Elog
by Elog
Source repositories
CVEs (26)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2006-0598 | 0.00 | — | 0.03 | Feb 13, 2006 | Buffer overflow in elogd.c in elog before 2.5.7 r1558-4 allows attackers to execute code via unspecified variables, when writing to the log file. | |||
| CVE-2006-0597 | 0.00 | — | 0.03 | Feb 13, 2006 | Multiple stack-based buffer overflows in elogd.c in elog before 2.5.7 r1558-4 allow attackers to cause a denial of service (application crash) and possibly execute code via long "revision attributes". | |||
| CVE-2006-0600 | 0.00 | — | 0.02 | Feb 13, 2006 | elog before 2.5.7 r1558-4 allows remote attackers to cause a denial of service (infinite redirection) via a request with the fail parameter set to 1, which redirects to the same request. | |||
| CVE-2006-0347 | 0.00 | — | 0.02 | Jan 21, 2006 | Directory traversal vulnerability in ELOG before 2.6.1 allows remote attackers to access arbitrary files outside of the elog directory via "../" (dot dot) sequences in the URL. | |||
| CVE-2005-4439 | 0.00 | — | 0.06 | Dec 21, 2005 | Buffer overflow in ELOG elogd 2.6.0-beta4 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a URL with a long (1) cmd or (2) mode parameter. | |||
| CVE-2005-0440 | 0.00 | — | 0.02 | May 2, 2005 | ELOG before 2.5.7 allows remote attackers to bypass authentication and download a configuration file that contains a sensitive write password via a modified URL. |
- CVE-2006-0598Feb 13, 2006risk 0.00cvss —epss 0.03
Buffer overflow in elogd.c in elog before 2.5.7 r1558-4 allows attackers to execute code via unspecified variables, when writing to the log file.
- CVE-2006-0597Feb 13, 2006risk 0.00cvss —epss 0.03
Multiple stack-based buffer overflows in elogd.c in elog before 2.5.7 r1558-4 allow attackers to cause a denial of service (application crash) and possibly execute code via long "revision attributes".
- CVE-2006-0600Feb 13, 2006risk 0.00cvss —epss 0.02
elog before 2.5.7 r1558-4 allows remote attackers to cause a denial of service (infinite redirection) via a request with the fail parameter set to 1, which redirects to the same request.
- CVE-2006-0347Jan 21, 2006risk 0.00cvss —epss 0.02
Directory traversal vulnerability in ELOG before 2.6.1 allows remote attackers to access arbitrary files outside of the elog directory via "../" (dot dot) sequences in the URL.
- CVE-2005-4439Dec 21, 2005risk 0.00cvss —epss 0.06
Buffer overflow in ELOG elogd 2.6.0-beta4 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a URL with a long (1) cmd or (2) mode parameter.
- CVE-2005-0440May 2, 2005risk 0.00cvss —epss 0.02
ELOG before 2.5.7 allows remote attackers to bypass authentication and download a configuration file that contains a sensitive write password via a modified URL.
Page 2 of 2