CVE-2005-0687

Опубликовано: 06 мар. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Format string vulnerability in Hashcash 1.16 allows remote attackers to cause a denial of service (memory consumption) and possibly execute arbitrary code via format string specifiers in a reply address, which is not properly handled when printing the header.

Ссылки

http://bugs.gentoo.org/show_bug.cgi?id=83541
Patch
Vendor Advisory
http://secunia.com/advisories/14487
Patch
Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200503-12.xml
Patch
Vendor Advisory
http://bugs.gentoo.org/show_bug.cgi?id=83541
Patch
Vendor Advisory
http://secunia.com/advisories/14487
Patch
Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200503-12.xml
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:hashcash:hashcash:1.14:*:*:*:*:*:*:*

cpe:2.3:a:hashcash:hashcash:1.15:*:*:*:*:*:*:*

cpe:2.3:a:hashcash:hashcash:1.16:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.02051

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2005-0687

debian

больше 20 лет назад

Format string vulnerability in Hashcash 1.16 allows remote attackers t ...

GHSA-5w7r-v534-x375

github

больше 3 лет назад