ByteOS Network

NVD Vulnerability Details :

CVE-2004-2386

Deferred

Source-cve@mitre.org

Published At-31 Dec, 2004 | 05:00

Updated At-03 Apr, 2025 | 01:03

Format string vulnerability in the LogMsg function in sercd before 2.3.1 and sredird 2.2.1 and earlier allows remote attackers to execute arbitrary code via format string specifiers passed from the HandleCPCCommand function.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P

Type: Primary

Version: 2.0

Base score: 7.5

Base severity: HIGH

Vector:

AV:N/AC:L/Au:N/C:P/I:P/A:P

CPE Matches

Weaknesses

CWE ID	Type	Source
CWE-134	Primary	nvd@nist.gov

CWE ID: CWE-134

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://cvs.lysator.liu.se/viewcvs/viewcvs.cgi/sercd/sercd.c?root=sercd	cve@mitre.org	N/A
http://secunia.com/advisories/12351	cve@mitre.org	Vendor Advisory
http://securitytracker.com/id?1011038	cve@mitre.org	N/A
http://www.osvdb.org/8375	cve@mitre.org	Patch
http://www.osvdb.org/9104	cve@mitre.org	N/A
http://www.securityfocus.com/bid/11002	cve@mitre.org	N/A
http://www.securityfocus.com/bid/11031	cve@mitre.org	Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/17056	cve@mitre.org	N/A
http://cvs.lysator.liu.se/viewcvs/viewcvs.cgi/sercd/sercd.c?root=sercd	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/12351	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://securitytracker.com/id?1011038	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/8375	af854a3a-2127-422b-91ae-364da2661108	Patch
http://www.osvdb.org/9104	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/11002	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/11031	af854a3a-2127-422b-91ae-364da2661108	Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/17056	af854a3a-2127-422b-91ae-364da2661108	N/A