VYPR
Unrated severityNVD Advisory· Published Jan 27, 2012· Updated Jun 16, 2026

CVE-2011-3626

CVE-2011-3626

Description

Double free vulnerability in the prepare_exec function in src/exec.c in Logsurfer 1.5b and earlier, and Logsurfer+ 1.7 and earlier, allows remote attackers to execute arbitrary commands via crafted strings in a log file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

16
  • Logsurfer/Logsurfer16 versions
    cpe:2.3:a:drusus:logsurfer:*:*:*:*:*:*:*:*+ 15 more
    • cpe:2.3:a:drusus:logsurfer:*:*:*:*:*:*:*:*range: <=1.5b
    • cpe:2.3:a:drusus:logsurfer:1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:drusus:logsurfer:1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:drusus:logsurfer:1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:drusus:logsurfer:1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:drusus:logsurfer:1.41:*:*:*:*:*:*:*
    • cpe:2.3:a:drusus:logsurfer:1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:drusus:logsurfer:1.5a:*:*:*:*:*:*:*
    • cpe:2.3:a:drusus:logsurfer:1.5:beta:*:*:*:*:*:*
    • cpe:2.3:a:drusus:logsurfer:1.5:beta2:*:*:*:*:*:*
    • cpe:2.3:a:kerry_thompson:logsurfer\+:*:*:*:*:*:*:*:*range: <=1.7
    • cpe:2.3:a:kerry_thompson:logsurfer\+:1.5a:*:*:*:*:*:*:*
    • cpe:2.3:a:kerry_thompson:logsurfer\+:1.5b:*:*:*:*:*:*:*
    • cpe:2.3:a:kerry_thompson:logsurfer\+:1.6:*:*:*:*:*:*:*
    • cpe:2.3:a:kerry_thompson:logsurfer\+:1.6a:*:*:*:*:*:*:*
    • cpe:2.3:a:kerry_thompson:logsurfer\+:1.6b:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.