Lucene search
K

3203 matches found

Cvelist
Cvelist
added 2001/05/07 4:0 a.m.26 views

CVE-2001-0318

Format string vulnerability in ProFTPD 1.2.0rc2 may allow attackers to execute arbitrary commands by shutting down the FTP server while using a malformed working directory cwd...

7.2AI score0.11438EPSS
Exploits0References6
CVE
CVE
added 2001/05/07 4:0 a.m.55 views

CVE-2001-0193

CVE-2001-0193 describes a format-string vulnerability in the man page viewer, observed in some Linux distributions via the -l parameter, enabling local privilege escalation. Connected documents identify Debian as affected via the man-db package and reference Debian Security Advisory DSA-028-1, wh...

7.2CVSS6.5AI score0.01063EPSS
Exploits1References4Affected Software2
Cvelist
Cvelist
added 2001/05/07 4:0 a.m.19 views

CVE-2001-0060

Format string vulnerability in stunnel 3.8 and earlier allows attackers to execute arbitrary commands via a malformed ident username...

7.4AI score0.02774EPSS
Exploits0References7
Cvelist
Cvelist
added 2001/05/07 4:0 a.m.22 views

CVE-2001-0193

Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter...

6.4AI score0.01063EPSS
Exploits1References4
CVE
CVE
added 2001/05/07 4:0 a.m.61 views

CVE-2001-0111

CVE-2001-0111 : The vulnerability affects the splitvt utility (before 1.6.5). It is a format-string flaw that can allow a local attacker to run arbitrary commands via the -rcfile argument. Debian’s DSA-014-2 describes a buffer overflow/format-string attack with root access risk; remediation is up...

7.2CVSS7.3AI score0.01263EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2001/05/07 4:0 a.m.57 views

CVE-2001-0060

CVE-2001-0060 affects stunnel up to version 3.8 and earlier. The vulnerability is a format-string flaw in handling the ident username, enabling an attacker to execute arbitrary commands. Connected advisories reference Debian DSA 009-1 and indicate the need to update/stabilize stunnel; no exploit ...

10CVSS7.4AI score0.02774EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2001/05/07 4:0 a.m.55 views

CVE-2001-0013

CVE-2001-0013 describes a format-string vulnerability in the nslookupComplain() routine of ISC BIND 4. This flaw allows remote attackers to execute code with the BIND process’ privileges (typically root) by sending specially crafted DNS input. The CERT/CC note (CA-2001-02) identifies vulnerable v...

10CVSS6.9AI score0.10751EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2001/05/07 4:0 a.m.33 views

CVE-2001-0013

Format string vulnerability in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges...

6.9AI score0.10751EPSS
Exploits0References4
Cvelist
Cvelist
added 2001/05/07 4:0 a.m.18 views

CVE-2001-0218

Format string vulnerability in marsnwe 0.99.pl19 allows remote attackers to execute arbitrary commands...

7.4AI score0.03526EPSS
Exploits0References3
securityvulns
securityvulns
added 2001/05/04 12:0 a.m.50 views

Дырка в minicom (format string)

Ошибки форматной строки egid uucp...

0.9AI score
Exploits0References1Affected Software1
NVD
NVD
added 2001/05/03 4:0 a.m.22 views

CVE-2001-0193

Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter...

7.2CVSS6.5AI score0.01063EPSS
Exploits1References4
securityvulns
securityvulns
added 2001/04/26 12:0 a.m.25 views

[RHSA-2001:053-06] gftp format string vulnerability corrected

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: gftp format string vulnerability corrected Advisory ID: RHSA-2001:053-06 Issue date: 2001-04-20 Updated on: 2001-04-23 Product: Red Hat Linux Keywords: gftp format Cross...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2001/04/13 12:0 a.m.50 views

Серьезная дырка в cfingerd (format string)

Уязвимость форматной строки...

0.8AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2001/04/11 12:0 a.m.35 views

cfingerd 1.4 - Format String (1)

source: https://www.securityfocus.com/bid/2576/info A format string bug in the logging facility of the cfingerd "Configurable Finger Daemon" allows remote users to attain root privileges and execute arbitrary code. cfingerd queries and logs the remote username of users of the service. If an...

7.4AI score
Exploits0
NVD
NVD
added 2001/03/26 5:0 a.m.24 views

CVE-2001-0187

Format string vulnerability in wu-ftp 2.6.1 and earlier, when running with debug mode enabled, allows remote attackers to execute arbitrary commands via a malformed argument that is recorded in a PASV port assignment...

10CVSS7.4AI score0.05669EPSS
Exploits1References5
securityvulns
securityvulns
added 2001/03/26 12:0 a.m.32 views

Дырка в CGI pwc (format string bug)

Ошибка форматной строки при работе с syslog...

0.9AI score
Exploits0References1
Cvelist
Cvelist
added 2001/03/09 5:0 a.m.29 views

CVE-2001-0181

Format string vulnerability in the error logging code of DHCP server and client in Caldera Linux allows remote attackers to execute arbitrary commands...

7.5AI score0.05204EPSS
Exploits0References3
Debian
Debian
added 2001/02/08 11:38 p.m.12 views

[SECURITY] [DSA 028-1] New man-db packages released

---------------------------------------------------------------------------- Debian Security Advisory DSA-028-1 [email protected] http://www.debian.org/security/ Martin Schulze February 9, 2001 - ---------------------------------------------------------------------------- Package : man-db...

5.5AI score
Exploits0
Cvelist
Cvelist
added 2001/02/02 5:0 a.m.18 views

CVE-2001-0032

Format string vulnerability in ssldump possibly allows remote attackers to cause a denial of service and possibly gain root privileges via malicious format string specifiers in a URL...

7AI score0.04349EPSS
Exploits1References3
securityvulns
securityvulns
added 2001/02/01 12:0 a.m.27 views

SuSe / Debian man package format string vulnerability

Hi, This issue has been discussed in vuln-dev 2001-01-26, see: http://www.securityfocus.com/templates/archive.pike?end=2001-01-27&tid=15872 4&fromthread=0&start=2001-01-21&threads=1&list=82& Posted also on suse security list, and aparently overlooked. The man package that ships with SuSe Linux at...

0.5AI score
Exploits0
Rows per page
Query Builder