Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2004-2386HistoryAug 16, 2005 - 4:00 a.m.
CVE-2004-2386
2005-08-1604:00:00
Debian Security Bug Tracker
security-tracker.debian.org
3
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.2
Confidence
Low
EPSS
0.103
Percentile
95.0%
Format string vulnerability in the LogMsg function in sercd before 2.3.1 and sredird 2.2.1 and earlier allows remote attackers to execute arbitrary code via format string specifiers passed from the HandleCPCCommand function.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | sredird | < 2.2.1-1.1 | sredird_2.2.1-1.1_all.deb |
| Debian | 11 | all | sredird | < 2.2.1-1.1 | sredird_2.2.1-1.1_all.deb |
| Debian | 999 | all | sredird | < 2.2.1-1.1 | sredird_2.2.1-1.1_all.deb |
| Debian | 13 | all | sredird | < 2.2.1-1.1 | sredird_2.2.1-1.1_all.deb |
Related
cvelist
cvelist
CVE-2004-2386
2005-08-16 04:00:00
nvd
nvd
CVE-2004-2386
2004-12-31 05:00:00
cve
cve
CVE-2004-2386
2005-08-16 04:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.2
Confidence
Low
EPSS
0.103
Percentile
95.0%
Related for DEBIANCVE:CVE-2004-2386