70 matches found
McAfee Subscription Manager Stack Buffer Overflow
This module exploits a flaw in the McAfee Subscription Manager ActiveX control. Due to an unsafe use of vsprintf, it is possible to trigger a stack buffer overflow by passing a large string to one of the COM-exposed routines, such as IsAppExpired. This vulnerability was discovered by Karl Lynn of...
Error logging buffer overflow in Informix
NGSSoftware Insight Security Research Advisory Name: Error logging buffer overflow in Informix Systems Affected: Informix 9.40.xC7 and xC8, 10.00.xC3 and xC4 Severity: Critical Vendor URL: http://www.ibm.com/ Author: David Litchfield [email protected] Date of Public Advisory: 2nd August 2006...
CVE-2006-3961
Buffer overflow in McSubMgr ActiveX control mcsubmgr.dll in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted attackers to execute...
CVE-2006-3961
Buffer overflow in McSubMgr ActiveX control mcsubmgr.dll in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted attackers to execute...
CVE-2004-0461
ISC DHCPD 3.0.1rc12/rc13 contains two buffer overflow risks: when vsnprintf support is absent, header files map vsnprintf to the unsafe vsprintf, enabling possible DoS (server crash) and potentially arbitrary code execution. The issue affects the DHCP server component in ISC DHCP 3.0.1rc12/rc13 a...
DEBIAN-CVE-2003-0099
Multiple buffer overflows in apcupsd before 3.8.6, and 3.10.x before 3.10.5, may allow attackers to cause a denial of service or execute arbitrary code, related to usage of the vsprintf function...
CVE-2003-0099
CVE-2003-0099 affects apcupsd prior to 3.8.6 and prior to 3.10.5 (3.10.x branches). The root cause is vulnerable use of vsprintf, leading to multiple buffer overflows. Consequences documented include possible denial of service and arbitrary code execution; some sources mention remote root access ...
CVE-2003-0099
Multiple buffer overflows in apcupsd before 3.8.6, and 3.10.x before 3.10.5, may allow attackers to cause a denial of service or execute arbitrary code, related to usage of the vsprintf function...
Malformed vsprintf in bftpd
There is a malformed vsprintf in bftpd 1.0.12 in function sendstrf: int sendstrfint s, char format, ... .... vsprintfbuffer, format, val; when the function is called from NLIST command: else foo = 1; sendstrfs, entry-dname; This can be used to overflow the buffer of the vsprintf and execute...
BFTPd - vsprintf() Format Strings
BFTPd - vsprintf Format Strings / Copyright c 2000 - Security.is The following material may be freely redistributed, provided that the code or the disclaimer have not been partly removed, altered or modified in any way. The material is the property of security.is. You are allowed to adopt the...