Lucene search

[email protected]CVE-2005-4439

HistoryDec 21, 2005 - 1:03 a.m.

CVE-2005-4439

2005-12-2101:03:00

[email protected]

web.nvd.nist.gov

cve-2005-4439

buffer overflow

elog

elogd

denial of service

remote attackers

arbitrary code

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.8 High

AI Score

Confidence

Low

0.093 Low

EPSS

Percentile

94.7%

JSON

Buffer overflow in ELOG elogd 2.6.0-beta4 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a URL with a long (1) cmd or (2) mode parameter.

Affected configurations

NVD

Node

elogelogdMatch2.6.0_beta4

CPENameOperatorVersion
elog:elogdelog elogdeq2.6.0_beta4

CPE	Name	Operator	Version
elog:elogd	elog elogd	eq	2.6.0_beta4

References

marc.info/?l=full-disclosure&m=113498708213563&w=2

secunia.com/advisories/18124

secunia.com/advisories/18783

securitytracker.com/id?1015379

www.debian.org/security/2006/dsa-967

www.osvdb.org/21844

www.securityfocus.com/bid/15932

www.vupen.com/english/advisories/2005/3000

exchange.xforce.ibmcloud.com/vulnerabilities/23838

exchange.xforce.ibmcloud.com/vulnerabilities/24703

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.8 High

AI Score

Confidence

Low

0.093 Low

EPSS

Percentile

94.7%

JSON

Related for CVE-2005-4439

debiancve1 nvd1 nessus2 ubuntucve1 cvelist1 osv1 openvas2 debian2