CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-1192

Format string vulnerability in the lprintf function in Citadel/UX 6.27 and earlier allows remote attackers to execute arbitrary code via format string specifiers sent to the server.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.06

EPSS Ranking 90.2%

CVSS Severity

CVSS v2 Score 10.0

References

http://marc.info/?l=bugtraq&m=110295469430696&w=2
http://marc.info/?l=bugtraq&m=110304986223400&w=2
http://www.nosystem.com.ar/advisories/advisory-09.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/18429
http://marc.info/?l=bugtraq&m=110295469430696&w=2
http://marc.info/?l=bugtraq&m=110304986223400&w=2
http://www.nosystem.com.ar/advisories/advisory-09.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/18429

Products affected by CVE-2004-1192

Citadel » Ux » Version: 6.07

cpe:2.3:a:citadel:ux:6.07
Citadel » Ux » Version: 6.08

cpe:2.3:a:citadel:ux:6.08
Citadel » Ux » Version: 6.23

cpe:2.3:a:citadel:ux:6.23
Citadel » Ux » Version: 6.24

cpe:2.3:a:citadel:ux:6.24
Citadel » Ux » Version: 6.26

cpe:2.3:a:citadel:ux:6.26
Citadel » Ux » Version: 6.27

cpe:2.3:a:citadel:ux:6.27

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1192

Products

Pricing

Contact Us