← Voltar para CVEs
CVE-2005-1121
N/ADescricao
Format string vulnerability in the my_xlog function in lib.c for Oops! Proxy Server 1.5.23 and earlier, as called by the auth functions in the passwd_mysql and passwd_pgsql modules, may allow attackers to execute arbitrary code via a URL.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado5/2/2005
Ultima modificacao4/16/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
gentoo:linuxigor_khasilev:oops_proxy_server
Referencias
http://rst.void.ru/papers/advisory24.txt(cve@mitre.org)
http://security.gentoo.org/glsa/glsa-200505-02.xml(cve@mitre.org)
http://www.debian.org/security/2005/dsa-726(cve@mitre.org)
http://www.securityfocus.com/bid/13172(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/20191(cve@mitre.org)
http://rst.void.ru/papers/advisory24.txt(af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-200505-02.xml(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2005/dsa-726(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/13172(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/20191(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.