CVE-2003-1236

Опубликовано: 31 дек. 2003

Источник: nvd

CVSS2: 10

EPSS Средний

Описание

Multiple format string vulnerabilities in the logger function in netzio.c for Tanne 0.6.17 allows remote attackers to execute arbitrary code via format string specifiers in syslog.

Ссылки

http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0011.html
Exploit
Patch
http://secunia.com/advisories/7831
http://tanne.fluxnetz.de/download/tanne-0.7.1.tar.bz2
Patch
http://www.iss.net/security_center/static/11006.php
http://www.securityfocus.com/archive/1/305460
Exploit
Patch
http://www.securityfocus.com/archive/1/305663
Exploit
http://www.securityfocus.com/bid/6553
Exploit
Patch
http://www.securitytracker.com/id?1005900
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0011.html
Exploit
Patch
http://secunia.com/advisories/7831
http://tanne.fluxnetz.de/download/tanne-0.7.1.tar.bz2
Patch
http://www.iss.net/security_center/static/11006.php
http://www.securityfocus.com/archive/1/305460
Exploit
Patch
http://www.securityfocus.com/archive/1/305663
Exploit
http://www.securityfocus.com/bid/6553
Exploit
Patch
http://www.securitytracker.com/id?1005900

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tanne:tanne:0.6.17:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.27561

Средний

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-q844-pmvq-g48q

github

почти 4 года назад