Elog Web Logbook Security Vulnerabilities and Issues — Elog Web Logbook CVE List

Lucene search

Stefan RittElog Web Logbook

5 matches found

CVE•added 2006/02/13 11:6 a.m.•43 views

CVE-2006-0598

Buffer overflow in elogd.c in elog before 2.5.7 r1558-4 allows attackers to execute code via unspecified variables, when writing to the log file.

7.5CVSS7.1AI score0.01412EPSS

CVE•added 2006/11/07 11:7 p.m.•42 views

CVE-2006-5790

Multiple format string vulnerabilities in elogd.c in ELOG 2.6.2 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) an entry with an attachment whose name contains format string specifiers (el_submit function), and possibly other vecto...

7.5CVSS7.6AI score0.03041EPSS

CVE•added 2005/05/02 4:0 a.m.•36 views

CVE-2005-0440

ELOG before 2.5.7 allows remote attackers to bypass authentication and download a configuration file that contains a sensitive write password via a modified URL.

7.5CVSS7AI score0.00624EPSS

CVE•added 2006/02/13 11:6 a.m.•33 views

CVE-2006-0597

Multiple stack-based buffer overflows in elogd.c in elog before 2.5.7 r1558-4 allow attackers to cause a denial of service (application crash) and possibly execute code via long "revision attributes".

7.5CVSS6.9AI score0.00937EPSS

CVE•added 2005/05/02 4:0 a.m.•31 views

CVE-2005-0439

Buffer overflow in the decode_post function in ELOG before 2.5.7 allows remote attackers to execute arbitrary code via attachments with long file names.

7.5CVSS7.9AI score0.13506EPSS