Lucene search
MitreCVE-2004-0623HistoryDec 06, 2004 - 5:00 a.m.
CVE-2004-0623
2004-12-0605:00:00
mitre
web.nvd.nist.gov
27
cve-2004-0623
format string vulnerability
gnu gnats 4.00
remote code execution
syslog
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.2
Confidence
Low
EPSS
0.027
Percentile
90.5%
Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote attackers to execute arbitrary code via format string specifiers in a string that gets logged by syslog.
Affected configurations
Node
gnugnatsMatch3.0_02
ORgnugnatsMatch3.2
ORgnugnatsMatch3.14b
ORgnugnatsMatch3.113
ORgnugnatsMatch3.113.1
ORgnugnatsMatch3.113.1.6
ORgnugnatsMatch4.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| gnu | gnats | 3.0_02 | cpe:2.3:a:gnu:gnats:3.0_02:*:*:*:*:*:*:* |
| gnu | gnats | 3.2 | cpe:2.3:a:gnu:gnats:3.2:*:*:*:*:*:*:* |
| gnu | gnats | 3.14b | cpe:2.3:a:gnu:gnats:3.14b:*:*:*:*:*:*:* |
| gnu | gnats | 3.113 | cpe:2.3:a:gnu:gnats:3.113:*:*:*:*:*:*:* |
| gnu | gnats | 3.113.1 | cpe:2.3:a:gnu:gnats:3.113.1:*:*:*:*:*:*:* |
| gnu | gnats | 3.113.1.6 | cpe:2.3:a:gnu:gnats:3.113.1.6:*:*:*:*:*:*:* |
| gnu | gnats | 4.0 | cpe:2.3:a:gnu:gnats:4.0:*:*:*:*:*:*:* |
Related
nessus
nessus
Debian DSA-590-1 : gnats - format string vulnerability
2004-11-10 00:00:00
FreeBSD : gnats -- format string vulnerability (fc99c736-3499-11d9-98a7-0090962cff2a)
2009-04-23 00:00:00
FreeBSD : gnats -- format string vulnerability (59)
2004-11-23 00:00:00
nvd
nvd
CVE-2004-0623
2004-12-06 05:00:00
debian
debian
[SECURITY] [DSA 590-1] New gnats packages fix arbitrary code execution
2004-11-09 15:50:49
[SECURITY] [DSA 590-1] New gnats packages fix arbitrary code execution
2004-11-09 15:50:49
freebsd
freebsd
gnats -- format string vulnerability
2004-06-21 00:00:00
openvas
openvas
FreeBSD Ports: gnats
2008-09-04 00:00:00
Debian: Security Advisory (DSA-590-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 590-1 (gnats)
2008-01-17 00:00:00
debiancve
debiancve
CVE-2004-0623
2004-12-06 05:00:00
osv
osv
gnats - format string vulnerability
2004-11-09 00:00:00
ubuntucve
ubuntucve
CVE-2004-0623
2004-12-06 00:00:00
cvelist
cvelist
CVE-2004-0623
2004-06-30 04:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.2
Confidence
Low
EPSS
0.027
Percentile
90.5%
Related for CVE-2004-0623