VYPR

Lcdproc

by Lcdproc

Source repositories

CVEs (4)

  • CVE-2004-1915Apr 8, 2004
    risk 0.04cvss epss 0.09

    Buffer overflow in the parse_all_client_messages function in LCDproc 0.4.x up to 0.4.4 allows remote attackers to execute arbitrary code via a large number of arguments.

  • CVE-2000-0295Apr 21, 2000
    risk 0.03cvss epss 0.05

    Buffer overflow in LCDproc allows remote attackers to gain root privileges via the screen_add command.

  • CVE-2004-1916Apr 8, 2004
    risk 0.00cvss epss 0.04

    Multiple buffer overflows in LCDProc 0.4.1, and possibly other 0.4.x versions up to 0.4.4, allows remote attackers to execute arbitrary code via (1) a long invalid command to parse_all_client_messages function, or (2) long argv command to test_func_func function.

  • CVE-2004-1917Apr 8, 2004
    risk 0.00cvss epss 0.04

    Format string vulnerability in test_func_func in LCDProc 0.4.1 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the str variable.