CyberSec.Space Logo
CVEブラウザに戻る

CVE-2005-1100

HIGH
7.5
CVSS Severity Score
EPSS Score0.0980%
EPSS Percentile4.07th
Published2005年5月2日
Last Modified2026年4月16日

Vulnerability Description

Format string vulnerability in the ErrorLog function in cnf.c in Greylisting daemon (GLD) 1.3 and 1.4 allows remote attackers to execute arbitrary code via format string specifiers in data that is passed directly to syslog.

Affected Platforms (CPE)

📦
Salim Gasmi

Gld

= 1.3
📦
Salim Gasmi

Gld

= 1.4

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=111339935903880&w=2
🔗 http://secunia.com/advisories/14941
🔗 http://security.gentoo.org/glsa/glsa-200504-10.xml
🔗 http://securitytracker.com/alerts/2005/Apr/1013678.html
🔗 http://www.osvdb.org/15493
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/20067
🔗 http://marc.info/?l=bugtraq&m=111339935903880&w=2
🔗 http://secunia.com/advisories/14941

関連する脆弱性情報

CVE-2005-109910.0

Multiple buffer overflows in the HandleChild function in server.c in Greylisting daemon (GLD) 1.3 and 1.4, when GLD is listening o...

CVE-2005-129910.0

The inserter.cgi script allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.

CVE-2005-103710.0

Unknown vulnerability in AIX 5.3.0, when configured as an NIS client, allows remote attackers to gain root privileges.

CVE-2005-063510.0

Buffer overflow in Foxmail Server 2.0 allows remote attackers to execute arbitrary code via a long USER command.