Format String Vulnerability in GNOME libgtop Daemon
CVE-2001-0927

Currently unrated

Key Information:

Vendor: Gnome
Status: Libgtop Daemon
Vendor: CVE Published:; 27 November 2001

Summary

A format string vulnerability exists in the permitted function of the GNOME libgtop daemon, primarily impacting libgtop versions 1.0.12 and earlier. This security flaw allows remote attackers to execute arbitrary code by crafting a malicious argument containing format specifiers that are subsequently passed into the syslog_message and syslog_io_message functions. The vulnerability can be exploited to compromise the system integrity, leading to unauthorized access and control.

References

http://marc.info/?l=bugtraq&m=100689302316077&w=2

mailing-listx_refsource_BUGTRAQ

ftp://ftp.gnome.org/pub/GNOME/stable/sources/libgtop/libg...

x_refsource_MISC

http://www.debian.org/security/2002/dsa-098

vendor-advisoryx_refsource_DEBIAN

Timeline

Vulnerability Reserved
Jan 31, 2002
Vulnerability published
Nov 27, 2001