Lucene search
HistoryMar 08, 2005 - 5:00 a.m.
CVE-2005-0687
cve-2005-0687
hashcash
format string vulnerability
denial of service
memory consumption
remote attackers
execute arbitrary code
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
Low
0.018 Low
EPSS
Percentile
88.3%
Format string vulnerability in Hashcash 1.16 allows remote attackers to cause a denial of service (memory consumption) and possibly execute arbitrary code via format string specifiers in a reply address, which is not properly handled when printing the header.
Affected configurations
Node
hashcashhashcashMatch1.14
ORhashcashhashcashMatch1.15
ORhashcashhashcashMatch1.16
| CPE | Name | Operator | Version |
|---|---|---|---|
| hashcash:hashcash | hashcash | eq | 1.14 |
| hashcash:hashcash | hashcash | eq | 1.15 |
| hashcash:hashcash | hashcash | eq | 1.16 |
Related
nessus
nessus
FreeBSD : hashcash -- format string vulnerability (5ebfe901-a3cb-11d9-b248-000854d03344)
2005-07-13 00:00:00
GLSA-200503-12 : Hashcash: Format string vulnerability
2005-03-07 00:00:00
debiancve
debiancve
CVE-2005-0687
2005-03-08 05:00:00
freebsd
freebsd
hashcash -- format string vulnerability
2005-03-06 00:00:00
gentoo
gentoo
Hashcash: Format string vulnerability
2005-03-06 00:00:00
openvas
openvas
FreeBSD Ports: hashcash
2008-09-04 00:00:00
FreeBSD Ports: hashcash
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200503-12 (Hashcash)
2008-09-24 00:00:00
nvd
nvd
CVE-2005-0687
2005-03-06 05:00:00
cvelist
cvelist
CVE-2005-0687
2005-03-08 05:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
Low
0.018 Low
EPSS
Percentile
88.3%
Related for CVE-2005-0687