Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbHamid ZamaniEDB-ID:38672
HistoryJun 30, 2013 - 12:00 a.m.

YardRadius - Multiple Local Format String Vulnerabilities

2013-06-3000:00:00
Hamid Zamani
www.exploit-db.com
13

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/61356/info

YardRadius is prone to multiple local format-string vulnerabilities.

Local attackers can leverage these issues to cause denial-of-service conditions. Due to nature of these issues, arbitrary code-execution within the context of the vulnerable application may also be possible.

YardRadius 1.1.2-4 is vulnerable; other versions may also be possible.

The following proof-of-concept is available:

ln -s radiusd %x

./%x -v

Related

cve 1
nvd 1
ubuntucve 1
prion 1
cvelist 1
cve
cve
CVE-2013-4147
2013-08-09 21:55:06
nvd
nvd
CVE-2013-4147
2013-08-09 21:55:06
ubuntucve
ubuntucve
CVE-2013-4147
2013-08-09 00:00:00
prion
prion
Format string
2013-08-09 21:55:00
cvelist
cvelist
CVE-2013-4147
2013-08-09 21:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:38672
cve1nvd1ubuntucve1prion1cvelist1