exploitDog

GHSA-m843-mrw3-f2mr

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in a request in the (1) log_msg function in log.c or (2) version or (3) build_version function in version.c.

Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in a request in the (1) log_msg function in log.c or (2) version or (3) build_version function in version.c.

Ссылки

EPSS

Процентиль: 93%

0.10566

Средний

CVE ID

Дефекты

CWE-134

Связанные уязвимости

CVE-2013-4147

ubuntu

больше 12 лет назад

Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in a request in the (1) log_msg function in log.c or (2) version or (3) build_version function in version.c.

CVE-2013-4147

nvd

больше 12 лет назад

Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in a request in the (1) log_msg function in log.c or (2) version or (3) build_version function in version.c.

CVE-2013-4147

debian

больше 12 лет назад

Multiple format string vulnerabilities in Yet Another Radius Daemon (Y ...

EPSS

Процентиль: 93%

0.10566

Средний

CVE ID

Дефекты

CWE-134