Lucene search
K

3203 matches found

Cvelist
Cvelist
added 2002/06/25 4:0 a.m.25 views

CVE-2001-0920

Format string vulnerability in auto nice daemon AND 1.0.4 and earlier allows a local user to possibly execute arbitrary code via a process name containing a format string...

7.2AI score0.00387EPSS
Exploits0References4
CVE
CVE
added 2002/06/25 4:0 a.m.44 views

CVE-2001-0869

CVE-2001-0869 is a format-string vulnerability in the Cyrus SASL library (cyrus-sasl) affecting the default logging callback _sasl_syslog in common.c. The Mandrake MDKSA-2002:018 advisory notes a format bug in cyrus-sasl that could allow a remote attacker to obtain access or elevate privileges, w...

7.5CVSS7.4AI score0.03EPSS
Exploits0References9Affected Software2
CVE
CVE
added 2002/06/25 4:0 a.m.50 views

CVE-2001-1203

The CVE corresponds to a local root vulnerability in the gpm package (gpm-root) where a format string flaw in gpm 1.17.8–1.17.18 allows local privilege escalation. Debian and OpenVAS entries describe the issue as requiring an update to gpm (DSA-095-1); Nessus notes this as a Debian local root adv...

7.2CVSS6.5AI score0.00346EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2002/06/25 4:0 a.m.66 views

CVE-2001-1022

CVE-2001-1022 relates to a format-string vulnerability in the groff family: the pic component of groff (and jgroff before 1.15) could bypass the -S option and execute arbitrary commands via format-string specifiers in the plot command. Affected: groff 1.16.1 and other versions; jgroff before 1.15...

7.5CVSS7.4AI score0.11438EPSS
Exploits1References8Affected Software2
Cvelist
Cvelist
added 2002/06/25 4:0 a.m.26 views

CVE-2001-1022

Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command...

7.4AI score0.11438EPSS
Exploits1References8
CVE
CVE
added 2002/06/25 4:0 a.m.43 views

CVE-2001-0920

The CVE-2001-0920 entry concerns a format string vulnerability in the auto nice daemon (AND) version 1.0.4 and earlier that lets a local user potentially execute arbitrary code by supplying a process name containing a format string. Affected component: the daemon’s handling of process names. Unde...

6.2CVSS7.6AI score0.00387EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2002/06/25 4:0 a.m.21 views

CVE-2002-0159

Format string vulnerability in the administration function in Cisco Secure Access Control Server ACS for Windows, 2.6.x and earlier and 3.x through 3.01 build 40, allows remote attackers to crash the CSADMIN module only denial of service of administration function or execute arbitrary code via...

7.7AI score0.05439EPSS
Exploits0References5
CVE
CVE
added 2002/06/25 4:0 a.m.53 views

CVE-2001-1176

CVE-2001-1176 describes a format-string vulnerability in Check Point VPN-1/FireWall-1 4.1. The issue allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection. Exploitation details are not provided in the connected documents; no ex...

7.5CVSS7.6AI score0.02756EPSS
Exploits0References5Affected Software3
Cvelist
Cvelist
added 2002/06/25 4:0 a.m.20 views

CVE-2001-1176

Format string vulnerability in Check Point VPN-1/FireWall-1 4.1 allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection...

7.2AI score0.02756EPSS
Exploits0References5
Cvelist
Cvelist
added 2002/06/25 4:0 a.m.21 views

CVE-2001-0869

Format string vulnerability in the default logging callback function saslsyslog in common.c in Cyrus SASL library cyrus-sasl may allow remote attackers to execute arbitrary commands...

7.3AI score0.03EPSS
Exploits0References9
NVD
NVD
added 2002/06/18 4:0 a.m.15 views

CVE-2002-0586

Format string vulnerability in NsPdLog function for the external database driver proxy daemon library libnspd.a of AOLServer 3.0 through 3.4.2 allows remote attackers to execute arbitrary code via the Error or Notice parameters...

