Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3150

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-3150
Last Modified 05 Sep 2008 04:53:35
Published 05 Oct 2005 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3150

Summary

Format string vulnerability in the Log_Flush function in Weex 2.6.1.5, 2.6.1, and possibly other versions allows remote FTP servers to execute arbitrary code via format strings in filenames.

Vulnerable Systems

Application

  • Weex 2.6.1

  • Weex 2.6.1.5


References

GENTOO - GLSA-200510-09

CONFIRM - http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/86833

DEBIAN - DSA-855

SECUNIA - 17028

BID - 14999

SECUNIA - 17112

SECUNIA - 17081


Last Updated: 27 May 2016 10:40:49