3203 matches found
CVE-2001-0318
Format string vulnerability in ProFTPD 1.2.0rc2 may allow attackers to execute arbitrary commands by shutting down the FTP server while using a malformed working directory cwd...
CVE-2001-0193
CVE-2001-0193 describes a format-string vulnerability in the man page viewer, observed in some Linux distributions via the -l parameter, enabling local privilege escalation. Connected documents identify Debian as affected via the man-db package and reference Debian Security Advisory DSA-028-1, wh...
CVE-2001-0060
Format string vulnerability in stunnel 3.8 and earlier allows attackers to execute arbitrary commands via a malformed ident username...
CVE-2001-0193
Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter...
CVE-2001-0111
CVE-2001-0111 : The vulnerability affects the splitvt utility (before 1.6.5). It is a format-string flaw that can allow a local attacker to run arbitrary commands via the -rcfile argument. Debian’s DSA-014-2 describes a buffer overflow/format-string attack with root access risk; remediation is up...
CVE-2001-0060
CVE-2001-0060 affects stunnel up to version 3.8 and earlier. The vulnerability is a format-string flaw in handling the ident username, enabling an attacker to execute arbitrary commands. Connected advisories reference Debian DSA 009-1 and indicate the need to update/stabilize stunnel; no exploit ...
CVE-2001-0013
CVE-2001-0013 describes a format-string vulnerability in the nslookupComplain() routine of ISC BIND 4. This flaw allows remote attackers to execute code with the BIND process’ privileges (typically root) by sending specially crafted DNS input. The CERT/CC note (CA-2001-02) identifies vulnerable v...
CVE-2001-0013
Format string vulnerability in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges...
CVE-2001-0218
Format string vulnerability in marsnwe 0.99.pl19 allows remote attackers to execute arbitrary commands...
Дырка в minicom (format string)
Ошибки форматной строки egid uucp...
CVE-2001-0193
Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter...
[RHSA-2001:053-06] gftp format string vulnerability corrected
--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: gftp format string vulnerability corrected Advisory ID: RHSA-2001:053-06 Issue date: 2001-04-20 Updated on: 2001-04-23 Product: Red Hat Linux Keywords: gftp format Cross...
Серьезная дырка в cfingerd (format string)
Уязвимость форматной строки...
cfingerd 1.4 - Format String (1)
source: https://www.securityfocus.com/bid/2576/info A format string bug in the logging facility of the cfingerd "Configurable Finger Daemon" allows remote users to attain root privileges and execute arbitrary code. cfingerd queries and logs the remote username of users of the service. If an...
CVE-2001-0187
Format string vulnerability in wu-ftp 2.6.1 and earlier, when running with debug mode enabled, allows remote attackers to execute arbitrary commands via a malformed argument that is recorded in a PASV port assignment...
Дырка в CGI pwc (format string bug)
Ошибка форматной строки при работе с syslog...
CVE-2001-0181
Format string vulnerability in the error logging code of DHCP server and client in Caldera Linux allows remote attackers to execute arbitrary commands...
[SECURITY] [DSA 028-1] New man-db packages released
---------------------------------------------------------------------------- Debian Security Advisory DSA-028-1 [email protected] http://www.debian.org/security/ Martin Schulze February 9, 2001 - ---------------------------------------------------------------------------- Package : man-db...
CVE-2001-0032
Format string vulnerability in ssldump possibly allows remote attackers to cause a denial of service and possibly gain root privileges via malicious format string specifiers in a URL...
SuSe / Debian man package format string vulnerability
Hi, This issue has been discussed in vuln-dev 2001-01-26, see: http://www.securityfocus.com/templates/archive.pike?end=2001-01-27&tid=15872 4&fromthread=0&start=2001-01-21&threads=1&list=82& Posted also on suse security list, and aparently overlooked. The man package that ships with SuSe Linux at...