Lucene search
HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-1121
cve-2005-1121
oops! proxy server
format string vulnerability
arbitrary code execution
url
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
7.1 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
65.0%
Format string vulnerability in the my_xlog function in lib.c for Oops! Proxy Server 1.5.23 and earlier, as called by the auth functions in the passwd_mysql and passwd_pgsql modules, may allow attackers to execute arbitrary code via a URL.
Affected configurations
Node
igor_khasilevoops_proxy_serverMatch1.4.22
ORigor_khasilevoops_proxy_serverMatch1.5.19
ORigor_khasilevoops_proxy_serverMatch1.5.53
Node
gentoolinux
Related
freebsd
freebsd
oops -- format string vulnerability
2005-04-14 00:00:00
gentoo
gentoo
Oops!: Remote code execution
2005-05-05 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200505-02 (oops)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-726-1)
2008-01-17 00:00:00
FreeBSD Ports: oops
2008-09-04 00:00:00
nessus
nessus
Debian DSA-726-1 : oops - format string vulnerability
2005-06-17 00:00:00
GLSA-200505-02 : Oops!: Remote code execution
2005-05-11 00:00:00
securityvulns
securityvulns
[Full-disclosure] [ GLSA 200505-02 ] Oops!: Remote code execution
2005-05-06 00:00:00
nvd
nvd
CVE-2005-1121
2005-05-02 04:00:00
ubuntucve
ubuntucve
CVE-2005-1121
2005-05-02 00:00:00
cvelist
cvelist
CVE-2005-1121
2005-04-16 04:00:00
debian
debian
[SECURITY] [DSA 726-1] New oops packages fix format string vulnerability
2005-05-20 11:11:10
[SECURITY] [DSA 726-1] New oops packages fix format string vulnerability
2005-05-20 11:11:10
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
7.1 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
65.0%
Related for CVE-2005-1121