477 matches found
CVE-2004-0354
Multiple format string vulnerabilities in GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow remote attackers to execute arbitrary code via format string specifiers in strings passed to 1 the info function in log.c, 2 the anubiserror function in errs.c, or 3 the sslerror function in ssl.c...
CVE-2004-0354
CVE-2004-0354 affects GNU Anubis versions 3.6.0–3.6.2 and 3.9.92–3.9.93. The issue is a format string vulnerability in three code paths: the info function in log.c, the anubis_error function in errs.c, and the ssl_error function in ssl.c, which can enable remote code execution. The connected docu...
CVE-2004-0104
Multiple format string vulnerabilities in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code...
CVE-2004-0039
Multiple format string vulnerabilities in HTTP Application Intelligence AI component in Check Point Firewall-1 NG-AI R55 and R54, and Check Point Firewall-1 HTTP Security Server included with NG FP1, FP2, and FP3 allows remote attackers to execute arbitrary code via HTTP requests that cause forma...
GNU Anubis 3.6.x/3.9.x - 'auth.c auth_ident()' Remote Overflow
// source: https://www.securityfocus.com/bid/9772/info GNU Anubis has been reported prone to multiple buffer overflow and format string vulnerabilities. It has been conjectured that a remote attacker may potentially exploit these vulnerabilities to have arbitrary code executed in the context of t...
GNU Anubis 3.6.x/3.9.x - Multiple Format String Vulnerabilities
source: https://www.securityfocus.com/bid/9772/info GNU Anubis has been reported prone to multiple buffer overflow and format string vulnerabilities. It has been conjectured that a remote attacker may potentially exploit these vulnerabilities to have arbitrary code executed in the context of the...
metamail contains multiple format string vulnerabilities
Overview Multiple format string vulnerabilities in the metamail package could allow a remote attacker to execute arbitrary code on the vulnerable system. An attacker may be able to exploit these vulnerabilities via a specially-crafted email message. Description The metamail package is one of the...
CVE-2004-0104
Multiple format string vulnerabilities in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code...
CVE-2004-0104
CVE-2004-0104 concerns multiple format string vulnerabilities in Metamail 2.7 and earlier. The connected advisories and OpenVAS entries confirm the flaws reside in the Metamail/MIME handling code and headers, enabling remote attackers to execute arbitrary code with the privileges of the user runn...
Metamail 2.7 - Multiple Buffer Overflow / Format String Handling Vulnerabilities
source: https://www.securityfocus.com/bid/9692/info Metamail has been reported prone to multiple vulnerabilities that may provide for arbitrary code execution. Two buffer overflow vulnerabilities have been reported to affect Metamail. Additionally, two format string-handling vulnerabilities have...
Sybase Anywhere multiple bugs
Buffer overflows, format string bugs, etc in multiple SQL functions...
DSA-401 hylafax - format strings
Bulletin has no description...
kpopup multiple bugs
relative paths on system call, format string bugs, etc...
Multiple node bugs
Buffer overflows, format string bugs...
zkfingerd-2.0.2(the last version)Format String Vulnerabilities
======================================== Ph4nt0m Security Advisory 22003--7-7 ======================================== Title: zkfingerd-2.0.2the last versionFormat String Vulnerabilities Advisory Number : SRT2003-7-7-002 Product : zkfingerd Version : 2.0.2 possibility All versions Vendor :...
CVE-2003-0060
Format string vulnerabilities in the logging routines for MIT Kerberos V5 Key Distribution Center KDC before 1.2.5 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in Kerberos principal names...
CVE-2003-0060
Format string vulnerabilities in the logging routines for MIT Kerberos V5 Key Distribution Center KDC before 1.2.5 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in Kerberos principal names...
CVE-2003-0060
CVE-2003-0060 describes a format-string vulnerability in the MIT Kerberos V5 KDC logging routines prior to version 1.2.5. The issue allows remote attackers to trigger a denial of service (crash) and, potentially, to execute arbitrary code via format string specifiers in Kerberos principal names. ...
CVE-2002-1215
Multiple format string vulnerabilities in heartbeat 0.4.9 and earlier claimed as buffer overflows in some sources allow remote attackers to execute arbitrary code via certain packets to UDP port 694 incorrectly claimed as TCP in some sources...
CVE-2002-1215
Multiple format string vulnerabilities in heartbeat 0.4.9 and earlier claimed as buffer overflows in some sources allow remote attackers to execute arbitrary code via certain packets to UDP port 694 incorrectly claimed as TCP in some sources...