CVE-2004-0354
Summary
| CVE | CVE-2004-0354 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2004-11-23 05:00:00 UTC |
| Updated | 2017-07-11 01:30:00 UTC |
| Description | Multiple format string vulnerabilities in GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow remote attackers to execute arbitrary code via format string specifiers in strings passed to (1) the info function in log.c, (2) the anubis_error function in errs.c, or (3) the ssl_error function in ssl.c. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Gnu | Anubis | 3.6.0 | All | All | All |
| Application | Gnu | Anubis | 3.6.1 | All | All | All |
| Application | Gnu | Anubis | 3.6.2 | All | All | All |
| Application | Gnu | Anubis | 3.9.92 | All | All | All |
| Application | Gnu | Anubis | 3.9.93 | All | All | All |
| Application | Gnu | Anubis | 3.6.0 | All | All | All |
| Application | Gnu | Anubis | 3.6.1 | All | All | All |
| Application | Gnu | Anubis | 3.6.2 | All | All | All |
| Application | Gnu | Anubis | 3.9.92 | All | All | All |
| Application | Gnu | Anubis | 3.9.93 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 'GNU Anubis buffer overflows and format string bugs' - MARC | BUGTRAQ | marc.info | |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| [bug-anubis] Important security update | MLIST | mail.gnu.org | |
| GNU Anubis Multiple Remote Buffer Overflow and Format String Vulnerabilities | BID | www.securityfocus.com | Exploit, Patch, Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.