Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and...
7.7AI Score
0.005EPSS
Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary...
7.4AI Score
0.957EPSS
BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting...
7AI Score
0.137EPSS