Описание
Format string vulnerability in the logging function in the IM Server (aka IMserve or IMserver) in Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in an IP address field.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.0.8.1 (включая)Версия до 2.0.8.1 (включая)
Одно из
cpe:2.3:a:ipswitch:imserver:*:*:*:*:*:*:*:*
cpe:2.3:a:ipswitch:instant_messaging:*:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.01199
Низкий
3.5 Low
CVSS2
Дефекты
CWE-134
Связанные уязвимости
github
почти 4 года назад
Format string vulnerability in the logging function in the IM Server (aka IMserve or IMserver) in Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in an IP address field.
EPSS
Процентиль: 79%
0.01199
Низкий
3.5 Low
CVSS2
Дефекты
CWE-134