EUVD-2008-1215

Malware in sbrugna...

Format string

Format string vulnerability in the logmessage function in lks.c in Linux Kiss Server 1.2, when background daemon mode is disabled, allows remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in an invalid command...

CVE-2008-1206

Format string vulnerability in the logmessage function in lks.c in Linux Kiss Server 1.2, when background daemon mode is disabled, allows remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in an invalid command...

CVE-2008-1206

Format string vulnerability in the logmessage function in lks.c in Linux Kiss Server 1.2, when background daemon mode is disabled, allows remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in an invalid command...

PT-2008-2799 · Linux · Linux Kiss Server

Name of the Vulnerable Software and Affected Versions: Linux Kiss Server version 1.2 Description: The issue is related to a format string vulnerability in the log message function. This vulnerability can be exploited by remote attackers when the Linux Kiss Server is not running in background daem...

CVE-2008-1206

Linux Kiss Server 1.2 is affected by a format string vulnerability in the log_message function (lks.c) when running in non-daemon/foreground mode. The issue allows remote attackers to cause a crash or potentially execute arbitrary code via format string specifiers in an invalid command. Exploitat...

Linux Kiss Server多个格式串处理漏洞

BUGTRAQ ID: 28099 Linux Kiss Server是用于替换PC-LINK软件的服务程序，可运行为守护程序或在前台运行。 以前台模式运行的Linux Kiss Server的lks.c文件中的logmessage函数存在格式串处理漏洞，允许攻击者获得非授权访问。 以下为漏洞代码： Function logmessage: ifbackgroundmode == 0 iftype == 'l' fprintfstdout,logmsg; iftype == 'e' fprintfstderr,logmsg; freelogmsg; Function...