Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via (1) modem_run, (2) pppoa2, or (3) pppoa3.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| speedtouch | speedtouch_usb_driver | 1.0 |
| speedtouch | speedtouch_usb_driver | 1.2 |
| speedtouch | speedtouch_usb_driver | 1.2_beta2 |
| mandrakesoft | mandrake_linux | 9.0 |
| speedtouch | speedtouch_usb_driver | 1.2_beta1 |
| mandrakesoft | mandrake_linux | 8.2 |
| mandrakesoft | mandrake_linux | 9.1 |
| gentoo | linux | 1.4 |
| speedtouch | speedtouch_usb_driver | 1.1 |
| mandrakesoft | mandrake_linux_corporate_server | 2.1 |
| speedtouch | speedtouch_usb_driver | 1.2_beta3 |
| mandrakesoft | mandrake_linux | 9.2 |
| speedtouch | speedtouch_usb_driver | 1.3 |
| mandrakesoft | mandrake_linux | 10.1 |
| mandrakesoft | mandrake_linux | 10.0 |
| mandrakesoft | mandrake_multi_network_firewall | 8.2 |