CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

securityvulns•added 2004/12/13 12:0 a.m.•22 views

Citadel/UX format string bug

Formatr stirng bug on syslog call...

securityvulns•added 2004/11/06 12:0 a.m.•22 views

Exploits0References1

DHCP format tring bug

Format string bug via DNS name on syslog call...

2.3AI score

securityvulns•added 2004/11/03 12:0 a.m.•20 views

Speedtouch USB driver for linux format string bugs

Format string bug on syslog call...

1.4AI score

securityvulns•added 2004/11/02 12:0 a.m.•24 views

Cherokee formatstring bug

Format string bug on syslog call and gile logging in NCSA format, cherokeeloggerncsawritestring...

2.1AI score

securityvulns•added 2004/09/15 12:0 a.m.•27 views

SUS (extended su) format string bug

Format string bug on syslog call...

securityvulns•added 2004/06/26 12:0 a.m.•29 views

GNATS format string bugs

Format string bug in syslog call...

1.8AI score

securityvulns•added 2004/06/21 12:0 a.m.•29 views

Format string bug in super

Format string bug on syslog call...

1.7AI score

securityvulns•added 2004/06/21 12:0 a.m.•27 views

sup format string bug

Format string bug on syslog call...

Exploits0Affected Software1

securityvulns•added 2003/07/10 12:0 a.m.•31 views

zkfingerd format string bug

Format string on syslog call...

1.6AI score

securityvulns•added 2003/06/13 12:0 a.m.•29 views

FakeBO format satring bug

Format string bug during syslog call with remote host name...

1.3AI score

securityvulns•added 2003/04/05 12:0 a.m.•33 views

AOL Server proxy API format string bug

Format string bug on syslog call...

1.9AI score

Cvelist•added 2003/04/02 5:0 a.m.•15 views

CVE-2002-0916

Format string vulnerability in the allowuser code for the Stellar-X msntauth authentication module, as distributed in Squid 2.4.STABLE6 and earlier, allows remote attackers to execute arbitrary code via format strings in the user name, which are not properly handled in a syslog call...

7.9AI score0.02943EPSS

Exploits0References5

CVE•added 2003/04/02 5:0 a.m.•48 views

CVE-2002-0916

This CVE (CVE-2002-0916) affects Squid 2.4.STABLE6 and earlier, in the Stellar-X msntauth authentication module. The issue is a format string vulnerability in the allowuser code that handles the user name, where untrusted input is used in a syslog call, enabling remote code execution. Documents c...

7.5CVSS7.9AI score0.02943EPSS

Exploits0References5Affected Software1

OSV•added 2002/10/04 4:0 a.m.•2 views

DEBIAN-CVE-2002-0916

7.5CVSS8.1AI score0.02943EPSS

Exploits0References1

NVD•added 2002/08/12 4:0 a.m.•21 views

CVE-2000-1208

Format string vulnerability in startprinting function of printjob.c in BSD-based lpr lpd package may allow local users to gain privileges via an improper syslog call that uses format strings from the checkremote call...

7.2CVSS6.5AI score0.00368EPSS

Exploits0References5

securityvulns•added 2002/05/06 12:0 a.m.•39 views

Format string bug in pam_ldap/squid_auth_ldap

Format string bug on syslog call...

Exploits0References1Affected Software2

securityvulns•added 2001/12/28 12:0 a.m.•19 views

Stunnel format string bugs

Format string bug on syslog call...

1.8AI score