Format string vulnerability in the logging function in Larson Network Print Server (LstNPS) 9.4.2 build 105 and earlier for Windows might allow remote attackers to execute arbitrary code via format string specifiers in a USEP command on TCP port 3114.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:42
Type | Values Removed | Values Added |
---|---|---|
References | () http://aluigi.altervista.org/adv/lstnpsx-adv.txt - | |
References | () http://secunia.com/advisories/28890 - Vendor Advisory | |
References | () http://www.securityfocus.com/archive/1/487956/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/27732 - Exploit | |
References | () http://www.vupen.com/english/advisories/2008/0500 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/40420 - |
Information
Published : 2008-02-13 21:00
Updated : 2024-11-21 00:42
NVD link : CVE-2008-0764
Mitre link : CVE-2008-0764
CVE.ORG link : CVE-2008-0764
JSON object : View
Products Affected
larson_software_technology
- network_print_server
CWE
CWE-134
Use of Externally-Controlled Format String