Published: 02/05/2005 Updated: 11/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Format string vulnerability in the ErrorLog function in cnf.c in Greylisting daemon (GLD) 1.3 and 1.4 allows remote malicious users to execute arbitrary code via format string specifiers in data that is passed directly to syslog.

Vulnerable Product	Search on Vulmon	Subscribe to Product
salim gasmi gld 1.3
salim gasmi gld 1.4

/* ** ** ** 0x82-meOw-linuxer_forever - gld 14 remote overflow format string exploit ** (c) 2005 Team INetCop Security ** ** Nickname of this code is, ** `Kill two bird with one stone' or, `One shot, two kill!' ** hehehe ;-D ** ** Advisory URL: ** x82inetcoporg/h0me/adv1sor1es/INCSA2005-0x82-026-GLDtxt ** ** It's as well as RedHat ...

NVD-CWE-Other http://security.gentoo.org/glsa/glsa-200504-10.xml http://www.osvdb.org/15493 http://securitytracker.com/alerts/2005/Apr/1013678.html http://secunia.com/advisories/14941 http://marc.info/?l=bugtraq&m=111339935903880&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/20067 https://nvd.nist.gov https://www.exploit-db.com/exploits/934/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-1100

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect