CVE-2008-1705 - CVE Reference - Advisories

CVE Reference: CVE-2008-1705

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-1705

Description: Format string vulnerability in the logging function in IBM solidDB 06.00.1018 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the (1) user name, (2) peer name, and possibly unspecified other fields.

CVE Status: Candidate

References: ST 1019721 MISC http://aluigi.altervista.org/adv/soliduro-adv.txt http://aluigi.org/poc/soliduro.zip

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Debian OpenSSL Predictable Random Number Generator and Update

2.	Microsoft Malware Protection Engine File Parsing Denial of Service

3.	Microsoft Word Two Code Execution Vulnerabilities

4.	Microsoft Publisher Object Handler Validation Vulnerability

5.	Ubuntu update for openssl

6.	Microsoft Windows XP I2O Utility Filter Driver Privilege Escalation

7.	Internet Explorer "DisableCaching OfSSLPages" Weakness

8.	Citrix Access Gateway Unspecified Authentication Bypass

9.	Novell Client Login Long Username/Contex t Buffer Overflow

10.	Build A Niche Store "q" Cross-Site Scripting