Angus Mackay: >> Ez-Ipupdate Security Vulnerabilities
Format string vulnerability in ez-ipupdate.c for ez-ipupdate 3.0.10 through 3.0.11b8, when running in daemon mode with certain service types in use, allows remote servers to execute arbitrary code.
CVSS Score
10.0
EPSS Score
0.016
Published
2005-02-09
ez-ipupdate 3.0.11b7 and earlier creates insecure temporary cache files, which allows local users to conduct unauthorized operations via a symlink attack on the ez-ipupdate.cache file.
CVSS Score
2.1
EPSS Score
0.001
Published
2003-12-31