CVE-2002-1200
EPSS 6.5%syslog-ng - buffer overflow
發布日:2002/10/28修改日:2026/4/28
描述
Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute arbitrary code.
受影響套件(2)
- Debian/syslog-ngfrom 0, < 1.5.21-1
- Debian/syslog-ngfrom 0, < 1.5.15-1.1