CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
0.4%
Format string vulnerability in splitvt before 1.6.5 allows local users to execute arbitrary commands via the -rcfile command line argument.
Vendor | Product | Version | CPE |
---|---|---|---|
sam_lantinga | splitvt | 1.6.4 | cpe:2.3:a:sam_lantinga:splitvt:1.6.4:*:*:*:*:*:*:* |
debian | debian_linux | 2.2 | cpe:2.3:o:debian:debian_linux:2.2:*:*:*:*:*:*:* |
debian | debian_linux | 2.2 | cpe:2.3:o:debian:debian_linux:2.2:*:68k:*:*:*:*:* |
debian | debian_linux | 2.2 | cpe:2.3:o:debian:debian_linux:2.2:*:alpha:*:*:*:*:* |
debian | debian_linux | 2.2 | cpe:2.3:o:debian:debian_linux:2.2:*:arm:*:*:*:*:* |
debian | debian_linux | 2.2 | cpe:2.3:o:debian:debian_linux:2.2:*:powerpc:*:*:*:*:* |
debian | debian_linux | 2.2 | cpe:2.3:o:debian:debian_linux:2.2:*:sparc:*:*:*:*:* |