CyberSec.Space Logo
CVEブラウザに戻る

CVE-2005-4439

HIGH
7.8
CVSS Severity Score
EPSS Score0.1950%
EPSS Percentile5.12th
Published2005年12月21日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in ELOG elogd 2.6.0-beta4 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a URL with a long (1) cmd or (2) mode parameter.

Affected Platforms (CPE)

📦
Elog

Elogd

= 2.6.0_beta4

References & Advisories

🔗 http://marc.info/?l=full-disclosure&m=113498708213563&w=2
🔗 http://secunia.com/advisories/18124
🔗 http://secunia.com/advisories/18783
🔗 http://securitytracker.com/id?1015379
🔗 http://www.debian.org/security/2006/dsa-967
🔗 http://www.osvdb.org/21844
🔗 http://www.securityfocus.com/bid/15932
🔗 http://www.vupen.com/english/advisories/2005/3000

関連する脆弱性情報

CVE-2008-04455.0

The replace_inline_img function in elogd in Electronic Logbook (ELOG) before 2.7.1 allows remote attackers to cause a denial of se...

CVE-2005-129910.0

The inserter.cgi script allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.

CVE-2005-103710.0

Unknown vulnerability in AIX 5.3.0, when configured as an NIS client, allows remote attackers to gain root privileges.

CVE-2005-063510.0

Buffer overflow in Foxmail Server 2.0 allows remote attackers to execute arbitrary code via a long USER command.

CVE-2005-4439 Detail & Impact Analysis | CVSS 7.8 (HIGH) | Cyber-Sec.Space | Cyber-Sec.Space