Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2004-1388HistoryFeb 06, 2005 - 5:00 a.m.
CVE-2004-1388
2005-02-0605:00:00
Debian Security Bug Tracker
security-tracker.debian.org
7
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.661 Medium
EPSS
Percentile
97.9%
Format string vulnerability in the gpsd_report function for BerliOS GPD daemon (gpsd, formerly pygps) 1.9.0 through 2.7 allows remote attackers to execute arbitrary code via certain GPS requests containing format string specifiers that are not properly handled in syslog calls.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | gpsd | < 2.7-4 | gpsd_2.7-4_all.deb |
| Debian | 11 | all | gpsd | < 2.7-4 | gpsd_2.7-4_all.deb |
| Debian | 999 | all | gpsd | < 2.7-4 | gpsd_2.7-4_all.deb |
| Debian | 13 | all | gpsd | < 2.7-4 | gpsd_2.7-4_all.deb |
Related
nessus
nessus
Berlios gpsd gpsd_report() Function Format String
2005-01-27 00:00:00
cvelist
cvelist
CVE-2004-1388
2005-02-06 05:00:00
nvd
nvd
CVE-2004-1388
2004-12-31 05:00:00
CVE-2005-0228
2005-05-02 04:00:00
packetstorm
packetstorm
Berlios GPSD Format String Vulnerability
2009-10-27 00:00:00
cve
cve
CVE-2004-1388
2005-02-06 05:00:00
CVE-2005-0228
2005-05-02 04:00:00
canvas
canvas
Immunity Canvas: GPSD
2004-12-31 05:00:00
ubuntucve
ubuntucve
CVE-2004-1388
2004-12-31 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.661 Medium
EPSS
Percentile
97.9%
Related for DEBIANCVE:CVE-2004-1388