VulDB: Check Point Syslog Daemon Escape Sequence Handler Eingabeungültigkeit
General
scipID: 21
Affected: Check Point Syslog Daemon
Published: 03/21/2003 (Peter Bieringer)
Risk: 
problematic
Entry: 86.1% complete
Created: 03/21/2003
Updated: 06/27/2012
Summary
A vulnerability, which was classified as problematic, was found in Check Point Syslog Daemon. This affects an unknown function of the component Escape Sequence Handler. The manipulation with an unknown input leads to a eingabeungültigkeit vulnerability. This is going to have an impact on confidentiality, and integrity.
The weakness was released 03/21/2003 by Peter Bieringer with AreaSec. The advisory is shared for download at aerasec.de. It is possible to initiate the attack remotely. Technical details are unknown but an exploit is available.
The exploit is shared for download at securityfocus.com.
Applying a patch is able to eliminate this problem. The bugfix is ready for download at securityfocus.com. The vulnerability is also documented in the vulnerability database at SecurityFocus (BID 7161).CVSS
Base Score: 4.9 (CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:N) [?]
| Access Vector | Access Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Local | High | Multiple | None | None | None |
| Adjacent | Medium | Single | Partial | Partial | Partial |
| Network | Low | None | Complete | Complete | Complete |
Exploiting
Class: Eingabeungültigkeit
Local: No
Remote: Yes
Availability: Yes
Download: securityfocus.com
Countermeasures
Recommended: Deaktivieren
0-Day Time: 0 days since found
Patch: securityfocus.com
Timeline
03/21/2003 | Advisory disclosed
03/21/2003 | VulDB entry created
06/27/2012 | VulDB entry updated
Sources
Advisory: aerasec.de
Researcher: Peter Bieringer
Company: AreaSec
SecurityFocus: 7161
- Latest Entries
- Google Chrome Web Audio Handler buffer overflow [CVE-2013-2845]
- Google Chrome Style Resolution Handler buffer overflow [CVE-2013-2844]
- Google Chrome Speech Handler buffer overflow [CVE-2013-2843]
- Google Chrome Widget Handler buffer overflow [CVE-2013-2842]
- Google Chrome Pepper Resource Handler buffer overflow [CVE-2013-2841]
- Statistics
- Archive
