Lucene search
HistoryDec 06, 2004 - 5:00 a.m.
CVE-2004-0623
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.3
Confidence
Low
EPSS
0.027
Percentile
90.5%
Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote attackers to execute arbitrary code via format string specifiers in a string that gets logged by syslog.
Affected configurations
Node
gnugnatsMatch3.0_02
ORgnugnatsMatch3.2
ORgnugnatsMatch3.14b
ORgnugnatsMatch3.113
ORgnugnatsMatch3.113.1
ORgnugnatsMatch3.113.1.6
ORgnugnatsMatch4.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| gnu | gnats | 3.0_02 | cpe:2.3:a:gnu:gnats:3.0_02:*:*:*:*:*:*:* |
| gnu | gnats | 3.2 | cpe:2.3:a:gnu:gnats:3.2:*:*:*:*:*:*:* |
| gnu | gnats | 3.14b | cpe:2.3:a:gnu:gnats:3.14b:*:*:*:*:*:*:* |
| gnu | gnats | 3.113 | cpe:2.3:a:gnu:gnats:3.113:*:*:*:*:*:*:* |
| gnu | gnats | 3.113.1 | cpe:2.3:a:gnu:gnats:3.113.1:*:*:*:*:*:*:* |
| gnu | gnats | 3.113.1.6 | cpe:2.3:a:gnu:gnats:3.113.1.6:*:*:*:*:*:*:* |
| gnu | gnats | 4.0 | cpe:2.3:a:gnu:gnats:4.0:*:*:*:*:*:*:* |
Related
nessus
nessus
FreeBSD : gnats -- format string vulnerability (fc99c736-3499-11d9-98a7-0090962cff2a)
2009-04-23 00:00:00
Debian DSA-590-1 : gnats - format string vulnerability
2004-11-10 00:00:00
FreeBSD : gnats -- format string vulnerability (59)
2004-11-23 00:00:00
cve
cve
CVE-2004-0623
2004-12-06 05:00:00
freebsd
freebsd
gnats -- format string vulnerability
2004-06-21 00:00:00
openvas
openvas
FreeBSD Ports: gnats
2008-09-04 00:00:00
Debian: Security Advisory (DSA-590-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 590-1 (gnats)
2008-01-17 00:00:00
debiancve
debiancve
CVE-2004-0623
2004-12-06 05:00:00
debian
debian
[SECURITY] [DSA 590-1] New gnats packages fix arbitrary code execution
2004-11-09 15:50:49
[SECURITY] [DSA 590-1] New gnats packages fix arbitrary code execution
2004-11-09 15:50:49
osv
osv
gnats - format string vulnerability
2004-11-09 00:00:00
ubuntucve
ubuntucve
CVE-2004-0623
2004-12-06 00:00:00
cvelist
cvelist
CVE-2004-0623
2004-06-30 04:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.3
Confidence
Low
EPSS
0.027
Percentile
90.5%
Related for NVD:CVE-2004-0623