libsafe 2.0-11 and earlier allows attackers to bypass protection against format string vulnerabilities via format strings that use the "'" and "I" characters, which are implemented in libc but not libsafe.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0070.html | |
http://online.securityfocus.com/archive/1/263121 | Exploit Patch Vendor Advisory |
http://www.iss.net/security_center/static/8593.php | |
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-026.php | Patch Vendor Advisory |
http://www.securityfocus.com/bid/4326 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2002-06-25T04:00:00
Updated: 2002-06-16T00:00:00
Reserved: 2002-04-15T00:00:00
Link: CVE-2002-0175
JSON object: View
NVD Information
Status : Analyzed
Published: 2002-04-22T04:00:00.000
Modified: 2008-09-11T00:00:38.540
Link: CVE-2002-0175
JSON object: View
Redhat Information
No data.
CWE