VYPR

Elog

by Elog

Source repositories

CVEs (26)

  • CVE-2006-0598Feb 13, 2006
    risk 0.00cvss epss 0.03

    Buffer overflow in elogd.c in elog before 2.5.7 r1558-4 allows attackers to execute code via unspecified variables, when writing to the log file.

  • CVE-2006-0597Feb 13, 2006
    risk 0.00cvss epss 0.03

    Multiple stack-based buffer overflows in elogd.c in elog before 2.5.7 r1558-4 allow attackers to cause a denial of service (application crash) and possibly execute code via long "revision attributes".

  • CVE-2006-0600Feb 13, 2006
    risk 0.00cvss epss 0.02

    elog before 2.5.7 r1558-4 allows remote attackers to cause a denial of service (infinite redirection) via a request with the fail parameter set to 1, which redirects to the same request.

  • CVE-2006-0347Jan 21, 2006
    risk 0.00cvss epss 0.02

    Directory traversal vulnerability in ELOG before 2.6.1 allows remote attackers to access arbitrary files outside of the elog directory via "../" (dot dot) sequences in the URL.

  • CVE-2005-4439Dec 21, 2005
    risk 0.00cvss epss 0.06

    Buffer overflow in ELOG elogd 2.6.0-beta4 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a URL with a long (1) cmd or (2) mode parameter.

  • CVE-2005-0440May 2, 2005
    risk 0.00cvss epss 0.02

    ELOG before 2.5.7 allows remote attackers to bypass authentication and download a configuration file that contains a sensitive write password via a modified URL.

Page 2 of 2