CVE-2005-3074

SQL injection vulnerability in rsyslogd in RSyslog before 1.0.1 and before 1.10.1 allows remote attackers to execute arbitrary SQL commands via crafted syslog messages.

Affected Software

Name	Vendor	Start Version	End Version
Rsyslogd	Rsyslog	*	1.0.1_stable (including)
Rsyslogd	Rsyslog	*	1.10.1_development (including)
Rsyslogd	Rsyslog	0.8.0_stable (including)	0.8.0_stable (including)
Rsyslogd	Rsyslog	0.8.1_stable (including)	0.8.1_stable (including)
Rsyslogd	Rsyslog	0.8.2_stable (including)	0.8.2_stable (including)
Rsyslogd	Rsyslog	0.8.3_stable (including)	0.8.3_stable (including)
Rsyslogd	Rsyslog	0.8.4_stable (including)	0.8.4_stable (including)
Rsyslogd	Rsyslog	0.9.0_stable (including)	0.9.0_stable (including)
Rsyslogd	Rsyslog	0.9.1_stable (including)	0.9.1_stable (including)
Rsyslogd	Rsyslog	0.9.2_stable (including)	0.9.2_stable (including)
Rsyslogd	Rsyslog	0.9.3_stable (including)	0.9.3_stable (including)
Rsyslogd	Rsyslog	0.9.4_stable (including)	0.9.4_stable (including)
Rsyslogd	Rsyslog	0.9.5_stable (including)	0.9.5_stable (including)
Rsyslogd	Rsyslog	0.9.6_stable (including)	0.9.6_stable (including)
Rsyslogd	Rsyslog	0.9.7_stable (including)	0.9.7_stable (including)
Rsyslogd	Rsyslog	0.9.8_stable (including)	0.9.8_stable (including)
Rsyslogd	Rsyslog	1.0.0_stable (including)	1.0.0_stable (including)

NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-3074
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Affected Software

References