CVE-2004-2386

EPSS 3.8%

發布日:2004/12/31修改日:2026/4/28

也稱為:DEBIAN-CVE-2004-2386

描述

Format string vulnerability in the LogMsg function in sercd before 2.3.1 and sredird 2.2.1 and earlier allows remote attackers to execute arbitrary code via format string specifiers passed from the HandleCPCCommand function.

受影響套件(1)

Debian/sredirdfrom 0, < 2.2.1-1.1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2004-2386