CVE Vulnerabilities

CVE-2000-1004

Published: Dec 11, 2000 | Modified: Oct 10, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Format string vulnerability in OpenBSD photurisd allows local users to execute arbitrary commands via a configuration file directory name that contains formatting characters.

Affected Software

Name Vendor Start Version End Version
Openbsd Openbsd 2.7 2.7
Openbsd Openbsd 2.4 2.4
Openbsd Openbsd 2.6 2.6
Openbsd Openbsd 2.5 2.5
Openbsd Openbsd 2.3 2.3

References