CVE-2004-2026

EPSS 32.7%

Published: 12/31/2004Modified: 4/28/2026

Also known as:DEBIAN-CVE-2004-2026

Description

Format string vulnerability in the logmsg function in svc.c for Pound 1.5 and earlier allows remote attackers to execute arbitrary code via format string specifiers in syslog messages.

Affected packages (1)

Debian/poundfrom 0, < 1.7-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2004-2026