b Beats of Rage BOR 1.0029 and earlier, and c Horizontal Shooter BOR HOR 2.0000 and earlier allow remote attackers to execute code via format string specifiers in configurations used in various mod files, as demonstrated by t...
Multiple Raydium game engine security vulnerabilities
Buffer overflows, format string vulnerabilities, DoS conditions in both server and client parts...
CVE-2006-2230
Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.4 might allow attackers to cause a denial of service via format string specifiers in an MP3 filename specified on the command line. NOTE: this is a different vulnerability than CVE-2006-1905. In addition, if the only attack...
CVE-2006-2230
Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.4 might allow attackers to cause a denial of service via format string specifiers in an MP3 filename specified on the command line. NOTE: this is a different vulnerability than CVE-2006-1905. In addition, if the only attack...
CVE-2006-2230
CVE-2006-2230 affects xine-ui (the xine viewer UI) and is described as multiple format string vulnerabilities in xiTK/main.c of xine 0.99.4 that can cause a denial of service via a filename argument. Public references in Debian and OpenVAS advisories confirm a format-string issue exploitable loca...
CVE-2006-2230
Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.4 might allow attackers to cause a denial of service via format string specifiers in an MP3 filename specified on the command line. NOTE: this is a different vulnerability than CVE-2006-1905. In addition, if the only attack...
CVE-2006-1905
Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file...