CVE-2004-0451 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2004-0451

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Multiple format string vulnerabilities in the (1) logquit, (2) logerr, or (3) loginfo functions in Software Upgrade Protocol (SUP) allows remote attackers to execute arbitrary code via format string specifiers in messages that are logged by syslog.

Affected Software

Name	Vendor	Start Version	End Version
Sup	Sup	1.8 (including)	1.8 (including)

References

http://securitytracker.com/id?1010539
http://www.debian.org/security/2004/dsa-521
http://www.securityfocus.com/bid/10571
https://exchange.xforce.ibmcloud.com/vulnerabilities/16459
http://securitytracker.com/id?1010539
http://www.debian.org/security/2004/dsa-521
http://www.securityfocus.com/bid/10571
https://exchange.xforce.ibmcloud.com/vulnerabilities/16459