3203 matches found
CVE-2001-1034
Format string vulnerability in Hylafax on FreeBSD allows local users to execute arbitrary code via format specifiers in the -h hostname argument for 1 faxrm or 2 faxalter...
Important: Red Hat Security Advisory: : : : New groff packages available to fix security problems
New groff packages have been made available that fix an overflow in groff. If the printing system running this is a security issue, it is recommended to update to the new, fixed packages. Update Jan 22 2003 Added description of CVE-2001-1022 which was also fixed by these erratum packages Groff is...
[CLA-2002:448] Conectiva Linux Security Announcement - libgtop
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- CONECTIVA LINUX SECURITY ANNOUNCEMENT - -------------------------------------------------------------------------- PACKAGE : libgtop SUMMARY : libgtop vulnerabilities DATE :...
CVE-2001-1566
Format string vulnerability in libvanessalogger 0.0.1 in Perdition 0.1.8 allows remote attackers to execute arbitrary code via format string specifiers in the vanessaloggerlog function...
CVE-2001-1562
Format string vulnerability in nvi before 1.79 allows local users to gain privileges via format string specifiers in a filename...
DEBIAN-CVE-2001-1562
Format string vulnerability in nvi before 1.79 allows local users to gain privileges via format string specifiers in a filename...
CVE-2001-1562
Format string vulnerability in nvi before 1.79 allows local users to gain privileges via format string specifiers in a filename...
CVE-2001-1566
Format string vulnerability in libvanessalogger 0.0.1 in Perdition 0.1.8 allows remote attackers to execute arbitrary code via format string specifiers in the vanessaloggerlog function...
[SECURITY] [DSA-095-1] gpm (gpm-root) format string vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-095-1 [email protected] http://www.debian.org/security/ Robert van der Meulen December 27, 2001 - ------------------------------------------------------------------------ Package : gpm Problem...
CVE-2001-1203
Format string vulnerability in gpm-root in gpm 1.17.8 through 1.17.18 allows local users to gain root privileges...
CVE-2001-0869
Format string vulnerability in the default logging callback function saslsyslog in common.c in Cyrus SASL library cyrus-sasl may allow remote attackers to execute arbitrary commands...
CVE-2001-1215
Format string vulnerability in PFinger 0.7.5 through 0.7.7 allows remote attackers to execute arbitrary code via format string specifiers in a .plan file...
CVE-2001-0879
Format string vulnerability in the C runtime functions in SQL Server 7.0 and 2000 allows attackers to cause a denial of service...
GnuPG format string vulnerability in do_get() in ttyio.c while prompting for a new filename
Overview There is a format string vulnerability in GNU Privacy Guard. By sending a GPG message with a carefully crafted malicious filename, an attacker may be able to execute arbitrary code as the user who decrypts the message. Description GNU Privacy Guard GPG is a free, RFC2440 compliant...
CVE-2001-0838
Format string vulnerability in Network Solutions Rwhoisd 1.5.x allows remote attackers to execute arbitrary code via format string specifiers in the -soa command...
WU-FTPD configured to use RFC 931 authentication running in debug mode contains format string vulnerability
Overview WU-FTPD contains a format string vulnerability that manifests when WU-FTPD is configured to use RFC 931 authentication and is run in debug mode. A crafted identd response could be used to execute arbitrary code on a vulnerable server. Description A format string vulnerability exists in t...
CVE-2001-0927
Format string vulnerability in the permitted function of GNOME libgtopdaemon in libgtop 1.0.12 and earlier allows remote attackers to execute arbitrary code via an argument that contains format specifiers that are passed into the 1 syslogmessage and 2 syslogiomessage functions...
[CERT-intexxia] Auto Nice Daemon Format String Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SECURITY ADVISORY INTEXXIAc 26 11 2001 ID 1047-231101 TITLE : Auto Nice Daemon Format String Vulnerability CREDITS : Guillaume Pelat / INTEXXIA SYSTEM AFFECTED =============== AND = 1.0.4 DESCRIPTION =========== Auto Nice Daemon is vulnerable to a...
CVE-2001-0920
Format string vulnerability in auto nice daemon AND 1.0.4 and earlier allows a local user to possibly execute arbitrary code via a process name containing a format string...
CVE-2001-0913
Format string vulnerability in Network Solutions Rwhoisd 1.5.7.2 and earlier, when using syslog, allows remote attackers to corrupt memory and possibly execute arbitrary code via a rwhois request that contains format specifiers...