Vulnerabilities > CVE-2004-0579

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

nessus

NVD

Published: 2004-08-06

Updated: 2017-07-11

Summary

Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root.

Part	Description	Count
Application	William_Deich William Deich Super 3.12 William Deich Super 3.16 William Deich Super 3.17 William Deich Super 3.18 William Deich Super 3.19	5
OS	Debian Debian Debian Linux 3.0	12

NASL family	Debian Local Security Checks
NASL id	DEBIAN_DSA-522.NASL
description	Max Vozeler discovered a format string vulnerability in super, a program to allow specified users to execute commands with root privileges. This vulnerability could potentially be exploited by a local user to execute arbitrary code with root privileges.
last seen	2020-06-01
modified	2020-06-02
plugin id	15359
published	2004-09-29
reporter	This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/15359
title	Debian DSA-522-1 : super - format string vulnerability