Security
Headlines
HeadlinesLatestCVEs

Tag

#buffer_overflow

CVE-2003-0107

Buffer overflow in the gzprintf function in zlib 1.1.4, when zlib is compiled without vsnprintf or when long inputs are truncated using vsnprintf, allows attackers to cause a denial of service or possibly execute arbitrary code.

CVE
#dos#buffer_overflow
CVE-2002-0826

Buffer overflow in WS_FTP FTP Server 3.1.1 allows remote authenticated users to execute arbitrary code via a long SITE CPWD command.

CVE-2002-0062: Support

Buffer overflow in ncurses 5.0, and the ncurses4 compatibility package as used in Red Hat Linux, allows local users to gain privileges, related to "routines for moving the physical cursor and scrolling."

CVE-2001-1021

Buffer overflows in WS_FTP 2.02 allow remote attackers to execute arbitrary code via long arguments to (1) DELE, (2) MDTM, (3) MLST, (4) MKD, (5) RMD, (6) RNFR, (7) RNTO, (8) SIZE, (9) STAT, (10) XMKD, or (11) XRMD.

CVE-2000-0963: Bugtraq

Buffer overflow in ncurses library allows local users to execute arbitrary commands via long environmental information such as TERM or TERMINFO_DIRS.

CVE-2000-0129: IBM X-Force Exchange

Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST command on a malformed .lnk file.

CVE-1999-0892: IBM X-Force Exchange

Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font.

CVE-2000-0017: '(Possible) Linuxconf Remote Buffer Overflow Vulnerability'

Buffer overflow in Linux linuxconf package allows remote attackers to gain root privileges via a long parameter.

CVE-1999-0847: 'Re: FICS buffer overflow' - MARC

Buffer overflow in free internet chess server (FICS) program, xboard.

CVE-1999-0845: IBM X-Force Exchange

Buffer overflow in SCO su program allows local users to gain root access via a long username.