Buffer overflows in DayDream BBS 2.9 through 2.13 allow remote attackers to possibly execute arbitrary code via the control codes (1) ~#MC, (2) ~#TF, or (3) ~#RA.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| daydream | daydream_bbs | 2.13 |
| daydream | daydream_bbs | 2.10 |
| daydream | daydream_bbs | 2.12 |
| daydream | daydream_bbs | 2.9 |
Format string vulnerability in DayDream BBS allows remote attackers to execute arbitrary code via format string specifiers in a file containing a ~#RA control code.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| daydream | daydream_bbs | 2.13 |
| daydream | daydream_bbs | 2.10 |
| daydream | daydream_bbs | 2.12 |
| daydream | daydream_bbs | 2.9 |