CVE-2002-0412
published 2002-08-12CVE-2002-0412: Format string vulnerability in TraceEvent function for ntop before 2.1 allows remote attackers to execute arbitrary code by causing format strings to be…
PriorityP337high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
4.17%
89.6th percentile
Format string vulnerability in TraceEvent function for ntop before 2.1 allows remote attackers to execute arbitrary code by causing format strings to be injected into calls to the syslog function, via (1) an HTTP GET request, (2) a user name in HTTP authentication, or (3) a password in HTTP authentication.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| luca_deri | ntop | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
CAPEC
String Format Overflow in syslog()
mitre_capec
[CRITICAL] String Format Overflow in syslog()
CAPEC-67: String Format Overflow in syslog()
This attack targets applications and software that uses the syslog() function insecurely. If an application does not explicitely use a format string parameter in a call to syslog(), user input can be placed in the format string parameter leading to a format string injection attack. Adversaries can then inject malicious format string commands into the function call leading to a buffer overflow. There are many reported software vulnerabilities with the root cause being a misuse of the syslog() function.
Execution Flow:
Step 1 [Explore]: [Identify target application] The adversary identifies a target application or program to perform the buffer overflow on. In this attack, adversaries look for applications that use syslog() incorrectly.
Step 2 [E
http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0056.htmlhttp://listmanager.unipi.it/pipermail/ntop-dev/2002-February/000489.htmlhttp://marc.info/?l=bugtraq&m=101854261030453&w=2http://marc.info/?l=bugtraq&m=101856541322245&w=2http://marc.info/?l=bugtraq&m=101908224609740&w=2http://online.securityfocus.com/archive/1/259642http://snapshot.ntop.org/http://www.iss.net/security_center/static/8347.phphttp://www.osvdb.org/5307http://www.securityfocus.com/bid/4225http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0056.htmlhttp://listmanager.unipi.it/pipermail/ntop-dev/2002-February/000489.htmlhttp://marc.info/?l=bugtraq&m=101854261030453&w=2http://marc.info/?l=bugtraq&m=101856541322245&w=2http://marc.info/?l=bugtraq&m=101908224609740&w=2http://online.securityfocus.com/archive/1/259642http://snapshot.ntop.org/http://www.iss.net/security_center/static/8347.phphttp://www.osvdb.org/5307http://www.securityfocus.com/bid/4225
2002-08-12
Published