CVE-2005-4846 Information

Description

Format string vulnerability in Logger.cc for Spey 0.3.3 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in a syslog call.

Reference

http://sourceforge.net/forum/forum.php?forum_id=514029 http://spey.cvs.sourceforge.net/spey/spey/src/Logger.cc?r1=1.5&r2=1.6 http://spey.cvs.sourceforge.net/spey/spey/src/Logger.cc?view=log http://www.osvdb.org/21327