Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-134

CWE-134

High likelihood

Use of Externally-Controlled Format String

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product uses a function that accepts a format string as an argument, but the format string originates from an external source.

389 vulnerabilities with CWE-134

SurgeMail < 38k4 and WebMail < 3.1s - Remote Code Execution via Format String in Page Parameter

Ipswitch IM Server < 2.0.8.1 - Authenticated Denial of Service via Format String in IP Address Field

Larson Network Print Server < 9.4.2 - Remote Code Execution via Format String in USEP Command

cyanPrintIP and Opium4 OPI Server < 4.10.1030 - Remote Code Execution via Format String in LPD Queue Name

Novell Identity Manager 3.5.1 - Denial of Service via Format String in Platform Service Process

Apple Mac OS X 10.4.11 - Remote Code Execution via Address Book URL Handler Format String

SonicWALL GLobal VPN Client <4.0.0.810 - RCE

Ruby-GNOME2 < 0.17.0 - Use-After-Free in mdiag_initialize

Sun Remote Services Net Connect 3.2.3-3.2.4 - Local Privilege Escalation via Format String in srsexec

Miranda IM 0.7.1 - Remote Code Execution via Format String in Yahoo Buddy Authorization

Firefly Media Server <= 0.2.4 - Remote Code Execution via Format String in HTTP Authorization Header

Perdition Mail Retrieval Proxy < 1.17 - Remote Code Execution via IMAP Tag Format String Injection

TIBCO SmartPGM FX - Remote Code Execution via Format String Specifiers

Oracle Enterprise Grid Console Server 10.2.0.1 - Remote Code Execution via Format String in HTTP URI

Kaspersky Online Scanner < 5.0.93 - Remote Code Execution via Format String Vulnerability

Wesnoth 1.2.x < 1.2.7 and 1.3.x < 1.3.9 - Denial of Service via Multiplayer Message Truncation

Battlefront Dropteam < 1.3.3 - Remote Code Execution via Format String in Packet 0x01

dawn_of_time < 1.69s_beta4 - Remote Code Execution via Format String in Username or Password

First Encounter Assault Recon < 1.08 - Remote Code Execution via Format String in PB_Y or PB_U Packets

Doom 3 < 1.3.1, Quake 4 < 1.4.2, Prey < 1.3 - Remote Code Execution via Format String in PB_Y/PB_U Packets

smbftpd 0.96 - Remote Code Execution via Format String in Directory Name

CellFactor Revolution < 1.03 - Remote Code Execution via Format String in Nickname

Alien Arena 2007 < 6.10 - Denial of Service via Format String in Nickname

ALPass 2.7 English and 3.02 Korean - Remote Code Execution via Format String Specifiers in APW File

IBM DB2 Universal Database < 8.0 and < 9.1 - Local Code Execution via Format String Attack

Previous Page 14 of 16 Next

Details

Vulnerabilities 389

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy