CVE-2002-0586 Information

Description

Format string vulnerability in Ns_PdLog function for the external database driver proxy daemon library (libnspd.a) of AOLServer 3.0 through 3.4.2 allows remote attackers to execute arbitrary code via the Error or Notice parameters.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-04/0195.html http://sourceforge.net/tracker/index.php?func=detail&aid=533141&group_id=3152&atid=303152 http://www.iss.net/security_center/static/8860.php http://www.securityfocus.com/bid/4535