Lucene search
K

1662 matches found

Debian CVE
Debian CVE
added 2004/06/30 4:0 a.m.29 views

CVE-2004-0451

Multiple format string vulnerabilities in the 1 logquit, 2 logerr, or 3 loginfo functions in Software Upgrade Protocol SUP allows remote attackers to execute arbitrary code via format string specifiers in messages that are logged by syslog...

10CVSS7AI score0.0439EPSS
Exploits0
CVE
CVE
added 2004/06/30 4:0 a.m.55 views

CVE-2004-0623

GNU GNATS 4.00 is affected by a format string vulnerability in misc.c that can allow a remote attacker to execute arbitrary code via format specifiers in a string logged by syslog. The CVE-2004-0623 entry notes a high severity (base score 10.0, CVSS2: AV:N/AC:L/Au:N/C:C/I:C/A:C) with remote, unau...

10CVSS7.2AI score0.04487EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2004/06/30 4:0 a.m.57 views

CVE-2004-0451

CVE-2004-0451 describes multiple format-string vulnerabilities in the Software Upgrade Protocol (SUP) affecting the internal logging functions logquit, logerr, and loginfo. The underlying issue allows a remote attacker to cause arbitrary code execution via format specifiers contained in syslog me...

10CVSS7.5AI score0.0439EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2004/06/30 4:0 a.m.32 views

CVE-2004-0393

Format string vulnerability in the msg function for rlpr daemon rlprd 2.0.4 allows remote attackers to execute arbitrary code via format string specifiers in a buffer that can not be resolved, which is provided to the syslog function...

7.6AI score0.17427EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2004/06/30 4:0 a.m.16 views

CVE-2004-0393

Format string vulnerability in the msg function for rlpr daemon rlprd 2.0.4 allows remote attackers to execute arbitrary code via format string specifiers in a buffer that can not be resolved, which is provided to the syslog function...

10CVSS7.5AI score0.17427EPSS
Exploits1
Debian CVE
Debian CVE
added 2004/06/30 4:0 a.m.27 views

CVE-2004-0623

Removed by vendor...

10CVSS6.7AI score0.04487EPSS
Exploits0
securityvulns
securityvulns
added 2004/06/26 12:0 a.m.29 views

GNATS format string bugs

Format string bug in syslog call...

1.8AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2004/06/25 12:0 a.m.21 views

Rlpr Advisory

,'| .-''-.....--'; / '. ..-' , ,--...--''' .--''' /' -';' ; ; ; ...--'' ...--..' .;.' fL ,....----''' ,..--'' felinemenace.org Program: rlprd 2.0.4 Impact: remote root Discovered: jaguar Writeup and exploits: Andrew Griffiths 1 Background It is a package that makes it possible or at the very leas...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2004/06/21 12:0 a.m.30 views

Format string bug in super

Format string bug on syslog call...

1.7AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2004/06/21 12:0 a.m.27 views

sup format string bug

Format string bug on syslog call...

1.5AI score
Exploits0Affected Software1
securityvulns
securityvulns
added 2004/06/10 12:0 a.m.33 views

smtp.proxy format string bug

syslog sender address format string bug...

1.9AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2004/05/31 12:0 a.m.27 views

jftpgw format string buffer overflow

syslog format string bug...

2.8AI score
Exploits0References1Affected Software1
FreeBSD
FreeBSD
added 2004/05/30 12:0 a.m.18 views

Arbitrary code execution via a format string vulnerability in jftpgw

The log functions in jftpgw may allow remotely authenticated user to execute arbitrary code via the format string specifiers in certain syslog messages...

10CVSS6.9AI score0.04343EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2004/05/18 12:0 a.m.30 views

Pound format string vulnerability

Background Pound is a reverse proxy, load balancer and HTTPS front-end. It allows to distribute the load on several web servers and offers a SSL wrapper for web servers that do not support SSL directly. Description A format string flaw in the processing of syslog messages was discovered and...

7.5CVSS1AI score0.0664EPSS
Exploits1
NVD
NVD
added 2003/12/31 5:0 a.m.15 views

CVE-2003-1066

Buffer overflow in the syslog daemon for Solaris 2.6 through 9 allows remote attackers to cause a denial of service syslogd crash and possibly execute arbitrary code via long syslog UDP packets...

5CVSS8AI score0.03257EPSS
Exploits0References5
NVD
NVD
added 2003/12/31 5:0 a.m.15 views

CVE-2003-1236

Multiple format string vulnerabilities in the logger function in netzio.c for Tanne 0.6.17 allows remote attackers to execute arbitrary code via format string specifiers in syslog...

10CVSS7.8AI score0.1519EPSS
Exploits1References8
securityvulns
securityvulns
added 2003/11/13 12:0 a.m.28 views

clamav format string bug

Format string bug in e-mail address during syslog call...

1.9AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2003/10/14 12:0 a.m.14 views

WinSyslog Interactive Syslog Server 4.21 - long Message Remote Denial of Service

WinSyslog Interactive Syslog Server 4.21 - long Message Remote Denial of Service source: https://www.securityfocus.com/bid/8821/info WinSyslog is prone to a remotely exploitable denial of service vulnerability. The issue exists in the Interactive Syslog Server specifically. This occurs when the...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2003/08/18 12:0 a.m.24 views

Dropbear SSH Server format string bug

Format string bug on syslog call;...

1.8AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2003/08/18 12:0 a.m.236 views

[UNIX] Dropbear SSH Server Format String Vulnerability

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

7.3AI score
Exploits0
Rows per page
Query Builder