Vulnerabilities

CVE-2002-0412

by Fred · 02/04/2003

Format string vulnerability in TraceEvent function for ntop before 2.1 allows remote attackers to execute arbitrary code by causing format strings to be injected into calls to the syslog function, via (1) an HTTP GET request, (2) a user name in HTTP authentication, or (3) a password in HTTP authentication.

Date published : 2003-04-02

http://www.securityfocus.com/bid/4225

http://online.securityfocus.com/archive/1/259642

Similar

Tags: Cybersecurity Alert