Lucene search

[email protected]NVD:CVE-2003-1236

HistoryDec 31, 2003 - 5:00 a.m.

CVE-2003-1236

2003-12-3105:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.077

Percentile

94.2%

JSON

Multiple format string vulnerabilities in the logger function in netzio.c for Tanne 0.6.17 allows remote attackers to execute arbitrary code via format string specifiers in syslog.

Affected configurations

Nvd

Node

tannetanneMatch0.6.17

VendorProductVersionCPE
tannetanne0.6.17cpe:2.3:a:tanne:tanne:0.6.17:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tanne	tanne	0.6.17	cpe:2.3:a:tanne:tanne:0.6.17:::::::*

References

archives.neohapsis.com/archives/vulnwatch/2003-q1/0011.html

secunia.com/advisories/7831

tanne.fluxnetz.de/download/tanne-0.7.1.tar.bz2

www.iss.net/security_center/static/11006.php

www.securityfocus.com/archive/1/305460

www.securityfocus.com/archive/1/305663

www.securityfocus.com/bid/6553

www.securitytracker.com/id?1005900

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.077

Percentile

94.2%

JSON

Related for NVD:CVE-2003-1236

cvelist1 exploitdb1 nessus1 cve1