Lucene search
K

477 matches found

Tenable Nessus
Tenable Nessus
added 2005/02/10 12:0 a.m.22 views

RHEL 2.1 / 3 : emacs (RHSA-2005:112)

Updated Emacs packages that fix a string format issue are now available. Emacs is a powerful, customizable, self-documenting, modeless text editor. Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs. If a user connects to a malicious POP server, an...

7.5CVSS6AI score0.04364EPSS
Exploits0References3
Debian
Debian
added 2005/02/08 9:10 a.m.22 views

[SECURITY] [DSA 670-1] New emacs20 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 670-1 [email protected] http://www.debian.org/security/ Martin Schulze February 8th, 2005 http://www.debian.org/security/faq -...

7.5CVSS1.2AI score0.04364EPSS
Exploits0
OSV
OSV
added 2005/02/08 12:0 a.m.23 views

DSA-671-1 xemacs21 - format string

Bulletin has no description...

7.5CVSS5.9AI score0.04364EPSS
Exploits0
Cvelist
Cvelist
added 2005/01/22 5:0 a.m.28 views

CVE-2004-1004

Multiple format string vulnerabilities in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...

6.5AI score0.01625EPSS
Exploits0References5
CVE
CVE
added 2005/01/22 5:0 a.m.72 views

CVE-2004-1004

CVE-2004-1004 affects Midnight Commander (mc) up to version 4.5.55 with multiple format string vulnerabilities. The provided connected advisories confirm that various distros release patches (e.g., SUSE SLES9 patch 5011441, Gentoo GLSA 200502-24, Debian DSA 639-1) to fix these issues. The CVE ent...

7.5CVSS6.5AI score0.01625EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2005/01/22 5:0 a.m.38 views

CVE-2004-1004

Multiple format string vulnerabilities in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...

7.5CVSS6.6AI score0.01625EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/01/14 12:0 a.m.32 views

Debian DSA-639-1 : mc - several vulnerabilities

Andrew V. Samoilov has noticed that several bugfixes which were applied to the source by upstream developers of mc, the midnight commander, a file browser and manager, were not backported to the current version of mc that Debian ships in their stable release. The Common Vulnerabilities and...

7.5CVSS5.7AI score0.03103EPSS
Exploits0References11
NVD
NVD
added 2004/12/06 5:0 a.m.25 views

CVE-2004-0451

Multiple format string vulnerabilities in the 1 logquit, 2 logerr, or 3 loginfo functions in Software Upgrade Protocol SUP allows remote attackers to execute arbitrary code via format string specifiers in messages that are logged by syslog...

10CVSS7.6AI score0.0439EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2004/11/08 12:0 a.m.36 views

isc-dhcpd -- format string vulnerabilities

The ISC DHCP programs are vulnerable to several format string vulnerabilities which may allow a remote attacker to execute arbitrary code with the permissions of the DHCP programs, typically root for the DHCP server...

10CVSS7.4AI score0.07968EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2004/11/05 12:0 a.m.18 views

Monolith Lithtech Game Engine - Multiple Remote Format String Vulnerabilities

// source: https://www.securityfocus.com/bid/11610/info Lithtech game engine is prone to multiple remote format-string vulnerabilities because of incorrect usage of 'printf'-type functions. Format specifiers can be supplied directly to vulnerable functions from external data. A denial-of-service...

7AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2004/11/02 12:0 a.m.40 views

Speedtouch USB driver: Privilege escalation vulnerability

Background The speedtouch package contains a driver for the ADSL SpeedTouch USB modem. Description The Speedtouch USB driver contains multiple format string vulnerabilities in modemrun, pppoa2 and pppoa3. This flaw is due to an improperly made syslog system call. Impact A malicious local user cou...

7.2CVSS7AI score0.00433EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/11/02 12:0 a.m.21 views

GLSA-200411-04 : Speedtouch USB driver: Privilege escalation vulnerability

The remote host is affected by the vulnerability described in GLSA-200411-04 Speedtouch USB driver: Privilege escalation vulnerability The Speedtouch USB driver contains multiple format string vulnerabilities in modemrun, pppoa2 and pppoa3. This flaw is due to an improperly made syslog system cal...

7.2CVSS6AI score0.00433EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.31 views

Debian DSA-401-1 : hylafax - format strings

The SuSE Security Team discovered several exploitable formats string vulnerabilities in hylafax, a flexible client/server fax system, which could lead to executing arbitrary code as root on the fax server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package check...

10CVSS5.8AI score0.1206EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.22 views

Debian DSA-449-1 : metamail - buffer overflow, format string bugs

Ulf Harnhammar discovered two format string bugs CAN-2004-0104 and two buffer overflow bugs CAN-2004-0105 in metamail, an implementation of MIME. An attacker could create a carefully-crafted mail message which will execute arbitrary code as the victim when it is opened and parsed through metamail...

7.5CVSS6.3AI score0.2622EPSS
Exploits1References3
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.18 views

CVE-2001-1081

Format string vulnerabilities in Livingston/Lucent RADIUS before 2.1.va.1 may allow local or remote attackers to cause a denial of service and possibly execute arbitrary code via format specifiers that are injected into log messages...

7.8AI score0.02782EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2004/08/30 12:0 a.m.25 views

GLSA-200405-21 : Midnight Commander: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200405-21 Midnight Commander: Multiple vulnerabilities Numerous security issues have been discovered in Midnight Commander, including several buffer overflow vulnerabilities, multiple vulnerabilities in the handling of temporary...

10CVSS6.3AI score0.03936EPSS
Exploits0References4
CVE
CVE
added 2004/08/20 4:0 a.m.55 views

CVE-2003-1051

CVE-2003-1051 affects IBM DB2 Universal Database 8.1. It describes multiple format-string vulnerabilities that could allow local users to execute arbitrary code via certain command-line arguments to db2start, db2stop, or db2govd. Root cause: format string handling issues in the involved binaries....

7.2CVSS7.7AI score0.01256EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2004/08/18 4:0 a.m.17 views

CVE-2004-0232

Multiple format string vulnerabilities in Midnight Commander mc before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code...

5CVSS7.3AI score0.02945EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2004/08/18 4:0 a.m.27 views

CVE-2004-0232

Multiple format string vulnerabilities in Midnight Commander mc before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code...

5CVSS6AI score0.02945EPSS
Exploits0References1
OSV
OSV
added 2004/08/18 4:0 a.m.7 views

CVE-2004-0232

Multiple format string vulnerabilities in Midnight Commander mc before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code...

7.2AI score
Exploits0References6
Rows per page
Query Builder