Lucene search
+L

236 matches found

CVE
CVE
added 2004/09/01 4:0 a.m.66 views

CVE-2002-1200

Balabit Syslog-NG is affected by CVE-2002-1200. Affected lines are syslog-ng 1.4.x before 1.4.15 and 1.5.x before 1.5.20. The issue arises from improper buffer size tracking during macro expansion when constant characters are appended to template filenames or output, leading to out-of-bounds writ...

7.5CVSS7.6AI score0.05578EPSS
Exploits1References8Affected Software1
Debian CVE
Debian CVE
added 2004/09/01 4:0 a.m.43 views

CVE-2002-1200

Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute...

7.5CVSS7.7AI score0.05578EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2004/07/25 12:0 a.m.14 views

SUSE-SA:2002:039: syslog-ng

The remote host is missing the patch for the advisory SUSE-SA:2002:039 syslog-ng. The syslog-ng package is a portable syslog implementation which can be used as syslogd replacement. Syslog-ng contained buffer overflows in its macro expansion routines. These overflows could be triggered by remote...

5.7AI score
Exploits0
securityvulns
securityvulns
added 2002/10/30 12:0 a.m.87 views

syslog-ng buffer overflow

Buffer overflow in parsing $HOST variable in configuration file...

4.3AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2002/10/30 12:0 a.m.27 views

[ESA-20021029-028] syslog-ng: buffer overflow in macro handling code (UPDATED)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +------------------------------------------------------------------------+ | EnGarde Secure Linux Security Advisory October 29, 2002 | | http://www.engardelinux.org/ ESA-20021029-028 | | | | Package: syslog-ng | | Summary: buffer overflow in macro...

1.4AI score
Exploits0
NVD
NVD
added 2002/10/28 5:0 a.m.19 views

CVE-2002-1200

Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute...

7.5CVSS7.6AI score0.05578EPSS
Exploits1References8
OSV
OSV
added 2002/10/28 5:0 a.m.6 views

CVE-2002-1200

Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute...

7.6AI score
Exploits0References12
OSV
OSV
added 2002/10/28 5:0 a.m.28 views

DEBIAN-CVE-2002-1200

Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute...

7.5CVSS7.5AI score0.05578EPSS
Exploits1References1
Debian
Debian
added 2002/10/15 1:36 p.m.17 views

[SECURITY] [DSA 175-1] New syslog-ng packages fix buffer overflow

-------------------------------------------------------------------------- Debian Security Advisory DSA 175-1 [email protected] http://www.debian.org/security/ Martin Schulze October 15th, 2002 http://www.debian.org/security/faq -...

7AI score
Exploits0
Debian
Debian
added 2002/10/15 1:36 p.m.18 views

[SECURITY] [DSA 175-1] New syslog-ng packages fix buffer overflow

-------------------------------------------------------------------------- Debian Security Advisory DSA 175-1 [email protected] http://www.debian.org/security/ Martin Schulze October 15th, 2002 http://www.debian.org/security/faq -...

0.2AI score
Exploits0
OSV
OSV
added 2002/10/15 12:0 a.m.24 views

DSA-175 syslog-ng - buffer overflow

Bulletin has no description...

7.5CVSS6.4AI score0.05578EPSS
Exploits1
securityvulns
securityvulns
added 2002/10/10 12:0 a.m.68 views

syslog-ng buffer overflow

---------------------------------------------------------------------------- PACKAGE : syslog-ng VERSION : -1.4.15 stable and -1.5.20 development SUMMARY : buffer overflow TYPE : remote exploit VULNERABLE: : exploitable not in default configuration ZORP-OS SPECIFIC : No ZSA-AUTHOR : Balazs...

7.5AI score
Exploits0
CVE
CVE
added 2001/05/07 4:0 a.m.57 views

CVE-2000-1165

Balabit syslog-ng is affected by CVE-2000-1165 due to a parsing error in messages that lack a closing > in the priority specifier, allowing remote attackers to cause an application crash (DoS). The available records identify the affected software as Balabit syslog-ng and describe the issue as ...

5CVSS6.9AI score0.0176EPSS
Exploits1References5Affected Software1
FreeBSD Advisory
FreeBSD Advisory
added 2001/01/15 12:0 a.m.5 views

FreeBSD-SA-01:02.syslog-ng

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:02 Security Advisory FreeBSD, Inc. Topic: syslog-ng remote denial-of-service Category: ports Module: syslog-ng Announced: 2001-01-15 Credits: Balazs Scheidler Affects:...

5.8AI score
Exploits0
securityvulns
securityvulns
added 2000/11/24 12:0 a.m.38 views

DoS против syslog-ng

Определенная комбинация символов приводи к краху сервиса...

0.4AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2000/11/24 12:0 a.m.24 views

DoS possibility in syslog-ng

BalaBit security advisory Advisory ID: BB-2000/01 Package: syslog-ng Versions affected: versions prior to and including 1.4.8 Problem type: remote DoS attack Date: 2000-11-22 1 Background syslog-ng is a portable syslog implementation. Its highlights include regexp based log selection, TCP transpo...

0.2AI score
Exploits0
Rows per page
Query Builder