[CLOSE] OSVDB ID : 17105 - Disclosed: 2005-05-15

Description:

(Description Provided by CVE) : The sql_escape_string function in auth/sql.c for the mailutils SQL authentication module does not properly quote the "\" (backslash) character, which is used as an escape character and makes the module vulnerable to SQL injection attacks.

[CLOSE] OSVDB ID : 17104 - Disclosed: 2004-11-04

Description:

(Description Provided by CVE) : Unknown vulnerability in the dotlock implementation in mailutils before 1:0.5-4 on Debian GNU/Linux allows attackers to gain privileges.

[CLOSE] OSVDB ID : 52455 - Disclosed: 2008-09-23

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 16856 - Disclosed: 2005-05-25

Description:

Mailutils contains a flaw that may allow a remote denial of service. The issue is triggered when a FETCH command with a very large sequence range is sent to the imap4d server, and will result in loss of availability for the platform.

[CLOSE] OSVDB ID : 16855 - Disclosed: 2005-05-25

Description:

A remote overflow exists in Mailutils. The imap4d server fails to properly validate the fetch_io function resulting in an integer overflow. With a specially crafted END command, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 22842 - Disclosed: 2006-01-23

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 19306 - Disclosed: 2005-09-09

Description:

(Description Provided by CVE) : Format string vulnerability in search.c in the imap4d server in GNU Mailutils 0.6 allows remote authenticated users to execute arbitrary code via format string specifiers in the SEARCH command.

[CLOSE] OSVDB ID : 16857 - Disclosed: 2005-05-25

Description:

Mailutils contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when format specifiers are sent as part of user-supplied commands, and are unchecked by the imap4d server. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 16854 - Disclosed: 2005-05-25

Description:

A remote overflow exists in Mailutils. The mail program fails to validate a buffer in the header_get_field_name() function resulting in a buffer overflow. With a specially crafted email message, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 59327 - Disclosed: 2000-02-09

Description:

(Description Provided by CVE) : GNU make follows symlinks when it reads a Makefile from stdin, which allows other local users to execute commands.

[CLOSE] OSVDB ID : 53116 - Disclosed: 2009-03-02

Description:

(Description Provided by CVE) : Multiple buffer overflows in GNU MPFR 2.4.0 allow context-dependent attackers to cause a denial of service (crash) via the (1) mpfr_snprintf and (2) mpfr_vsnprintf functions.

[CLOSE] OSVDB ID : 71023 - Disclosed: 2010-12-30

Description:

GNU contains a flaw that allows a local attacker to traverse outside of a restricted path. The issue is due to the program not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via patches. This directory traversal attack would allow the attacker to create and modify arbitrary files.

[CLOSE] OSVDB ID : 13053 - Disclosed: 2005-01-18

Description:

(Description Provided by CVE) : Buffer overflow in (1) queue.c and (2) queued.c in queue before 1.30.1 may allow remote attackers to execute arbitrary code.

[CLOSE] OSVDB ID : 9992 - Disclosed: 2004-09-15

Description:

(Description Provided by CVE) : Integer overflow in the asn_decode_string() function defined in asn1.c in radiusd for GNU Radius 1.1 and 1.2 before 1.2.94, when compiled with the --enable-snmp option, allows remote attackers to cause a denial of service (daemon crash) via certain SNMP requests.

[CLOSE] OSVDB ID : 3824 - Disclosed: 2004-02-04

Description:

GNU Radius contains a flaw that may allow a remote denial of service. The issue is triggered when the server recieves a packet with only an "Acct-Status-Type" attribute and will result in loss of availability for the radiusd server.

[CLOSE] OSVDB ID : 7220 - Disclosed: 2004-06-21

Description:

GNU Radius configured with --enable-snmp contains a flaw that may allow a denial of service. The issue is triggered when an SNMP transaction is initiated with an invalid Object ID parameter, and will result in loss of availability for the service.

