CyberSec.Space Logo
Back to CVE Browser

CVE-2005-1738

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1010%
EPSS Percentile12.91th
PublishedMay 24, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Format string vulnerability in the logPrintBadfile function in delbadfiles.c Iron Bars SHell (ibsh) before 0.3d allows users to "access files outside the home directory" and possibly execute arbitrary code via certain inputs that are not properly handled in a syslog call.

Affected Platforms (CPE)

πŸ“¦
Iron Bars Shell

Iron Bars Shell

= 0.3a
πŸ“¦
Iron Bars Shell

Iron Bars Shell

= 0.3b
πŸ“¦
Iron Bars Shell

Iron Bars Shell

= 0.3c

References & Advisories

πŸ”— http://secunia.com/advisories/15473
πŸ”— http://sourceforge.net/project/shownotes.php?release_id=329340
πŸ”— http://www.securityfocus.com/bid/13720
πŸ”— http://secunia.com/advisories/15473
πŸ”— http://sourceforge.net/project/shownotes.php?release_id=329340
πŸ”— http://www.securityfocus.com/bid/13720

Related Vulnerabilities

CVE-2005-073510.0

newsscript.pl for NewsScript allows remote attackers to gain privileges by setting the mode parameter to admin.

CVE-2005-074410.0

The web GUI for Novell iChain 2.2 and 2.3 SP2 and SP3 allows attackers to hijack sessions and gain administrator privileges by (1)...

CVE-2005-070810.0

The sendfile system call in FreeBSD 4.8 through 4.11 and 5 through 5.4 can transfer portions of kernel memory if a file is truncat...

CVE-2005-076810.0

Buffer overflow in the administration web server for GoodTech Telnet Server 4.0 and 5.0, and possibly all versions before 5.0.7, a...