Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0623

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0623
Last Modified 05 Sep 2008 04:38:55
Published 06 Dec 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0623

Summary

Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote attackers to execute arbitrary code via format string specifiers in a string that gets logged by syslog.

Vulnerable Systems

Application

  • Gnu Gnats 3.0 02

  • Gnu Gnats 3.113

  • Gnu Gnats 3.113.1

  • Gnu Gnats 3.113.1.6

  • Gnu Gnats 3.14b

  • Gnu Gnats 3.2

  • Gnu Gnats 4.0


References

BID - 10609

XF - gnats-format-string(16517)

BUGTRAQ - 20040625 format string vulnerability in Gnats


Last Updated: 27 May 2016 10:38:40