7.5
CVE-2005-1100
- EPSS 10.99%
- Veröffentlicht 02.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:12:26
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginFormat string vulnerability in the ErrorLog function in cnf.c in Greylisting daemon (GLD) 1.3 and 1.4 allows remote attackers to execute arbitrary code via format string specifiers in data that is passed directly to syslog.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Salim Gasmi ≫ Gld Version1.3
Salim Gasmi ≫ Gld Version1.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 10.99% | 0.953 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=111339935903880&w=2
http://secunia.com/advisories/14941
http://security.gentoo.org/glsa/glsa-200504-10.xml
http://securitytracker.com/alerts/2005/Apr/1013678.html
http://www.osvdb.org/15493
https://exchange.xforce.ibmcloud.com/vulnerabilities/20067