Detections
Analytics

Berlios gpsd gpsd_report() Function Format String

high Nessus Plugin ID 16265

Language:

Synopsis

The remote host is running a GPS monitoring application that is vulnerable to a format string attack.

Description

The remote host is running GPSD, a daemon which monitors a GPS device and publishes its data over the network.

The remote version of this software is vulnerable to format string attack due to the way it uses the syslog() call. An attacker may exploit this flaw to execute arbitrary code on the remote host.

Solution

Upgrade to gpsd 2.8 or newer.

See Also

https://seclists.org/fulldisclosure/2005/Jan/812

http://www.nessus.org/u?1a1734fa

Plugin Details

Severity: High

ID: 16265

File Name: gpsd_overflow.nasl

Version: 1.12

Type: remote

Published: 1/27/2005

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.8

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.2

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 1/27/2005

Vulnerability Publication Date: 1/26/2005

Exploitable With

CANVAS (CANVAS)

Metasploit (Berlios GPSD Format String Vulnerability)

Reference Information

CVE: CVE-2004-1388

BID: 12371