Format string vulnerability in the lprintf function in Citadel/UX 6.27 and earlier allows remote attackers to execute arbitrary code via format string specifiers sent to the server.
Max CVSS
10.0
EPSS Score
8.36%
Published
2005-01-10
Updated
2017-07-11
Buffer overflow in (1) lprintf and (2) cprintf in sysdep.c of Citadel/UX 5.90 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attacks such as a long HELO command to the SMTP server.
Max CVSS
10.0
EPSS Score
2.83%
Published
2002-07-26
Updated
2008-09-05
2 vulnerabilities found