CVE Vulnerabilities

CVE-2004-0393

Published: Dec 06, 2004 | Modified: Nov 20, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Format string vulnerability in the msg function for rlpr daemon (rlprd) 2.0.4 allows remote attackers to execute arbitrary code via format string specifiers in a buffer that can not be resolved, which is provided to the syslog function.

Affected Software

Name Vendor Start Version End Version
Rlpr Rlpr 2.0 (including) 2.0 (including)
Rlpr Rlpr 2.0.1 (including) 2.0.1 (including)
Rlpr Rlpr 2.0.2 (including) 2.0.2 (including)
Rlpr Rlpr 2.0.3 (including) 2.0.3 (including)
Rlpr Rlpr 2.0.4 (including) 2.0.4 (including)
Rlpr Ubuntu dapper *
Rlpr Ubuntu devel *
Rlpr Ubuntu edgy *
Rlpr Ubuntu feisty *

References