|
|
CVE Reference: CVE-2006-4127 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-4127 |
|
|
Description: Multiple format string vulnerabilities in DConnect Daemon 0.7.0 and earlier allow remote administrators to execute arbitrary code via format string specifiers that are not properly handled when calling the (1) privmsg() or (2) pubmsg functions from (a) cmd.user.c, (b) penalties.c, or (c) cmd.dc.c. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/28280 ST 1016641 SREASON http://securityreason.com/securityalert/1377 SAID Secunia Advisory: SA21384 CONFIRM http://www.dc.ds.pg.gda.pl/?page=doc&doc=changelog http://www.dc.ds.pg.gda.pl/ BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/442440/100/0/threaded BID 19371 |
|
| Return to the previous page. |
