CVE-2008-1206

2008-03-0800:00:00

mitre

www.cve.org

AI Score

7.7

Confidence

High

EPSS

0.05

Percentile

92.9%

JSON

Format string vulnerability in the log_message function in lks.c in Linux Kiss Server 1.2, when background (daemon) mode is disabled, allows remote attackers to cause a denial of service (crash) or execute arbitrary code via format string specifiers in an invalid command.

References

marc.info/?l=full-disclosure&m=120468901813326&w=2

secunia.com/advisories/29219

www.securityfocus.com/bid/28099

www.vashnukad.com/

www.vupen.com/english/advisories/2008/0785

exchange.xforce.ibmcloud.com/vulnerabilities/41018