Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2004-0451HistoryDec 06, 2004 - 5:00 a.m.
CVE-2004-0451
2004-12-0605:00:00
Debian Security Bug Tracker
security-tracker.debian.org
11
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.013
Percentile
86.1%
Multiple format string vulnerabilities in the (1) logquit, (2) logerr, or (3) loginfo functions in Software Upgrade Protocol (SUP) allows remote attackers to execute arbitrary code via format string specifiers in messages that are logged by syslog.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | sup | < 1.8-11 | sup_1.8-11_all.deb |
| Debian | 11 | all | sup | < 1.8-11 | sup_1.8-11_all.deb |
| Debian | 999 | all | sup | < 1.8-11 | sup_1.8-11_all.deb |
| Debian | 13 | all | sup | < 1.8-11 | sup_1.8-11_all.deb |
Related
nessus
nessus
FreeBSD : sup -- format string vulnerability (2c5757f4-88bf-11d9-8720-0007e900f87b)
2005-07-13 00:00:00
Debian DSA-521-1 : sup - format string vulnerability
2004-09-29 00:00:00
openvas
openvas
Debian Security Advisory DSA 521-1 (sup)
2008-01-17 00:00:00
FreeBSD Ports: sup
2008-09-04 00:00:00
FreeBSD Ports: sup
2008-09-04 00:00:00
cvelist
cvelist
CVE-2004-0451
2004-06-30 04:00:00
osv
osv
sup - format string vulnerability
2004-06-18 00:00:00
nvd
nvd
CVE-2004-0451
2004-12-06 05:00:00
cve
cve
CVE-2004-0451
2004-12-06 05:00:00
freebsd
freebsd
sup -- format string vulnerability
2004-06-19 00:00:00
debian
debian
[SECURITY] [DSA 521-1] New sup packages fix format string vulnerabilities
2004-06-19 03:48:57
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.013
Percentile
86.1%
Related for DEBIANCVE:CVE-2004-0451