CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-0687

Format string vulnerability in Hashcash 1.16 allows remote attackers to cause a denial of service (memory consumption) and possibly execute arbitrary code via format string specifiers in a reply address, which is not properly handled when printing the header.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.021

EPSS Ranking 83.1%

CVSS Severity

CVSS v2 Score 7.5

References

http://bugs.gentoo.org/show_bug.cgi?id=83541
http://secunia.com/advisories/14487
http://www.gentoo.org/security/en/glsa/glsa-200503-12.xml
http://bugs.gentoo.org/show_bug.cgi?id=83541
http://secunia.com/advisories/14487
http://www.gentoo.org/security/en/glsa/glsa-200503-12.xml

Products affected by CVE-2005-0687

Hashcash » Hashcash » Version: 1.14

cpe:2.3:a:hashcash:hashcash:1.14
Hashcash » Hashcash » Version: 1.15

cpe:2.3:a:hashcash:hashcash:1.15
Hashcash » Hashcash » Version: 1.16

cpe:2.3:a:hashcash:hashcash:1.16

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-0687

Products

Pricing

Contact Us