CVE-2004-0014

Multiple buffer overflows in the nd WebDAV interface 0.8.2 and earlier allows remote web servers to execute arbitrary code via certain long strings...

CVE-2004-0014

Multiple buffer overflows in the nd WebDAV interface 0.8.2 and earlier allows remote web servers to execute arbitrary code via certain long strings...

GEdit 2.0/2.2 - Large IOStream File Memory Corruption

// source: https://www.securityfocus.com/bid/9090/info A problem has been reported in the handling of certain file types by gEdit. Memory corruption may occur when handling files containing long strings. Because of this, it may be possible to cause memory corruption. / simple buffer overflow...

[SECURITY] [DSA 401-1] New hylafax packages fix remote root exploit

-------------------------------------------------------------------------- Debian Security Advisory DSA 401-1 [email protected] http://www.debian.org/security/ Martin Schulze November 17th, 2003 http://www.debian.org/security/faq -...

Compaq Web-enabled Management Software Default Account

The Compaq Web-based Management / HP System Management Agent active on the remote host is configured with the default, or a predictable, administrator password. Depending on the agents integrated, this allows an attacker to view sensitive and verbose system information, and may even allow more...

CVE-2003-0432

Ethereal 0.9.12 and earlier does not handle certain strings properly, with unknown consequences, in the 1 BGP, 2 WTP, 3 DNS, 4 802.11, 5 ISAKMP, 6 WSP, 7 CLNP, 8 ISIS, and 9 RMI dissectors...

Netsuite121.txt

Moby's Netsuite 1.21 Traversal Directory bugs Release Date: 13 July, 2003 Description: NetSuite is a freeware server suite that allows anyone with a static IP address the ability to run their own mail and web services. Note that you cannot reasonably run a web server from a normal dial-in account...

eXtremail 1.5.x (Linux) - Remote Format Strings

eXtremail 1.5.x Linux - Remote Format Strings // / Linux eXtremail 1.5.x Remote Format Strings Exploit / / / / / / By B-r00t - 02/07/2003 / / / / Versions: Linux eXtremail-1.5-8 = VULNERABLE / / Linux eXtremail-1.5-5 = VULNERABLE / / Exploit uses format strings bug in fLog of smtpd to bind a / /...

Linksys BEFVP4 - SNMP Community String Information Disclosure

source: https://www.securityfocus.com/bid/7317/info Linksys BEFVP4 VPN router has been reported prone to a sensitive information disclosure vulnerability. It has been reported that SNMP community strings which, are world readble by default, contain sensitive information pertaining to the internal...

Apache Httpd < 2.0.46 : APR remote crash

A vulnerability in the aprpsprintf function in the Apache Portable Runtime APR library allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via long strings, as demonstrated using XML objects to moddav, and possibly other vectors...

CVE-2003-0137

SNMP daemon in the DX200 based network element for Nokia Serving GPRS support node SGSN allows remote attackers to read SNMP options via arbitrary community strings...

DEBIAN-CVE-2003-0098

Unknown vulnerability in apcupsd before 3.8.6, and 3.10.x before 3.10.5, allows remote attackers to gain root privileges, possibly via format strings in a request to a slave server...

CVE-2003-0098

Unknown vulnerability in apcupsd before 3.8.6, and 3.10.x before 3.10.5, allows remote attackers to gain root privileges, possibly via format strings in a request to a slave server...

CVE-2003-0098

CVE-2003-0098 concerns the apcupsd daemon (APC UPS management) with remote root-privilege risk due to buffer/format-string issues in the slave/server information path. Affected versions are apcupsd &lt; 3.8.6 and 3.10.x

CVE-2003-0098

Unknown vulnerability in apcupsd before 3.8.6, and 3.10.x before 3.10.5, allows remote attackers to gain root privileges, possibly via format strings in a request to a slave server...

CVE-2003-0098

Unknown vulnerability in apcupsd before 3.8.6, and 3.10.x before 3.10.5, allows remote attackers to gain root privileges, possibly via format strings in a request to a slave server...

GLIBC locale - Format Strings

GLIBC locale - Format Strings / su.c by xp, modified by logikal@efnet - tested on redhat 5 - 7 / include include include include include include include include char shellcode = "\x31\xc0\x83\xc0\x17\x31\xdb\xcd\x80\xeb" "\x30\x5f\x31\xc9\x88\x4f\x17\x88\x4f\x1a"...

GLIBC locale format strings exploit

Exploit for linux platform in category local exploits =================================== GLIBC locale format strings exploit =================================== / su.c by xp, modified by email protected - tested on redhat 5 - 7 / include include include include include include include include ch...

GLIBC locale - Format Strings

/ su.c by xp, modified by logikal@efnet - tested on redhat 5 - 7 / include include include include include include include include char shellcode = "\x31\xc0\x83\xc0\x17\x31\xdb\xcd\x80\xeb" "\x30\x5f\x31\xc9\x88\x4f\x17\x88\x4f\x1a" "\x8d\x5f\x10\x89\x1f\x8d\x47\x18\x89\x47"...

CVE-2002-2402

SURECOM broadband router EP-4501 uses a default SNMP read community string of "public" and a default SNMP read/write community string of "secret," which allows remote attackers to read and modify router configuration information...