Vulnerabilities > CVE-2002-0913 - Remote Format String vulnerability in Stephen Hebditch Slurp 1.1.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
stephen-hebditch
exploit available
NVD
Published: 2002-10-04
Updated: 2016-10-18

Summary

Format string vulnerability in log_doit function of Slurp NNTP client 1.1.0 allows a malicious news server to execute arbitrary code on the client via format strings in a server response.

Vulnerable Configurations

Part Description Count
Application
Stephen_Hebditch
1

Exploit-Db

descriptionSlurp 1.10 SysLog Remote Format String Vulnerability. CVE-2002-0913. Dos exploit for freebsd platform
idEDB-ID:21512
last seen2016-02-02
modified2002-06-04
published2002-06-04
reporterzillion
sourcehttps://www.exploit-db.com/download/21512/
titleSlurp 1.10 SysLog Remote Format String Vulnerability

References