7.5CVSS7.7AI score0.02912EPSS
Exploits0References4
NVD
NVD
added 2002/06/18 4:0 a.m.16 views

CVE-2002-0598

Format string vulnerability in Foundstone FScan 1.12 with banner grabbing enabled allows remote attackers to execute arbitrary code on the scanning system via format string specifiers in the server banner...

7.5CVSS7.7AI score0.02989EPSS
Exploits0References4
securityvulns
securityvulns
added 2002/06/13 12:0 a.m.28 views

[CERT-intexxia] mmmail POP3-SMTP Daemon Format String Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SECURITY ADVISORY INTEXXIAc 04 06 2002 ID 1054-040602 TITLE : mmmail POP3-SMTP Daemon Format String Vulnerability CREDITS : Guillaume Pelat / INTEXXIA SYSTEM AFFECTED =============== mmmail = 0.0.13 mmpop3d & mmsmtpd DESCRIPTION =========== "mmmail...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2002/06/12 12:0 a.m.44 views

IRIX talkd vulnerability

-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title: talkd vulnerability Number: 20020603-01-I Date: June 10, 2002 Reference: CVE-2000-1010 - ----------------------- - --- Issue Specifics --- - ----------------------- It's been reported that the /usr/etc/talkd daemon contains a format...

10CVSS6.6AI score0.04561EPSS
Exploits0
CVE
CVE
added 2002/06/11 4:0 a.m.36 views

CVE-2002-0586

CVE-2002-0586 describes a format-string vulnerability in AOLServer (libnspd.a) across versions 3.0–3.4.2, specifically in the Ns_PdLog function. An attacker could exploit the Error or Notice parameters to execute arbitrary code remotely. The vulnerability impacts the AOLServer external database d...

7.5CVSS8.1AI score0.02912EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2002/06/11 4:0 a.m.15 views

CVE-2002-0586

Format string vulnerability in NsPdLog function for the external database driver proxy daemon library libnspd.a of AOLServer 3.0 through 3.4.2 allows remote attackers to execute arbitrary code via the Error or Notice parameters...

7.7AI score0.02912EPSS
Exploits0References4
exploitpack
exploitpack
added 2002/06/06 12:0 a.m.10 views

Ehud Gavron TrACESroute 6.1.1 - Terminator Function Format String

Ehud Gavron TrACESroute 6.1.1 - Terminator Function Format String source: https://www.securityfocus.com/bid/4956/info A format string vulnerability exists in TrACESroute. The problem exists in the terminator -T function of the program. Due to improper use of the fprintf function, an attacker may ...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2002/06/06 12:0 a.m.21 views

Ehud Gavron TrACESroute 6.1.1 - Terminator Function Format String

source: https://www.securityfocus.com/bid/4956/info A format string vulnerability exists in TrACESroute. The problem exists in the terminator -T function of the program. Due to improper use of the fprintf function, an attacker may be able to supply a malicious format string to the program that...

7AI score
Exploits0
securityvulns
securityvulns
added 2002/06/05 12:0 a.m.33 views

SRT Security Advisory (SRT2002-06-04-1711): SCO crontab

====================================================================== Strategic Reconnaissance Team Security Advisory SRT2002-06-04-1611 Topic : SCO OpenServer crontab format string vulnerability Date : June 04, 2002 Credit : KF dotslashatsnosoft.com Site : http://www.snosoft.com...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2002/06/05 12:0 a.m.28 views

SRT Security Advisory (SRT2002-06-04-1011): slurp

====================================================================== Strategic Reconnaissance Team Security Advisory SRT2002-06-04-1011 Topic : Slurp news retriever remote format string vulnerability Date : June 04, 2002 Credit : zillionatsafemode.org Site : http://www.snosoft.com...

7.4AI score
Exploits0
Rows per page
Query Builder