Max CVSS | 7.8 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2005-4439 | 7.8 |
Buffer overflow in ELOG elogd 2.6.0-beta4 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a URL with a long (1) cmd or (2) mode parameter.
|
20-07-2017 - 01:29 | 21-12-2005 - 01:03 | |
CVE-2006-0599 | 5.0 |
The (1) elog.c and (2) elogd.c components in elog before 2.5.7 r1558-4 generate different responses depending on whether or not a username is valid, which allows remote attackers to determine valid usernames.
|
20-07-2017 - 01:29 | 13-02-2006 - 11:06 | |
CVE-2006-0597 | 7.5 |
Multiple stack-based buffer overflows in elogd.c in elog before 2.5.7 r1558-4 allow attackers to cause a denial of service (application crash) and possibly execute code via long "revision attributes".
|
20-07-2017 - 01:29 | 13-02-2006 - 11:06 | |
CVE-2006-0348 | 5.0 |
Format string vulnerability in the write_logfile function in ELOG before 2.6.1 allows remote attackers to cause a denial of service (server crash) via unknown attack vectors. NOTE: the provenance of this information is unknown; the details are obtai
|
20-07-2017 - 01:29 | 21-01-2006 - 01:03 | |
CVE-2006-0600 | 5.0 |
elog before 2.5.7 r1558-4 allows remote attackers to cause a denial of service (infinite redirection) via a request with the fail parameter set to 1, which redirects to the same request.
|
20-07-2017 - 01:29 | 13-02-2006 - 11:06 | |
CVE-2006-0598 | 7.5 |
Buffer overflow in elogd.c in elog before 2.5.7 r1558-4 allows attackers to execute code via unspecified variables, when writing to the log file.
|
20-07-2017 - 01:29 | 13-02-2006 - 11:06 | |
CVE-2006-0347 | 5.0 |
Directory traversal vulnerability in ELOG before 2.6.1 allows remote attackers to access arbitrary files outside of the elog directory via "../" (dot dot) sequences in the URL.
|
20-07-2017 - 01:29 | 21-01-2006 - 01:03 |