10

CVE-2004-0393

Exploit
Format string vulnerability in the msg function for rlpr daemon (rlprd) 2.0.4 allows remote attackers to execute arbitrary code via format string specifiers in a buffer that can not be resolved, which is provided to the syslog function.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
RlprRlpr Version2.0
RlprRlpr Version2.0.1
RlprRlpr Version2.0.2
RlprRlpr Version2.0.3
RlprRlpr Version2.0.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 17.43% 0.967
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://marc.info/?l=bugtraq&m=108810992313652&w=2
http://www.debian.org/security/2004/dsa-524
Patch
Vendor Advisory
http://www.securityfocus.com/bid/10578
Patch
Vendor Advisory
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/16453