Format string vulnerability in the PROJECT::write_account_file function in client/cs_account.cpp in BOINC, possibly 7.2.33, allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in the gui_urls item in an account file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rom walton boinc 7.2.33 |