Vulnerability Details CVE-2005-2410
Format string vulnerability in the nm_info_handler function in Network Manager may allow remote attackers to execute arbitrary code via format string specifiers in a Wireless Access Point identifier, which is not properly handled in a syslog call.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.021
EPSS Ranking 82.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://lwn.net/Alerts/145678/
- http://mail.gnome.org/archives/networkmanager-list/2005-July/msg00196.html
- http://mail.gnome.org/archives/networkmanager-list/2005-July/msg00197.html
- http://lwn.net/Alerts/145678/
- http://mail.gnome.org/archives/networkmanager-list/2005-July/msg00196.html
- http://mail.gnome.org/archives/networkmanager-list/2005-July/msg00197.html
Products affected by CVE-2005-2410
-
cpe:2.3:a:gnome:networkmanager:0.1
-
cpe:2.3:a:gnome:networkmanager:0.3.1
-
cpe:2.3:a:gnome:networkmanager:0.4