Vulnerability Details CVE-2002-0501
Format string vulnerability in log_print() function of Posadis DNS server before version m5pre2 allows local users and possibly remote attackers to execute arbitrary code via format strings that are inserted into logging messages.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.4%
CVSS Severity
CVSS v2 Score 7.2
References
- http://online.securityfocus.com/archive/1/264450
- http://sourceforge.net/forum/forum.php?forum_id=165094
- http://www.iss.net/security_center/static/8653.php
- http://www.osvdb.org/3516
- http://www.securityfocus.com/bid/4378
- http://online.securityfocus.com/archive/1/264450
- http://sourceforge.net/forum/forum.php?forum_id=165094
- http://www.iss.net/security_center/static/8653.php
- http://www.osvdb.org/3516
- http://www.securityfocus.com/bid/4378