CVE Vulnerabilities

CVE-2004-0393

Published: Dec 06, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Format string vulnerability in the msg function for rlpr daemon (rlprd) 2.0.4 allows remote attackers to execute arbitrary code via format string specifiers in a buffer that can not be resolved, which is provided to the syslog function.

Affected Software

Name Vendor Start Version End Version
Rlpr Rlpr 2.0 (including) 2.0 (including)
Rlpr Rlpr 2.0.1 (including) 2.0.1 (including)
Rlpr Rlpr 2.0.2 (including) 2.0.2 (including)
Rlpr Rlpr 2.0.3 (including) 2.0.3 (including)
Rlpr Rlpr 2.0.4 (including) 2.0.4 (including)
Rlpr Ubuntu dapper *
Rlpr Ubuntu devel *
Rlpr Ubuntu edgy *
Rlpr Ubuntu feisty *

References