CVE-2004-0536
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2004-0536
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2004-0536.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2004-0536
- Downstream
- Published
- 2004-08-06T04:00:00Z
- Modified
- 2025-08-09T19:01:27Z
- Summary
- [none]
- Details
-
Format string vulnerability in Tripwire commercial 4.0.1 and earlier, including 2.4, and open source 2.3.1 and earlier, allows local users to gain privileges via format string specifiers in a file name, which is used in the generation of an email report.
- References
-
- http://security.gentoo.org/glsa/glsa-200406-02.xml
- http://marc.info/?l=bugtraq&m=108627481507249&w=2
- http://marc.info/?l=bugtraq&m=108630983009228&w=2
- http://www.redhat.com/support/errata/RHSA-2004-244.html
- http://www.securityfocus.com/bid/10454
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16309