Unrated severityNVD Advisory· Published Feb 12, 2020· Updated Aug 6, 2024
CVE-2014-6262
CVE-2014-6262
Description
Multiple format string vulnerabilities in the python module in RRDtool, as used in Zenoss Core before 4.2.5 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted third argument to the rrdtool.graph function, aka ZEN-15415, a related issue to CVE-2013-2131.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- RRDtool/RRDtooldescription
Patches
Vulnerability mechanics
References
8- www.kb.cert.org/vuls/id/449452mitrex_refsource_MISC
- docs.google.com/spreadsheets/d/1dHAc4PxUbs-4Dxzm1wSCE0sMz5UCMY6SW3PlMHSyuuQ/editmitrex_refsource_MISC
- github.com/oetiker/rrdtool-1.x/commit/64ed5314af1255ab6dded45f70b39cdeab5ae2ecmitrex_refsource_MISC
- github.com/oetiker/rrdtool-1.x/commit/85261a013112e278c90224033f5b0592ee387786mitrex_refsource_MISC
- github.com/oetiker/rrdtool-1.x/pull/532mitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2020/03/msg00000.htmlmitremailing-listx_refsource_MLIST
- lists.debian.org/debian-lts-announce/2020/03/msg00003.htmlmitremailing-listx_refsource_MLIST
- www.securityfocus.com/bid/71540mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.