Moole Vulnerability Database

Find real vulnerabilities before they ship

Unknown

CVE-2004-0448

Format string vulnerability in the log function for jftpgw 0.13.4 and earlier allows remote authenticated users to execute arbitrary code via format string specifiers in certain syslog messages.

PublishedDec 06, 2004, 05:00

Published Bycve@mitre.org

Affected Versions

No affected versions found.

References

http://www.debian.org/security/2004/dsa-510
http://www.securityfocus.com/bid/10438
https://exchange.xforce.ibmcloud.com/vulnerabilities/16271

Weakness Type

NVD-CWE-Other

CVSS Metrics

Base Score

Vector String

AV:N/AC:L/Au:N/C:C/I:C/A:C

Base SeverityUnknown

Version

2.0

Attack Vector (AV)