MidnightBSD

Advisories for socat

CVE-2004-1484 MEDIUM

Format string vulnerability in the _msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to execute arbitrary code via format string specifiers in a syslog message.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
socat socat 1.1.0.0
socat socat 1.3.1.0
socat socat 1.0.4.0
socat socat 1.2.0.0
socat socat 1.0.4.2
socat socat 1.3.0.0
socat socat 1.3.2.2
socat socat 1.4.0.0
socat socat 1.3.2.0
socat socat 1.4.0.1
socat socat 1.3.0.1
socat socat 1.0.4.1
socat socat 1.1.0.1
socat socat 1.3.2.1
socat socat 1.4.0.2
socat socat 1.0.3.0