[CLOSE] OSVDB ID : 30696 - Disclosed: 2006-11-26

Description:

(Description Provided by CVE) : Format string vulnerability in the sqllog function in the SQL accounting code for radiusd in GNU Radius 1.2 and 1.3 allows remote attackers to execute arbitrary code via unknown vectors.

[CLOSE] OSVDB ID : 19278 - Disclosed: 2005-08-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 53203 - Disclosed: 2009-03-25

Description:

(Description Provided by CVE) : Race condition in GNU screen 4.0.3 allows local users to create or overwrite arbitrary files via a symlink attack on the /tmp/screen-exchange temporary file.

[CLOSE] OSVDB ID : 2874 - Disclosed: 2003-11-26

Description:

A local overflow exists in GNU Screen. The w_NumArgs signed integer in ansi.c can be overflowed when the "< MAXARGS" protection fails to sanitize the input resulting in an integer overflow. With a specially crafted exploit, a local attacker can gain setgid-utmp or setuid-root privileges.

[CLOSE] OSVDB ID : 39587 - Disclosed: 2007-06-03

Description:

GNU Screen contains a flaw that may allow a malicious user to gain access to a locked screen session. The issue is triggered when a screen session is locked using "ctrl-a x:", and an attacker types CTRL-C at the password prompt to abort the lock mechanism. Typing "screen -r" to restore the detached screen will grant access without prompting for the password.

[CLOSE] OSVDB ID : 29905 - Disclosed: 2006-10-23

Description:

(Description Provided by CVE) : Multiple unspecified vulnerabilities in the "utf8 combining characters handling" (utf8_handle_comb function in encoding.c) in screen before 4.0.3 allows user-assisted attackers to cause a denial of service (crash or hang) via certain UTF8 sequences.

[CLOSE] OSVDB ID : 3881 - Disclosed: 2004-01-14

Description:

GNU Screen contains a flaw related to the escape-sequence (ANSI) parser. By supplying it with "excessive gigabytes of data" an attacker could gain elevated privileges. No further details have been provided.

[CLOSE] OSVDB ID : 53617 - Disclosed: 2009-03-25

Description:

(Description Provided by CVE) : GNU screen 4.0.3 creates the /tmp/screen-exchange temporary file with world-readable permissions, which might allow local users to obtain sensitive session information.

[CLOSE] OSVDB ID : 10255 - Disclosed: 2004-09-22

Description:

sharutils contains a flaw that may allow a malicious user to execute arbitrary code. The issue is due to a format string error. No further details have been provided.

[CLOSE] OSVDB ID : 10231 - Disclosed: 2004-04-06

Description:

A local overflow exists in GNU sharutils. The shar command from sharutils fails to correctly limit the size of the value passed in with the -o option resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service and possible code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 15375 - Disclosed: 2004-10-01

Description:

A local overflow exists in GNU sharutils shar command. GNU shar fails to check the length of data returned by the shar command resulting in a buffer overflow. With a specially crafted shar archive, an attacker can cause loss of integrity.

[CLOSE] OSVDB ID : 15260 - Disclosed: 2005-04-04

Description:

(Description Provided by CVE) : unshar (unshar.c) in sharutils 4.2.1 allows local users to overwrite arbitrary files via a symlink attack on the unsh.X temporary file.

[CLOSE] OSVDB ID : 15376 - Disclosed: 2004-10-01

Description:

(Description Provided by CVE) : Multiple buffer overflows in sharutils 4.2.1 and earlier may allow attackers to execute arbitrary code via (1) long output from wc to shar, or (2) unknown vectors in unshar.

[CLOSE] OSVDB ID : 56055 - Disclosed: 2009-06-28

Description:

The GNU Stream Editor (sed) contains a flaw that may allow a user to elevate privileges. The issue is due to sed/compile.c (snarf_char_class) not handling the logic when parsing a regular expression (RegEx) containing [[[. This may lead to an unitialized use of a variable and could allow for privilege escalation.