CyberSec.Space Logo
Back to CVE Browser

CVE-2005-4439

HIGH
7.8
CVSS Severity Score
EPSS Score0.1950%
EPSS Percentile5.12th
PublishedDec 21, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in ELOG elogd 2.6.0-beta4 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a URL with a long (1) cmd or (2) mode parameter.

Affected Platforms (CPE)

πŸ“¦
Elog

Elogd

= 2.6.0_beta4

References & Advisories

πŸ”— http://marc.info/?l=full-disclosure&m=113498708213563&w=2
πŸ”— http://secunia.com/advisories/18124
πŸ”— http://secunia.com/advisories/18783
πŸ”— http://securitytracker.com/id?1015379
πŸ”— http://www.debian.org/security/2006/dsa-967
πŸ”— http://www.osvdb.org/21844
πŸ”— http://www.securityfocus.com/bid/15932
πŸ”— http://www.vupen.com/english/advisories/2005/3000

Related Vulnerabilities

CVE-2008-04455.0

The replace_inline_img function in elogd in Electronic Logbook (ELOG) before 2.7.1 allows remote attackers to cause a denial of se...

CVE-2005-051910.0

ArGoSoft FTP Server before 1.4.2.7 allows remote attackers to read arbitrary files by uploading a ZIP file containing a shortcut (...

CVE-2005-103710.0

Unknown vulnerability in AIX 5.3.0, when configured as an NIS client, allows remote attackers to gain root privileges.

CVE-2005-052010.0

ArGoSoft FTP Server before 1.4.2.8 allows remote attackers to read arbitrary files via shortcut (.LNK) files in the SITE COPY comm...