Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
balabit syslog-ng vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2000-1165
Balabit syslog-ng allows remote malicious users to cause a denial of service (application crash) via a malformed log message that does not have a closing > in the priority specifier.
Balabit Syslog-ng
Balabit Syslog-ng 1.4.7
Balabit Syslog-ng 1.4.8
445
VMScore
CVE-2007-6437
Balabit syslog-ng 2.0.x prior to 2.0.6 and 2.1.x prior to 2.1.8 allows remote malicious users to cause a denial of service (crash) via a message with a timestamp that does not contain a trailing space, which triggers a NULL pointer dereference.
Balabit Syslog-ng Premium Edition
Balabit Syslog-ng Open Source Edition
668
VMScore
CVE-2002-1200
Balabit Syslog-NG 1.4.x prior to 1.4.15, and 1.5.x prior to 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote malicious users to cause a denial of serv...
Oneidentity Syslog-ng 1.4.0
Oneidentity Syslog-ng 1.4.7
Oneidentity Syslog-ng 1.4.8
Oneidentity Syslog-ng 1.4.9
Oneidentity Syslog-ng 1.4.10
Oneidentity Syslog-ng 1.4.15
Oneidentity Syslog-ng 1.5.15
Oneidentity Syslog-ng 1.5.20
614
VMScore
CVE-2011-0343
Balabit syslog-ng 2.0, 3.0, 3.1, 3.2 OSE and PE, when running on FreeBSD or HP-UX, does not properly perform cast operations, which causes syslog-ng to use a default value of -1 to create log files with insecure permissions (07777), which allows local users to read and write to t...
Oneidentity Syslog-ng 2.0
Oneidentity Syslog-ng 3.0
Oneidentity Syslog-ng 3.1
Oneidentity Syslog-ng 3.2
383
VMScore
CVE-2011-1951
lib/logmatcher.c in Balabit syslog-ng prior to 3.2.4, when the global flag is set and when using PCRE 8.12 and possibly other versions, allows remote malicious users to cause a denial of service (memory consumption) via a message that does not match a regular expression.
Oneidentity Syslog-ng
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started